Feb 25 2008
Checking for Root Kits
For a long time I have used a program called chkrootkit for root kit scanning on Linux. This program recieved a much needed update in December of ‘07. To use it, download the package, extract it, and run make. Finally run chkrootkit > rootkit_scan.txt. After it finishes, view the results in rootkit_scan.txt. This is a really nice tool to add to your security arsenal.