LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 01-24-2010, 09:43 AM   #1
maurice19
LQ Newbie
 
Registered: Dec 2009
Posts: 11

Rep: Reputation: 0
rootkit


Hello

I have a projet at university, and i need to install a rootkit or keylogger on the unix operating system, i have searched over the internet and i have found names of rootkits but i couldnt download or get the source code for the rootkit. Does anyone know where to find a rootkit or keylogger to use?
 
Old 01-24-2010, 09:49 AM   #2
r3sistance
Senior Member
 
Registered: Mar 2004
Location: UK
Distribution: CentOS 6/7
Posts: 1,375

Rep: Reputation: 217Reputation: 217Reputation: 217
Erm,

Due to the nature of these programs I don't think you are going to find that much willing help on these issues. I certainly find it very hard to believe a university would actually ask you to rootkit or keylog a machine and helping you with this, even if it is legitimate leaves an open forum with information for those who are not legitimate to perform such a task for illegal purposes.
 
Old 01-24-2010, 09:53 AM   #3
sohail0399
Member
 
Registered: Oct 2008
Location: Pakistan, Islamabad
Distribution: CentOS, Fedora, Solaris
Posts: 154

Rep: Reputation: 23
Its good that your doing your university project but its better that try to build it yourself and then if you face any issue regarding tool and OS then ask specific question.
good keep it up and become good engr/tech
 
Old 01-24-2010, 09:54 AM   #4
maurice19
LQ Newbie
 
Registered: Dec 2009
Posts: 11

Original Poster
Rep: Reputation: 0
my initial subject was what are forensic and anti-forensic tools after defining them give examples of them and implement them, and one of the important anti-forensic tools is a rootkit, so i need to implement it to see its results then use the chrootkit per example to detect it simply.
 
Old 01-24-2010, 09:56 AM   #5
maurice19
LQ Newbie
 
Registered: Dec 2009
Posts: 11

Original Poster
Rep: Reputation: 0
well sohail the problem is that i dont know how to write a rootkit :S:S that is why am asking for help
 
Old 01-24-2010, 01:11 PM   #6
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,361
Blog Entries: 55

Rep: Reputation: 3547Reputation: 3547Reputation: 3547Reputation: 3547Reputation: 3547Reputation: 3547Reputation: 3547Reputation: 3547Reputation: 3547Reputation: 3547Reputation: 3547
If this indeed is related to the aptly named http://www.linuxquestions.org/questi...e-help-777297/ and given similarities with post #4 I'd say you have trouble searching. Which doesn't spell any good for somebody studying at a university. Given rootkit names and filenames that OSSEC HIDS, Chkrootkit or Rootkit Hunter search for you should be able to find accounts of breaches of security easily. Often those will list archive names you can subsequently search for. But even without going down that path you should be able to find nfo at common resources like Packetstorm or lotek.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
rootkit hunter false positive for Xzibit Rootkit on CentOS 4.8? abefroman Linux - Security 2 12-20-2009 09:19 AM
where can I get rootkit ?? iamthewind Linux - Security 21 05-04-2008 02:57 PM
Help Me!! Rootkit Axaline Linux - Newbie 8 10-26-2007 03:42 AM
rootkit? basilogics Linux - Software 2 08-19-2005 09:16 AM
rootkit? linuxtesting2 Linux - Security 3 12-06-2004 09:43 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 08:37 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration