[ 原始碼: rkhunter ]
套件:rkhunter(1.4.6-12)
rootkit, backdoor, sniffer and exploit scanner
Rootkit Hunter scans systems for known and unknown rootkits, backdoors, sniffers and exploits.
It checks for:
- SHA256 hash changes; - files commonly created by rootkits; - executables with anomalous file permissions; - suspicious strings in kernel modules; - hidden files in system directories;and can optionally scan within files.
Using rkhunter alone does not guarantee that a system is not compromised. Running additional tests, such as chkrootkit, is recommended.
其他與 rkhunter 有關的套件
|
|
|
|
-
- dep: debconf
- Debian 設定管理系統
- 或者 debconf-2.0
- 本虛擬套件由這些套件填實: cdebconf, cdebconf-udeb, debconf
-
- dep: binutils
- GNU assembler, linker and binary utilities
-
- dep: debconf (>= 0.5)
- Debian 設定管理系統
- 或者 debconf-2.0
- 本虛擬套件由這些套件填實: cdebconf, cdebconf-udeb, debconf
-
- dep: file
- Recognize the type of data in a file using "magic" numbers
-
- dep: lsof
- utility to list open files
-
- dep: net-tools
- NET-3 networking toolkit
-
- dep: perl
- Larry Wall's Practical Extraction and Report Language
-
- dep: ucf (>= 3.0040)
- Update Configuration File(s): preserve user changes to config files
-
- rec: default-mta
- 本虛擬套件由這些套件填實: exim4-daemon-light
- 或者 mail-transport-agent
- 本虛擬套件由這些套件填實: courier-mta, dma, esmtp-run, exim4-daemon-heavy, exim4-daemon-light, msmtp-mta, nullmailer, opensmtpd, postfix, sendmail-bin, ssmtp
-
- rec: e2fsprogs
- ext2/ext3/ext4 file system utilities
-
- rec: iproute2
- networking and traffic control tools
-
- rec: unhide
- forensic tool to find hidden processes and ports
-
- rec: unhide.rb
- Forensics tool to find processes hidden by rootkits
-
- sug: liburi-perl
- module to manipulate and access URI strings
-
- sug: libwww-perl
- simple and consistent interface to the world-wide web
-
- sug: powermgmt-base
- common utils for power management