rkhunter

rkhunter (Rootkit Hunter) is a Unix-based tool that scans for rootkits, backdoors and possible local exploits. It does this by comparing SHA-1 hashes of important files with known good ones in online databases, searching for default directories (of rootkits), wrong permissions, hidden files, suspicious strings in kernel modules, and special tests for Linux and FreeBSD. rkhunter is notable due to its inclusion in popular operating systems (Fedora,[1] Debian,[2] etc.)

rkhunter
rkhunter on Mac OS X
Initial release2006 (2006)
Stable release
1.4.6 / 20 February 2018 (2018-02-20)
Repository
Written inBourne shell, Perl
Operating systemUnix-like
Typerootkit detector
LicenseGNU General Public License
Websitesourceforge.net/projects/rkhunter/

The tool has been written in Bourne shell, to allow for portability. It can run on almost all UNIX-derived systems.

Development

In 2003, developer Michael Boelen released the version of Rootkit Hunter. After several years of development, early 2006, he agreed to hand over development to a development team. Since that time eight people have been working to set up the project properly and work towards the much-needed maintenance release. The project has since been moved to SourceForge.

gollark: 𝙔𝙖𝙮 𝙛𝙤𝙧 𝙐𝙣𝙞𝙘𝙤𝙙𝙚 𝙝𝙖𝙫𝙞𝙣𝙜 𝙨𝙥𝙚𝙘𝙞𝙖𝙡 𝙛𝙤𝙣𝙩𝙨 𝙗𝙪𝙞𝙡𝙩 𝙞𝙣 𝙛𝙤𝙧 𝙨𝙤𝙢𝙚 𝙧𝙚𝙖𝙨𝙤𝙣!
gollark: 𝓦𝓱𝔂 𝓷𝓸𝓽 𝓼𝓹𝓮𝓪𝓴 𝓲𝓷 𝓬𝓾𝓻𝓼𝓲𝓿𝓮?
gollark: That's not an input method.
gollark: physical keyboard > terrible phone keyboard > speech to text
gollark: Yes, orange man is somewhat bad.

See also

References
  1. "Fedora Packages Search". apps.fedoraproject.org.
  2. "Debian -- Details of package rkhunter in sid". packages.debian.org.
This article is issued from Wikipedia. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.