August 12th, 2005, 03:32 PM
however, samhain nicely used is a really powerfull tool - sk is indeed from what i read is installing its own private system.map file, which would trigger the file integrity alert. (just got to...
August 12th, 2005, 02:49 PM
Heya jon,
just in case you didnt find anything yet, here are 2 sources for a port knocking daemon : fk
http://www.cipherdyne.org/fwknop/ -> pretty good analysis of packet : port knocking + os...
August 12th, 2005, 01:28 PM
Well actually from what i just read kern_check is a tool from samhain i think, and it detects the rootkit due to the system calls change.. i truely believe that for now it is able to detect sk after...
August 11th, 2005, 09:17 PM
Just a ()sis for encryption and php :
Another way to encrypt data with php/mysql kind of handy is to use the php mcrypt integrated functions (configure --with-mycrypt, and you will also need...
August 11th, 2005, 09:04 PM
http://www.zend.com/zend/tut/tutorial-brogdon.php
August 11th, 2005, 04:37 PM
From my experience with the suckit backdoor by sd/devik/etc :
The sk backdoor which is not really a virus/worm because its not spreading by itself
but it is still spreading very fastly on poorly...
August 9th, 2005, 02:14 PM
Hello,
Let me write about :
http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=ELF_GMON.A
Ive been going across this elf infector (linux) virus GMON.A a few times now(as you can...