all options
wheezy  ] [  jessie  ] [  sid  ]
[ Source: unhide.rb  ]

Package: unhide.rb (22-1)

Links for unhide.rb

Screenshot

Debian Resources:

Download Source Package unhide.rb:

Maintainers:

External Resources:

Similar packages:

Forensic tool to find processes hidden by rootkits

Unhide.rb is a forensic tool to find processes hidden by rootkits.

It looks for active processes in many different ways. Processes found by some means but not others are considered to be "hidden", and are reported to the user.

Unhide.rb is a tentative of rewrite in Ruby of the original Unhide, which is written in C. While being much faster, it does not implement all the diagnostics of the original version. It is also less secure as it cannot be statically compiled.

This package can be used by rkhunter in its daily scans.

Tags: System Administration: Forensics and Recovery, Implemented in: Ruby, User Interface: interface::commandline, role::program, Scope: Utility, Security: Forensics, security::ids, use::scanning

Other Packages Related to unhide.rb

  • depends
  • recommends
  • suggests
  • enhances

Download unhide.rb

Download for all available architectures
Architecture Package Size Installed Size Files
all 7.7 kB61.0 kB [list of files]