Rootkit Hunter using rkhunter

in #technlogy7 years ago (edited)

  rkhunter (Rootkit Hunter) is a Unix based tool for scanning rootkits, backdoor, and possible local exploits. This is done by comparing the SHA-1 hash of important files with those that are well known in online databases, searching for default (or rootkit) directories, incorrect file permissions, hidden files, suspicious strings in kernel modules, and tests specifically for Linux and FreeBSD.  This tool is written in Bourne shell, to enable portability and can run on almost all UNIX-derived systems. 

[ Rootkit Hunter version 1.4.6 ]

Checking system commands...

  Performing 'strings' command checks

    Checking 'strings' command                               [ OK ]

  Performing 'shared libraries' checks

    Checking for preloading variables                        [ None found ]

    Checking for preloaded libraries                         [ None found ]

    Checking LD_LIBRARY_PATH variable                        [ Not found ]

  Performing file properties checks

    Checking for prerequisites                               [ Warning ]

    /usr/sbin/adduser                                        [ OK ]

    /usr/sbin/chroot                                         [ OK ]

    /usr/sbin/cron                                           [ OK ]

    /usr/sbin/groupadd                                       [ OK ]

    /usr/sbin/groupdel                                       [ OK ]

    /usr/sbin/groupmod                                       [ OK ]

    /usr/sbin/grpck                                          [ OK ]

    /usr/sbin/nologin                                        [ OK ]

    /usr/sbin/pwck                                           [ OK ]

    /usr/sbin/rsyslogd                                       [ OK ]

    /usr/sbin/useradd                                        [ OK ]

    /usr/sbin/userdel                                        [ OK ]

    /usr/sbin/usermod                                        [ OK ]

    /usr/sbin/vipw                                           [ OK ]

    /usr/sbin/unhide                                         [ OK ]

    /usr/sbin/unhide-linux                                   [ OK ]

    /usr/sbin/unhide-posix                                   [ OK ]

    /usr/sbin/unhide-tcp                                     [ OK ]

    /usr/bin/awk                                             [ OK ]

    /usr/bin/basename                                        [ OK ]

    /usr/bin/chattr                                          [ OK ]

    /usr/bin/curl                                            [ OK ]

    /usr/bin/cut                                             [ OK ]

    /usr/bin/diff                                            [ OK ]

    /usr/bin/dirname                                         [ OK ]

    /usr/bin/dpkg                                            [ OK ]

    /usr/bin/dpkg-query                                      [ OK ]

    /usr/bin/du                                              [ OK ]

    /usr/bin/env                                             [ OK ]

    /usr/bin/file                                            [ OK ]

    /usr/bin/find                                            [ OK ]

    /usr/bin/groups                                          [ OK ]

    /usr/bin/head                                            [ OK ]

    /usr/bin/id                                              [ OK ]

    /usr/bin/ipcs                                            [ OK ]

    /usr/bin/killall                                         [ OK ]

    /usr/bin/last                                            [ OK ]

    /usr/bin/lastlog                                         [ OK ]

    /usr/bin/ldd                                             [ OK ]

    /usr/bin/less                                            [ OK ]

    /usr/bin/locate                                          [ OK ]

    /usr/bin/logger                                          [ OK ]

    /usr/bin/lsattr                                          [ OK ]

    /usr/bin/lsof                                            [ OK ]

    /usr/bin/lynx                                            [ OK ]

    /usr/bin/mail                                            [ OK ]

    /usr/bin/md5sum                                          [ OK ]

    /usr/bin/mlocate                                         [ OK ]

    /usr/bin/newgrp                                          [ OK ]

    /usr/bin/passwd                                          [ OK ]

    /usr/bin/perl                                            [ OK ]
for any command u can using  > rkhunter --help
Sort:  

Hello! Your post has been resteemed and upvoted by @ilovecoding because we love coding! Keep up good work! Consider upvoting this comment to support the @ilovecoding and increase your future rewards! ^_^ Steem On!

Reply !stop to disable the comment. Thanks!