Bug#617956: ITP: unhide.rb -- Forensic tool to find processes hidden by rootkits

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#617956: ITP: unhide.rb -- Forensic tool to find processes hidden by rootkits
From: Julien Valroff <julien@debian.org>
Date: Sat, 12 Mar 2011 21:57:57 +0100
Message-id: <[🔎] 20110312205756.GA3558@kirya.net>
Reply-to: Julien Valroff <julien@debian.org>, 617956@bugs.debian.org

Package: wnpp
Severity: wishlist
Owner: Julien Valroff <julien@debian.org>


* Package name    : unhide.rb
  Upstream Author : Johan Walles <johan.walles@gmail.com> 
* URL             : http://code.launchpad.net/unhide.rb
* License         : GPL
  Programming Lang: Ruby
  Description     : Forensic tool to find processes hidden by rootkits

Unhide.rb is a reimplementation of unhide in Ruby.

It currently does the does the same checks as "unhide proc" and "unhide
sys", while being about 10x faster than the original C code.

It also has better diagnostics when hidden processes are found.

-- 
  .''`.   Julien Valroff ~ <julien@kirya.net> ~ <julien@debian.org>    
 : :'  :  Debian Developer & Free software contributor
 `. `'`   http://www.kirya.net/
   `-     4096R/ E1D8 5796 8214 4687 E416  948C 859F EF67 258E 26B1

Reply to:

Prev by Date: Bug#615898: marked as done (ITP: libparse-http-useragent-perl -- parser for the HTTP User Agent string)
Next by Date: Bug#616526: marked as done (ITP: libmath-complex-perl -- complex numbers and associated mathematical functions)
Previous by thread: Bug#615898: marked as done (ITP: libparse-http-useragent-perl -- parser for the HTTP User Agent string)
Next by thread: Bug#616690: RFH: nfs-utils -- NFS support files common to client and server
Index(es):
- Date
- Thread