To install rkhunter on an Ubuntu or Debian based distro, you can type: sudo apt-get install rkhunter This tool analyzes for rootkits, backdoors and local exploits by running tests such as: comparison of MD5 hash, search for default files used by rootkits, wrong file permissions of binaries, search for suspicious strings in LKM modules and KLD, hidden file search, and optional scanning within text and binary files. Rootkit Hunter or rkhunter is an open source rootkit scanner similar to chkrootkit that is also pre-installed in BackTrack 5 under Forensic and Anti-Virus Tools.
0 kommentar(er)
