Skip to content

0xsirus/tirdad

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

54 Commits
legacy
legacy
 
 
module
module
 
 
COPYING
COPYING
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 

Repository files navigation

tirdad

tirdad (pronounce /tērdäd/) is a kernel module to hot-patch the Linux kernel to generate random Initial Sequence Numbers for TCP connections.

You can refer to this blog post to get familiar with the original issue:

https://bitguard.wordpress.com/?p=982

Requirements

For the build process you will need to have the correct kernel header files already installed on your system. These header files are usually available in your apt repositories.

An example installation of the header files:

apt-get install linux-headers-`uname -r`

Usage

Compile by running:

$make

Run as root:

#insmod module/tirdad.ko

You can also disable the module with:

#echo 0 | tee /sys/kernel/livepatch/tirdad/enabled

#rmmod module/tirdad.ko

If you use the legacy version, you only need to run rmmod (the second command).

After you disable it, kernel will continue to use its default algorithm to generate initial sequence numbers.

For kernels 6.18.17 and newer, tirdad randomizes both ISN and initial TCP timestamp offset (if enabled).

About

Tirdad kernel module for random ISN generation

Resources

Readme

License

Unknown, GPL-3.0 licenses found

Licenses found

Unknown
LICENSE
GPL-3.0
COPYING
Activity

Stars

28 stars

Watchers

4 watching

Forks

14 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages