RCLocals is inspired by ‘Autoruns’ from Sysinternals, RCLocals analyzes all Linux startup possibilities to find backdoors, also performs process integrity verification, scan for DLL injected processes and much more
·List GPG keys trusted by the system
·Installed Packages
·File integrity
·Process integrity (process and libraries loaded in a process that not belongs to any installed package)
·Processes with name spoofed (processes that use prctl() to change their name in /bin/ps)
·CRON entries
·RC files
·X system startup files
·Active Systemd Units
·Systemd Timer Units
·tmpfiles.d
·linger users
For only suspicious information:
#python3 rclocals.py –triage
For detailed information:
#python3 rclocals.py –all
Microsoft has officially unveiled its latest gaming venture, Project Helix, a next-generation gaming console set…
In the digital era, an email address can reveal much more than just a contact…
Mr.Holmes is an OSINT (Open Source Intelligence) tool designed to gather valuable information from public…
WhatWeb is the perfect name for this tool. It answers the question, “What is that…
In an era dominated by messaging apps, WhatsApp has become a key platform for personal…
Imagine if you had a super-powered assistant who could automatically handle all the boring, repetitive…