Chkrootkit Benutzung
Zur Navigation springen
Zur Suche springen
Chkrootkit installieren
- Chkrootkit ist im Standard-Repository verfügbar.
sudo apt install chkrootkit -y
Verwendung
sudo chkrootkit
ROOTDIR is `/' Checking `amd'... not found Checking `basename'... not infected Checking `biff'... not found Checking `chfn'... not infected Checking `chsh'... not infected Checking `cron'... not infected Checking `crontab'... not infected Checking `date'... not infected Checking `du'... not infected Checking `dirname'... not infected Checking `echo'... not infected Checking `egrep'... not infected Checking `env'... not infected Checking `find'... not infected Checking `fingerd'... not found Checking `gpm'... not found Checking `grep'... not infected Checking `hdparm'... not infected Checking `su'... not infected Checking `ifconfig'... not infected Checking `inetd'... not infected Checking `inetdconf'... not found Checking `identd'... not found Checking `init'... not infected Checking `killall'... not infected Checking `ldsopreload'... not infected Checking `login'... not infected Checking `ls'... not infected Checking `lsof'... not infected Checking `mail'... not found Checking `mingetty'... not found Checking `netstat'... not infected Checking `named'... not found Checking `passwd'... not infected Checking `pidof'... not infected Checking `pop2'... not found Checking `pop3'... not found Checking `ps'... not infected Checking `pstree'... not infected Checking `rpcinfo'... not found Checking `rlogind'... not found Checking `rshd'... not found Checking `slogin'... not infected Checking `sendmail'... not found Checking `sshd'... not infected Checking `syslogd'... not tested Checking `tar'... not infected Checking `tcpd'... INFECTED Checking `tcpdump'... not infected Checking `top'... not infected Checking `telnetd'... not found Checking `timed'... not found Checking `traceroute'... not found Checking `vdir'... not infected Checking `w'... not infected Checking `write'... not infected
Versions Check
sudo chkrootkit -V
- Ausgabe:
chkrootkit-Version 0.52
Verfügbare Tests anzeigen
- chkrootkit -l
Aufruf im stillen Modus
- chkrootkit -q
Dateien und Ordner ausschließen
- chkrootkit -e
Spezielles RootDir untersuchen
- chkrootkit -qr /rootdir
Keine Nfs Directories untersuchen
- chkrootkit -n
Expertmodus
- chkrootkit -x | more
- Um selbst sich die Binärprogramme Seite für Seite anzuschauen
Anzeigen versteckter Prozesse
- chkrootkit -x lkm