chkrootkit 0.47
chkrootkit 0.47 is now available! This version includes:
* chkproc.c
- some bug fixes, thanks to Lantz Moore
- use of
getpriority() to identify LKMs, thanks to
Yjesus(unhide) and Slider/Flimbo
(skdet)
- new rootkit detected:
- Enye LKM
* chkrootkit
- new test:
- crontab
- new rootkits/worms
detected:
- Enye LKM
- Lupper.Worm
- shv5
- more ports added to the
bindshell test
- some minor bug fixes
chkrootkit is a tool to locally check for signs of a rootkit.
More
information about chkrootkit and rootkits can be found at
http://www.chkrootkit.org/.
The package was successfully tested on the following systems: Linux
2.0.x,
2.2.x, 2.4.x and 2.6.x, FreeBSD 2.2.x, 3.x, 4.x and 5.x,
OpenBSD 2.x and
3.x., NetBSD 1.6.x, Solaris 2.5.1, 2.6, 8.0 and 9.0,
HP-UX 11, Tru64, BSDI
and Mac OS X.
chkrootkit's tarball and its MD5 checksum are available at:
* ftp://ftp.pangeia.com.br/pub/seg/pac/chkrootkit.tar.gz
*
ftp://ftp.pangeia.com.br/pub/seg/pac/chkrootkit.md5
or at the chkrootkit's homepage, at:
More info about rootkits can be found at:
* http://www.chkrootkit.org/links/
관련 링크: http://www.chkrootkit.org