Rootkit Scanner is tool to ensure Linux web server is not infected with nasty virus like Rootkit, Backdoor and local exploit and etc. Below are the scanning test performed:
– MD5 hash compare
– Change in default files used by Rootkit
– Wrong file permissions for binaries
– suspected strings in LKM and KLD modules
– hidden files
– Optional scan within plain text and binary files
How to Install:
First: Run the command to get the RKHunter Rootkit files on server
$ wget http://space.dl.sourceforge.net/project/rkhunter/rkhunter/1.3.8/rkhunter-1.3.8.tar.gz
$ cd rkhunter-1.3.8
$ sh installer.sh
Installation will get completed soon and after that you are ready to RKHhunter. To see the list of commands which can be executed use: the command below:
$ rkhunter –help