|
|
|
|
|
|
by theamk
625 days ago
|
|
|
From the text, tons! This rootkit does not seem very stealthy at all. IMHO, a simplest one is to check $PATH. If there are suspicious entries, like /bin/.local/bin, it's a sign of infection. You can also check for presence of the specific files as mentioned close to the end of article. |
|
|