Package: wnpp
Owner: "Samuel Henrique" <
samueloph@gmail.com>
Severity: wishlist
Prochunter aims to find hidden process with all userspace and most of the kernelspace rootkits.
This tool is composed of a kernel module that prints out all running processes walking the task_struct list and creates /sys/kernel/proc_hunter/set entry. A python script that
invokes
the kernel function and diffs the module output with processes list collected from userspace (/proc walking).
I intend to maintain this package under the pkg-security team.
--
Samuel Henrique <samueloph>