unhide.rb - Finder of hidden processes

NAME¶

unhide.rb - Scans system for hidden processes and lists any hits on stderr.

SYNOPSIS¶

unhide.rb

DESCRIPTION¶

Scans the system for hidden processes.

Progress messages are printed on stdout and can be redirected to /dev/null.

Error diagnostics and information about any hidden processes found is printed to stderr.

OPTIONS¶

unhide.rb takes no options

EXIT STATUS¶

0: No hidden processes found
1: Something went wrong during scanning
2: One or more hidden processes were detected

BUGS¶

Report bugs to <johan.walles@gmail.com> or <https://bugs.launchpad.net/unhide.rb>.

LICENSING¶

unhide.rb is licensed under the GPL-3, copyright Johan Walles <johan.walles@gmail.com>.

NOTES¶

unhide.rb is a Ruby port of unhide. When it was first written, the Ruby port was about 10x faster than the original C program and had much better diagnostics when hidden processes were found. The original unhide program can be found at <http://www.unhide-forensics.info/>.

March 2011

Source file:	unhide.rb.8.en.gz (from unhide.rb 22-4)
Source last updated:	2018-12-16T03:51:59Z
Converted to HTML:	2020-08-08T10:12:27Z