Content added Content deleted
imported>mutante mNo edit summary |
imported>mutante mNo edit summary |
||
(2 intermediate revisions by the same user not shown) | |||
Line 1: | Line 1: | ||
[[Anti]] [[rootkit]] [[software]] |
|||
== rkhunter == |
|||
Rootkit Hunter scans files and systems for known and unknown rootkits, backdoors, and sniffers. The package contains one shell script, a few text-based databases, and optional Perl modules. It should run on almost every Unix clone. |
Rootkit Hunter scans files and systems for known and unknown rootkits, backdoors, and sniffers. The package contains one shell script, a few text-based databases, and optional Perl modules. It should run on almost every Unix clone. |
||
Line 4: | Line 8: | ||
== chkrootkit == |
|||
---- |
|||
chkrootkit is a tool to locally check for signs of a rootkit. It contains: |
chkrootkit is a tool to locally check for signs of a rootkit. It contains: |
||
Line 13: | Line 17: | ||
== links == |
|||
---- |
|||
http://staff.washington.edu/dittrich/talks/blackhat/blackhat/antirootkit.html |
http://staff.washington.edu/dittrich/talks/blackhat/blackhat/antirootkit.html |
Latest revision as of 22:24, 21 November 2006
rkhunter[edit]
Rootkit Hunter scans files and systems for known and unknown rootkits, backdoors, and sniffers. The package contains one shell script, a few text-based databases, and optional Perl modules. It should run on almost every Unix clone.
http://freshmeat.net/projects/rkhunter/
chkrootkit[edit]
chkrootkit is a tool to locally check for signs of a rootkit. It contains:
chkrootkit: shell script that checks system binaries for rootkit modification.
links[edit]
http://staff.washington.edu/dittrich/talks/blackhat/blackhat/antirootkit.html