[ 源代码: rkhunter ]
软件包:rkhunter(1.4.6-5)
rootkit, backdoor, sniffer and exploit scanner
Rootkit Hunter scans systems for known and unknown rootkits, backdoors, sniffers and exploits.
It checks for:
- SHA256 hash changes; - files commonly created by rootkits; - executables with anomalous file permissions; - suspicious strings in kernel modules; - hidden files in system directories;and can optionally scan within files.
Using rkhunter alone does not guarantee that a system is not compromised. Running additional tests, such as chkrootkit, is recommended.
其他与 rkhunter 有关的软件包
|
|
|
|
-
- dep: debconf (>= 0.5)
- Debian 配置管理系统
- 或者 debconf-2.0
- 本虚包由这些包填实: cdebconf, cdebconf-udeb, debconf
-
- dep: binutils
- GNU 汇编程序、链接程序和二进制工具
-
- dep: file
- 使用"魔数"识别文件中的数据类型
-
- dep: lsof
- 列出打开文件的工具
-
- dep: net-tools
- NET-3 networking toolkit
-
- dep: perl
- 拉里 沃尔的实用报表提取语言(Perl)
-
- dep: ucf (>= 0.28)
- 更新配置文件:保留用户对配置文件的更改
-
- rec: default-mta
- 本虚包由这些包填实: exim4-daemon-light
- 或者 mail-transport-agent
- 本虚包由这些包填实: citadel-server, courier-mta, dma, esmtp-run, exim4-daemon-heavy, exim4-daemon-light, msmtp-mta, nullmailer, opensmtpd, postfix, qmail-run, sendmail-bin
-
- rec: e2fsprogs
- ext2/ext3/ext4 文件系统工具
-
- rec: iproute2
- 网络和流量控制工具
-
- rec: unhide
- Forensic tool to find hidden processes and ports
-
- rec: unhide.rb
- Forensics tool to find processes hidden by rootkits
-
- sug: liburi-perl
- module to manipulate and access URI strings
-
- sug: libwww-perl
- simple and consistent interface to the world-wide web
-
- sug: powermgmt-base
- common utils for power management