cvs commit: ports/security/unhide Makefile distinfo pkg-descr
ports/security/unhide/files patch-Makefile
Wesley Shields
wxs at FreeBSD.org
Thu Mar 12 17:31:12 PDT 2009
wxs 2009-03-13 00:31:07 UTC
FreeBSD ports repository
Added files:
security/unhide Makefile distinfo pkg-descr
security/unhide/files patch-Makefile
Log:
Unhide is a forensic tool to find hidden processes and TCP/UDP ports by
rootkits / LKMs or by another hidden technique. It consists of two
programs: unhide and unhide-tcp.
unhide detects hidden processes through:
* Comparison of /proc vs /bin/ps output.
* Comparison of info gathered from /bin/ps with info gathered from.
* Syscalls (syscall scanning).
* Full PIDs space ocupation (PIDs bruteforcing).
unhide-tcp identifies TCP/UDP ports that are listening but not listed in
/bin/netstat by doing brute forcing of all TCP/UDP ports availables.
WWW: http://http://www.security-projects.com/?Unhide/
PR: ports/132131
Submitted by: Nikos Ntarmos <ntarmos at cs.uoi.gr>
Revision Changes Path
1.1 +30 -0 ports/security/unhide/Makefile (new)
1.1 +3 -0 ports/security/unhide/distinfo (new)
1.1 +22 -0 ports/security/unhide/files/patch-Makefile (new)
1.1 +15 -0 ports/security/unhide/pkg-descr (new)
More information about the cvs-all
mailing list