Date: Fri, 13 Mar 2009 00:31:07 +0000 (UTC) From: Wesley Shields <wxs@FreeBSD.org> To: ports-committers@FreeBSD.org, cvs-ports@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: ports/security/unhide Makefile distinfo pkg-descr ports/security/unhide/files patch-Makefile Message-ID: <200903130031.n2D0V7LN097869@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
wxs 2009-03-13 00:31:07 UTC FreeBSD ports repository Added files: security/unhide Makefile distinfo pkg-descr security/unhide/files patch-Makefile Log: Unhide is a forensic tool to find hidden processes and TCP/UDP ports by rootkits / LKMs or by another hidden technique. It consists of two programs: unhide and unhide-tcp. unhide detects hidden processes through: * Comparison of /proc vs /bin/ps output. * Comparison of info gathered from /bin/ps with info gathered from. * Syscalls (syscall scanning). * Full PIDs space ocupation (PIDs bruteforcing). unhide-tcp identifies TCP/UDP ports that are listening but not listed in /bin/netstat by doing brute forcing of all TCP/UDP ports availables. WWW: http://http://www.security-projects.com/?Unhide/ PR: ports/132131 Submitted by: Nikos Ntarmos <ntarmos@cs.uoi.gr> Revision Changes Path 1.1 +30 -0 ports/security/unhide/Makefile (new) 1.1 +3 -0 ports/security/unhide/distinfo (new) 1.1 +22 -0 ports/security/unhide/files/patch-Makefile (new) 1.1 +15 -0 ports/security/unhide/pkg-descr (new)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200903130031.n2D0V7LN097869>