[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-09-04 UTC."],[],[],null,["# Google Cloud Security Command Center V1 Client - Class KernelRootkit (2.2.1)\n\nVersion latestkeyboard_arrow_down\n\n- [2.2.1 (latest)](/php/docs/reference/cloud-security-center/latest/V1.KernelRootkit)\n- [2.2.0](/php/docs/reference/cloud-security-center/2.2.0/V1.KernelRootkit)\n- [2.1.1](/php/docs/reference/cloud-security-center/2.1.1/V1.KernelRootkit)\n- [2.0.4](/php/docs/reference/cloud-security-center/2.0.4/V1.KernelRootkit)\n- [1.32.0](/php/docs/reference/cloud-security-center/1.32.0/V1.KernelRootkit)\n- [1.31.0](/php/docs/reference/cloud-security-center/1.31.0/V1.KernelRootkit)\n- [1.30.0](/php/docs/reference/cloud-security-center/1.30.0/V1.KernelRootkit)\n- [1.29.0](/php/docs/reference/cloud-security-center/1.29.0/V1.KernelRootkit)\n- [1.28.2](/php/docs/reference/cloud-security-center/1.28.2/V1.KernelRootkit)\n- [1.21.0](/php/docs/reference/cloud-security-center/1.21.0/V1.KernelRootkit)\n- [1.20.2](/php/docs/reference/cloud-security-center/1.20.2/V1.KernelRootkit)\n- [1.19.1](/php/docs/reference/cloud-security-center/1.19.1/V1.KernelRootkit)\n- [1.18.0](/php/docs/reference/cloud-security-center/1.18.0/V1.KernelRootkit)\n- [1.17.0](/php/docs/reference/cloud-security-center/1.17.0/V1.KernelRootkit)\n- [1.16.0](/php/docs/reference/cloud-security-center/1.16.0/V1.KernelRootkit)\n- [1.15.1](/php/docs/reference/cloud-security-center/1.15.1/V1.KernelRootkit)\n- [1.14.2](/php/docs/reference/cloud-security-center/1.14.2/V1.KernelRootkit)\n- [1.13.1](/php/docs/reference/cloud-security-center/1.13.1/V1.KernelRootkit) \nReference documentation and code samples for the Google Cloud Security Command Center V1 Client class KernelRootkit.\n\nKernel mode rootkit signatures.\n\nGenerated from protobuf message `google.cloud.securitycenter.v1.KernelRootkit`\n\nNamespace\n---------\n\nGoogle \\\\ Cloud \\\\ SecurityCenter \\\\ V1\n\nMethods\n-------\n\n### __construct\n\nConstructor.\n\n### getName\n\nRootkit name, when available.\n\n### setName\n\nRootkit name, when available.\n\n### getUnexpectedCodeModification\n\nTrue if unexpected modifications of kernel code memory are present.\n\n### setUnexpectedCodeModification\n\nTrue if unexpected modifications of kernel code memory are present.\n\n### getUnexpectedReadOnlyDataModification\n\nTrue if unexpected modifications of kernel read-only data memory are\npresent.\n\n### setUnexpectedReadOnlyDataModification\n\nTrue if unexpected modifications of kernel read-only data memory are\npresent.\n\n### getUnexpectedFtraceHandler\n\nTrue if `ftrace` points are present with callbacks pointing to regions\nthat are not in the expected kernel or module code range.\n\n### setUnexpectedFtraceHandler\n\nTrue if `ftrace` points are present with callbacks pointing to regions\nthat are not in the expected kernel or module code range.\n\n### getUnexpectedKprobeHandler\n\nTrue if `kprobe` points are present with callbacks pointing to regions\nthat are not in the expected kernel or module code range.\n\n### setUnexpectedKprobeHandler\n\nTrue if `kprobe` points are present with callbacks pointing to regions\nthat are not in the expected kernel or module code range.\n\n### getUnexpectedKernelCodePages\n\nTrue if kernel code pages that are not in the expected kernel or module\ncode regions are present.\n\n### setUnexpectedKernelCodePages\n\nTrue if kernel code pages that are not in the expected kernel or module\ncode regions are present.\n\n### getUnexpectedSystemCallHandler\n\nTrue if system call handlers that are are not in the expected kernel or\nmodule code regions are present.\n\n### setUnexpectedSystemCallHandler\n\nTrue if system call handlers that are are not in the expected kernel or\nmodule code regions are present.\n\n### getUnexpectedInterruptHandler\n\nTrue if interrupt handlers that are are not in the expected kernel or\nmodule code regions are present.\n\n### setUnexpectedInterruptHandler\n\nTrue if interrupt handlers that are are not in the expected kernel or\nmodule code regions are present.\n\n### getUnexpectedProcessesInRunqueue\n\nTrue if unexpected processes in the scheduler run queue are present. Such\nprocesses are in the run queue, but not in the process task list.\n\n### setUnexpectedProcessesInRunqueue\n\nTrue if unexpected processes in the scheduler run queue are present. Such\nprocesses are in the run queue, but not in the process task list."]]
