Date: Fri, 13 Mar 2009 00:31:07 +0000 (UTC) From: Wesley Shields <wxs@FreeBSD.org> To: ports-committers@FreeBSD.org, cvs-ports@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: ports/security/unhide Makefile distinfo pkg-descr ports/security/unhide/files patch-Makefile Message-ID: <200903130031.n2D0V7LN097869@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
wxs 2009-03-13 00:31:07 UTC
FreeBSD ports repository
Added files:
security/unhide Makefile distinfo pkg-descr
security/unhide/files patch-Makefile
Log:
Unhide is a forensic tool to find hidden processes and TCP/UDP ports by
rootkits / LKMs or by another hidden technique. It consists of two
programs: unhide and unhide-tcp.
unhide detects hidden processes through:
* Comparison of /proc vs /bin/ps output.
* Comparison of info gathered from /bin/ps with info gathered from.
* Syscalls (syscall scanning).
* Full PIDs space ocupation (PIDs bruteforcing).
unhide-tcp identifies TCP/UDP ports that are listening but not listed in
/bin/netstat by doing brute forcing of all TCP/UDP ports availables.
WWW: http://http://www.security-projects.com/?Unhide/
PR: ports/132131
Submitted by: Nikos Ntarmos <ntarmos@cs.uoi.gr>
Revision Changes Path
1.1 +30 -0 ports/security/unhide/Makefile (new)
1.1 +3 -0 ports/security/unhide/distinfo (new)
1.1 +22 -0 ports/security/unhide/files/patch-Makefile (new)
1.1 +15 -0 ports/security/unhide/pkg-descr (new)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200903130031.n2D0V7LN097869>