Skip to content
/ ShadowLogs Public

ShadowLog πŸ•΅οΈβ€β™‚οΈ – A stealthy LD_PRELOAD-based command logger that hooks execve to log executed commands, users, and TTY sessions .

7 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

devilzsecurity/ShadowLogs

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

9 Commits
README.md
README.md
Β 
Β 
shadow.c
shadow.c
Β 
Β 

Repository files navigation

ShadowLogs

ShadowLog πŸ•΅οΈβ€β™‚οΈLD_PRELOAD-based logger that hooks execve to log executed commands, users, and TTY sessions .

LD_PRELOAD-based command logger designed for process monitoring. By hooking the execve system call, it captures and logs every executed command along with user details and TTY session information.

Features βœ… Stealth Logging – Hooks execve to record commands without modifying binaries.

βœ… User & TTY Tracking – Captures the username, TTY session, and timestamp for each command.

βœ… Minimal Footprint – Runs as a shared library, injected dynamically with LD_PRELOAD.

About

ShadowLog πŸ•΅οΈβ€β™‚οΈ – A stealthy LD_PRELOAD-based command logger that hooks execve to log executed commands, users, and TTY sessions .

Resources

Readme
Activity

Stars

7 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages