CPC G06F 11/3636 (2013.01) [G06F 8/658 (2018.02); G06F 11/3624 (2013.01); G06F 12/1009 (2013.01)] | 17 Claims |
1. A method for selective patching processes, the method comprising:
identifying, via a user space patching service, a patch that modifies at least one function comprised in a process, wherein the process is executed on a computing device;
generating a list of target pages in virtual memory of the computing device, wherein the list of target pages comprises code associated with the at least one function;
marking the target pages as non-executable based on file identification; and
in response to intercepting, using an amended page-fault event handler, an attempt to execute the code associated with the at least one function by the process; applying the patch to modify the at least one function.
|