Existing users, 
 OS X Rootkit Hunter - 0.2scans OS X for rootkits & other vulnerabilities |
|
||||||||||||||||
|
|||||||||||||||||
Information Related to Version:
Broken Link? Newer Version? Tell us!
Product Description:
OS X Rootkit Hunter is based on Michael Boelen`s "rootkit hunter"
but little modified for easier/better usability on Mac OS X.
OS X Rootkit Hunter is scanning tool to detect nasty tools on your Mac. This tool scans for rootkits, backdoors and local exploits by running tests like:
- Look for files used by rootkits
- Look for suspected strings
- Look for hidden files
- Scans within plaintext and binary files
and much more...
What's new in this version:
- Built with Michael Boelen's rootkit hunter 1.3.0
- Added additional Network check, to inform you about open and listen TCP Ports
- Universal Binary
Operating System Requirements:
This product is designed to run on the following operating systems:
- Mac OS X 10.5 Intel
- Mac OS X 10.5 PPC
Additional Requirements:
- Mac OS X 10.5 "Leopard"
- Administrator privileges
- Direct internet access if you want to do an rootkit db update
Screenshots:
Download Links:
Download OS X Rootkit Hunter Now (File Size: 1.0M)
Your Installed Versions:
Feedback Summary:
| This Version: | |||||
| Overall Rating: |   (3.7) |
Features: | (3.7) |
Support: | (3.0) |
| Ease of Use: | (3.7) |
Quality / Stability: | (3.7) |
Price: | Not rated (0.0) |
Key to Types of Feedback:
Reviews 
Troubleshooting 
Usage Tips 
Developer Notes 
Commentary 
Featured Reviews
Its a nice tool to have. - Version: 0.2, 1/18/2008 12:00AM PST
devnull7
1) The installed folder, with the app and all the subfolders, MUST be left in the Applications folder as is. DO NOT MOVE IT. Why? This is just a bare bones GUI of what is actually a CLI application that runs in the Terminal. In order to work it must be in exactly the location it expects to be in order for it to access all the files it requires when it runs. You also must NOT change the name of anything, including the folder for the app. It's UNIX stuff. It's annoying if you're not used to it.
2) When you run the app and hit the "start rootkit scan" button, the Terminal cranks up and Rootkit Hunter runs a script of stuff to check. You should get a Terminal window with a bunch of tests and results scrolling down. If you have any nasty stuff in your system, it will be listed in the Terminal window. You may well get some innocuous 'warning' listings. Unless you're a UNIX geek, don't worry about them. If you want to save the results you can Print them, from the File menu. I save my test results for everything in a "Reports" folder I keep in my Documents folder. I label what app created the results and the date.
3) When you Quit the app, you'll note that the Terminal windows does NOT Quit, so you have to DIY.
4) There is a FAQ buried in the files inside the folder where the app is located. Go to:
/Applications/OSXrkhunter/share/doc/rkhunter-1.3.0/FAQ . It has some useful stuff about the application. Some of it is geek-speak, but some is of interest to others, including what to do if you get a positive result for a rootkit, lord forbid. There is also another README file buried in there as well. It is for intermediate users and above who want to know more detail or who want to join the rkhunter-users mailing list or visit the rkhunter SourceForge website.
Hope that helps!
:-Derek