Skip to content
A basic tool for finding rootkits and other suspicious things in Linux
Branch: master
Clone or download
This branch is even with ChicagolandSoftware:master.

Latest commit

Fetching latest commit…
Cannot retrieve the latest commit at this time.


Type Name Latest commit message Commit time
Failed to load latest commit information.

Rootkit Finder

An easy way to check for things like rootkits, reverse shells, bind shells, or other indicators of compromise on Linux, looking at task scheduling (such as cron and systemd timers), suspicious command history, network connections, logged in users, recent logins, aliases, PATH variable, and more!

You can’t perform that action at this time.