chkrootkit identifies whether the target computer is infected with a rootkit.
chkrootkit is a tool to locally check for signs of a rootkit. It contains:
* chkrootkit: shell script that checks system binaries for rootkit modification.
* ifpromisc.c: checks if the interface is in promiscuous mode.
* chklastlog.c: checks for lastlog deletions.
* chkwtmp.c: checks for wtmp deletions.
* check_wtmpx.c: checks for wtmpx deletions.
(Solaris only)
* chkproc.c: checks for signs of LKM trojans.
* chkdirs.c: checks for signs of LKM trojans.
* strings.c: quick and dirty strings replacement.
* chkutmp.c: checks for utmp deletions.
Project information
- Maintainer:
- Registry Administrators
- Driver:
- Not yet selected
- Licence:
- MIT / X / Expat Licence
View full history Series and milestones
main series is the current focus of development.
All packages Packages in Distributions
-
chkrootkit source package in Xenial
Version 0.50-3.2 uploaded -
chkrootkit source package in Trusty
Version 0.49-4.1ubuntu1.14.04.1 uploaded -
chkrootkit source package in Squeeze
Version 0.49-4 uploaded -
chkrootkit source package in Sid
Version 0.58b-1 uploaded -
chkrootkit source package in Precise
Version 0.49-4ubuntu1.1 uploaded