> i am developing a small host integrity scanner / checker, to hunt
> rootkits and trojans. offcourse, i need to add more methods /
> techniques to detect. I am currently hashing out important files like
> kernel, /boot dir and System.map files. Is there any other possible
> way to code it ...
> rootkits and trojans. offcourse, i need to add more methods /
> techniques to detect. I am currently hashing out important files like
> kernel, /boot dir and System.map files. Is there any other possible
> way to code it ...
[ more ]