Tag: lkms

How Do I Find Hidden Processes and Ports ?

Unhide is a forensic tool to find hidden processes and TCP/UDP ports by rootkits / LKMs or by another hidden technique. Unhide (ps) Detecting hidden processes. Implements six techniques Compare /proc vs /bin/ps output ¬†Compare info gathered from /bin/ps with info gathered by walking thru the procfs. Compare info gathered […]