etch  ] [  etch-m68k  ] [  lenny  ] [  squeeze  ] [  sid  ]
[ Source: rkhunter  ]

Package: rkhunter (1.3.4-5)

rootkit, backdoor, sniffer and exploit scanner

Rootkit Hunter scans systems for known and unknown rootkits, backdoors, sniffers and exploits.

It checks for: 

 - MD5 hash changes;
 - files commonly created by rootkits;
 - executables with anomalous file permissions;
 - suspicious strings in kernel modules;
 - hidden files in system directories;
and can optionally scan within files.

Using rkhunter alone does not guarantee that a system is not compromised. Running additional tests, such as chkrootkit, is recommended.

Tags: Implemented in: sh, bash, ksh, tcsh and other shells, User Interface: Command Line, Role: Program, Scope: Utility, Security: Intrusion Detection, File Integrity, Purpose: Checking, Scanning

Other Packages Related to rkhunter

  • depends
  • recommends
  • suggests
  • rec: iproute
    networking and traffic control tools
  • rec: libmd5-perl
    backwards-compatible wrapper for Digest::MD5
  • rec: lsof
    List open files
  • rec: unhide
    Forensic tool to find hidden processes and ports
  • rec: wget
    retrieves files from the web
    or curl
    Get a file from an HTTP, HTTPS or FTP server
    or links
    Web browser running in text mode
    or elinks
    advanced text-mode WWW browser
    or lynx
    Text-mode WWW Browser (transitional package)
  • sug: bsd-mailx
    A simple mail user agent
  • sug: tripwire
    file and directory integrity checker

Download rkhunter

Download for all available architectures
Architecture Package Size Installed Size Files
all 265.8 kB948 kB [list of files]