5. Detection Software
5.1. Some Plethoras
- Packet
Storm list a plethora of Linux security-related applications
and utilities.
- linuxsecure.de --- click
on Rootkit scanners (on the left, under Detection).
5.2. Some Bits and Pieces
- Carbonite
[Resources, Free Tools] is an LKM
that is designed to investigate and
detect rootkits. Carbonite even works with LKM rootkits that patch
calls to /proc. It works like lsof and ps at the kernel level, querying
every process in Linux's task_struct, which is the kernel structure
that maintains information on every running process in Linux.
It gives administrators a more reliable method to identify all
running processes on the system.
- chkrootkit
- rkdet
- saint jude
About this document:
Produced from the SGML: /home/isd/public_html/_unix_security/_reml_grp/unix_security_k.reml
On: 12/8/2004 at 17:25:27
Options: reml2 -i noindex -l long -o html -p multiple