Home
Unix-Linux Administration
Database
Programming
Advanced Search
Resources
Contact Us
Home arrow Unix-Linux Administration arrow How to Install arrow How to install Chkrootkits
How to install Chkrootkits Print
Mar 18, 2008 at 01:44 PM
chkrootkit is a tool to locally check for signs of a rootkit. It contains:
  • shell script that checks system binaries for rootkit modification.
  • checks if the interface is in promiscuous mode.
  • checks for lastlog deletions.
  • checks for wtmp deletions.
  • checks for wtmpx deletions. (Solaris only).
  • checks for signs of LKM trojans.
  • checks for signs of LKM trojans.
  • quick and dirty strings replacement.
  • checks for utmp deletions.


Installing CHKROOTKIT

Login as root with SSH (putty workwith ssh client)

#Get source files from chkrootkit.org
wget ftp://ftp.pangeia.com.br/pub/seg/pac/chkrootkit.tar.gz


#Extract Tar files
 tar xzvf chkrootkit.tar.gz

#Change to the directory  chkrootkit
cd chkrootkit-0.*

#Compile
 make sense

#Run chkrootkit
./chkrootkit