Chkrootkit is a tool to locally check for signs of a rootkit, including checking system binaries for rootkit modification, interface promiscuous mode, lastlog and wtmp deletions, LKM trojans, strings replacement, and more. It has been recognized as one of the Top 10 Tools to Scan Linux Servers for Vulnerability and Malware by Cyber Security News, with continuous updates and bug fixes for over 25 years.
FEATURES
SIMILAR TOOLS
An open source machine code decompiler that converts binary executables into readable C source code across multiple architectures and file formats.
CAPA is a static analysis tool that detects and reports capabilities in executable files across multiple formats, mapping findings to MITRE ATT&CK tactics and techniques.
Falcon Sandbox is a malware analysis framework that provides in-depth static and dynamic analysis of files, offering hybrid analysis, behavior indicators, and integrations with various security tools.
A collaborative malware analysis framework with various features for automated analysis tasks.
An open source .NET deobfuscator and unpacker that restores packed and obfuscated assemblies by reversing various obfuscation techniques.
Valkyrie is a sophisticated file verdict system that enhances malware detection through behavioral analysis and extensive file feature examination.
Intezer is a cloud-based malware analysis platform that detects and classifies malware using genetic code analysis.
Joe Sandbox Community provides automated cloud-based malware analysis across multiple OS platforms.