Information about the package, unhide, which is shipped with common Linux distributions. The unhide package is designed for, Tool to find hidden processes and TCP/UDP ports from rootkits.
Package Name:
unhide
Summary:
Tool to find hidden processes and TCP/UDP ports from rootkits
Description:
Unhide is a forensic tool to find processes and TCP/UDP ports hidden by rootkits, Linux kernel modules or by other techniques. It includes two utilities: unhide and unhide-tcp. Unhide detects hidden processes using three techniques: - comparing the output of /proc and /bin/ps - comparing the information gathered from /bin/ps with the one gathered from system calls (syscall scanning) - full scan of the process ID space (PIDs bruteforcing) unhide-tcp identifies TCP/UDP ports that are listening but are not listed in /bin/netstat through brute forcing of all TCP/UDP ports available.
Architecture:
x86_64
Version:
20130526
Release:
1.el6
Size:
59 k
Repository:
epel
From Repository:
Licence:
GPLv3
Control the unhide package with the following handy commands outlined below.
yum install unhide
This command will install unhide on the server.
yum remove unhide
This command will un-install unhide on the server. When you run this command, you will be asked if you are sure that you want to remove unhide, so you have to manually confirm that you want to do this.
yum -y remove unhide
This command will un-install unhide on the server. When you run this command with th e -y flag, you will not be prompted to check that you are sure you want to remove the package - so be sure you absolutely want to remove unhide when using the -y flag.
yum update unhide
This command will update unhide to the latest version. When you run this command, you will be asked if you are sure that you want to remove unhide, so you have to manually confirm that you want to do this.
yum -y update unhide
This command will update unhide to the latest version. When you run this command with the -y flag, you will not be prompted to check that you are sure you want to remove the package - so be sure you absolutely want to remove unhide when using the -y flag.
yum info unhide
This command will show you core information about the unhide package.
yum deplist unhide
This command will show you the dependencies for unhide. Thankfully, when using Yum, if dependencies are required, these are also installed at the same time so you don't have to worry too much about that.
yum check-update unhide
This command will check if there is an update waiting on unhide. When you run this command this will return nothing if there is nothing to update, or, will return the package name if the package is due to be updated.