Rootkit Hunter

 8 likes

Rootkit Hunter is a POSIX system scanner for rootkits, backdoors and local exploits by running tests like:

License model

  • FreeOpen Source

Application type

Platforms

  • Linux
5 / 5 Avg rating (1)
8likes
1comment
0news articles

Features

Suggest and vote on features
No features, maybe you want to suggest one?

Rootkit Hunter News & Activities

Highlights All activities

Recent activities

No activities found.

Rootkit Hunter information

  • Developed by

    Unknown
  • Licensing

    Open Source and Free product.
  • Alternatives

    9 alternatives listed
  • Supported Languages

    • English

AlternativeTo Category

Security & Privacy

Popular alternatives

View all

Our users have written 1 comments and reviews about Rootkit Hunter, and it has gotten 8 likes

Rootkit Hunter was added to AlternativeTo by Valeryan_24 on Apr 27, 2009 and this page was last updated Mar 28, 2019.

Comments and Reviews

   
 Post comment/review
Top Positive Comment
Jonathan DUMONT
Mar 18, 2019
0

This software still in production the mailling list is active (and I just succeed an installation and to receive update)

And just succeed my installation. The only pain was they change their setup during 2018 and few distro like debian didn't bother to update the config file.

my mini how-to

  1. apt install -y rkhunter
  2. nano /etc/rkhunter.conf

than change those lines

UPDATE_MIRRORS=0 --> UPDATE_MIRRORS=1
MIRRORS_MODE=1 --> MIRRORS_MODE=0
WEB_CMD="/bin/false" --> WEB_CMD=curl

  1. rkhunter --update
  2. rkhunter --propupd

than create your own cron (/etc/cron.daily/rkhunter.sh)

( /usr/bin/rkhunter --versioncheck
/usr/bin/rkhunter --update
/usr/bin/rkhunter --cronjob --report-warnings-only
) | /usr/bin/mail -s 'rkhunter Daily Run $(hostname -s)' ${EMAIL}

What is Rootkit Hunter?

Rootkit Hunter is a POSIX system scanner for rootkits, backdoors and local exploits by running tests like:

  • MD5 hash compare
  • Look for default files used by rootkits
  • Wrong file permissions for binaries
  • Look for suspected strings in LKM and KLD modules
  • Look for hidden files
  • Optional scan within plaintext and binary files

Rootkit Hunter is released as GPL licensed project and free for everyone to use. Can be installed on macOS via Homebrew.

Official Links