BEURK - Experimental Unix RootKit

is a userland preload rootkit for GNU/Linux, heavily focused around anti-debugging and anti-detection.

Features:

  • Hide attacker files and directories
  • Realtime log cleanup (on utmp/wtmp)
  • Anti process and login detection
  • Bypass unhide, lsof, ps, ldd, netstat analysis
  • Furtive PTY backdoor client

Usage:

  • Compile
git clone https://github.com/unix-thrust/beurk.git
cd beurk
make





Source link

thanks you RSS link
( http://feedproxy.google.com/~r/EffectHacking/~3/EhrXqW9_7HY/beurk-experimental-unix-rootkit.html)

LEAVE A REPLY

Please enter your comment!
Please enter your name here