Advertisements

RootCheck A Trojan And Rootkit Detector For Linux

RootCheck is an Open Source software that scans all the system looking for possible problems (RootKit Detection), system auditing and policy monitoring parts of OSSEC. The result of the scan can be sent to an e-mail and you can choose between the html or text format. RootCheck is an extremely useful open source software for servers since it scans the server and finds any problems on it.

It is a very simple software. Just download, unpack, compile and execute it. It will scan the whole system and print if it founds or not anything.

Installation of RootCheck
1. # wget http://www.ossec.net/rootcheck/files/rootcheck-2.0.tar.gz
2. # tar -zxvf rootcheck-2.0.tar.gz
3. # cd rootcheck-2.0
4. # make
5. # ./ossec-rootcheck

If you would like to force a scan again type this command

./rootcheck.pl

Advertisements