Date: Fri, 11 May 2001 14:23:38 -0400 From: "Joe Magee" <lists@joemagee.com> To: <questions@FreeBSD.ORG> Subject: Building a Trusted Rootkit Message-ID: <200105111423.AA4456760@mail.joemagee.com>
next in thread | raw e-mail | index | archive | help
Hello all.. I'm working on a project to gather trusted binarys for BSD releases... I'm building a Forensics Toolkit which will have trusted copies of ps, ls, netstat, ifconfig, etc... so that these trusted commands can be ran on a compromised machine via floppy or cdrom. I obviously can't just copy these files from a default install because I want them to be staticly compiled them so they don't attempt to access library files or anything like that... Can anyone point me in the right direction as to where to fine the source files to complie them? Is there a perticular tarball i should be looking for? Thanks! Joe Magee To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200105111423.AA4456760>