rootkit

maurice19 · 01-24-2010, 09:43 AM

Hello

I have a projet at university, and i need to install a rootkit or keylogger on the unix operating system, i have searched over the internet and i have found names of rootkits but i couldnt download or get the source code for the rootkit. Does anyone know where to find a rootkit or keylogger to use?

r3sistance · 01-24-2010, 09:49 AM

Erm,

Due to the nature of these programs I don't think you are going to find that much willing help on these issues. I certainly find it very hard to believe a university would actually ask you to rootkit or keylog a machine and helping you with this, even if it is legitimate leaves an open forum with information for those who are not legitimate to perform such a task for illegal purposes.

sohail0399 · 01-24-2010, 09:53 AM

Its good that your doing your university project but its better that try to build it yourself and then if you face any issue regarding tool and OS then ask specific question.
good keep it up and become good engr/tech

maurice19 · 01-24-2010, 09:54 AM

my initial subject was what are forensic and anti-forensic tools after defining them give examples of them and implement them, and one of the important anti-forensic tools is a rootkit, so i need to implement it to see its results then use the chrootkit per example to detect it simply.

maurice19 · 01-24-2010, 09:56 AM

well sohail the problem is that i dont know how to write a rootkit :S:S that is why am asking for help

unSpawn · 01-24-2010, 01:11 PM

If this indeed is related to the aptly named http://www.linuxquestions.org/questi...e-help-777297/ and given similarities with post #4 I'd say you have trouble searching. Which doesn't spell any good for somebody studying at a university. Given rootkit names and filenames that OSSEC HIDS, Chkrootkit or Rootkit Hunter search for you should be able to find accounts of breaches of security easily. Often those will list archive names you can subsequently search for. But even without going down that path you should be able to find nfo at common resources like Packetstorm or lotek.