What is LibC/Inside?
LibC/Inside is a shared library, which is able to instrument library calls used by a dynamically linked executable. LibC/Inside logs all data passed to a library call and any parameters returned from it. This provides an accurate audit trail of the execution of a program, without access to source code. This wealth of information can be used for many applications, including:
- Locating configuration problems
- Software development
- Examining how third party software functions
- Locating security vulnerabilities in security critical software
- Examining software for suspect activities, including virus, Trojan or backdoor code
Advantages
LibC/Inside provides substantially improved instrumentation than current methods of tracing system calls, because:
- LibC/Inside is not limited to system calls
- LibC/Inside uses symbolic information
- LibC/Inside instruments not just which function is called, but also where the call originated
- LibC/Inside provides access to all arguments passed
- LibC/Inside limits instrumenting of a process to the activities of the program being monitored, excluding run time linking and object initialisation
![](/file/16978/Sun Solutions CD - APR '97 - SEP '97 (704-3778-12 Rev. H)(Sun Microsystems, Inc.)(1997).iso/products/Electris/blendbar.gif)