OpenMSP
RKHunter logo

RKHunter

Endpoint Security (Antivirus/EPP)

Open Source
Free Tier
Self-hosted
OpenMSP Score
41
22
Reddit Impact Score
Github Score
847
154Stars
33Forks
11Commits
Aug 29, 2013Last commit

Alternative Vendors

Osquery
Osquery
ClamAV
ClamAV
Lynis
Lynis
Velociraptor
Velociraptor

Commercial Alternatives

Todyl
Todyl
Webroot Endpoint Protection
Webroot Endpoint Protection
Bitdefender GravityZone
Bitdefender GravityZone
Sophos Intercept X
Sophos Intercept X
Open source rootkit scanner for Unix-like systems More detailed information about this vendor will be added soon.
image media

Key Features

Rootkit Detection

Scans for known rootkits, backdoors, and local exploits using signature-based detection

File Integrity Checking

Compares SHA-1 hashes of system files against known good hashes to detect modifications

System Auditing

Checks for hidden files, wrong permissions, suspicious kernel strings, and system configuration issues

Automated Scheduling

Can be configured to run automatically via cron jobs with email notifications

Pros and Cons

Pros

Free and Lightweight

Completely free GPL-licensed tool with minimal system resource requirements

Comprehensive Scanning

Checks multiple attack vectors including rootkits, backdoors, and system integrity

Easy Automation

Simple to configure for automated daily scans with email reporting

Cons

Detection Only

Cannot remove detected rootkits or malware, only identifies potential threats

False Positives

May generate false alarms due to legitimate system changes or custom configurations

Limited Updates

Project development has slowed with infrequent signature database updates

Feature Comparison

Comments

No Comments Yet

Be the first to share your experience with RKHunter.