Key Logger sniffer
Hello All,
I was wondering is there a program that I can see if there is a key logger program installed. I know it is on my machine but it does not show up in the services. Does anybody know of a way to see what it is. Thanks for your help.:confused: |
Would you mind playing a bit with lsof and see what's opened on your system and what files are being used ?
Code:
man lsof Code:
lsof > openfiles.txt Regards Andy |
Quote:
|
Keyloggers need to run stealthily and access hardware, so under GNU/Linux that shouldn't be userspace apps (unprivileged aka ring 3 mode) but LKM's (kernel aka ring 0). Shouldn't be hard to find tools to interrogate and/or verify kernel and module integrity. Booting a Live CD and running the tools from there is your best option since this will boot a (presumably) untainted kernel.
|
Quote:
|
All times are GMT -5. The time now is 03:12 PM. |