We have a kernel based product. We hook system calls by overriding the original system call table entries.
Till OSX 10.13, this mechanism was working but from OSX 10.14 (Mojave), we were unable to override the system call table entires.
We give read+write permission to page where system call table is available, but now even if page write permission is success, we are not able to write to the page. And this is causing Kernel Panic.
Is there any alternative way to give write permission to the system call page.
Thanks