head	1.3;
access;
symbols
	RELEASE_8_3_0:1.2
	RELEASE_9_0_0:1.2
	RELEASE_7_4_0:1.2
	RELEASE_8_2_0:1.2
	RELEASE_6_EOL:1.2
	RELEASE_8_1_0:1.2
	RELEASE_7_3_0:1.2
	RELEASE_8_0_0:1.2
	RELEASE_7_2_0:1.1;
locks; strict;
comment	@# @;


1.3
date	2013.02.09.15.08.47;	author svnexp;	state Exp;
branches;
next	1.2;

1.2
date	2009.07.06.07.55.31;	author itetcu;	state Exp;
branches;
next	1.1;

1.1
date	2009.03.13.00.31.07;	author wxs;	state Exp;
branches;
next	;


desc
@@


1.3
log
@## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/311978
## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
@
text
@--- /dev/null	2013-01-06 20:26:43.000000000 +0200
+++ Makefile	2013-01-06 20:26:46.000000000 +0200
@@@@ -0,0 +1,23 @@@@
+DESTDIR		:= ${PREFIX}
+MANDIR		:= ${DESTDIR}/man
+INSTALL_PROGRAM	:= /usr/bin/install -s -m 0700
+INSTALL_MAN	:= /usr/bin/install -m 0444
+GZIP_CMD	:= /usr/bin/gzip -9
+MKDIR_CMD	:= /bin/mkdir -p
+
+all: unhide unhide-tcp
+
+unhide: unhide-posix.c
+	gcc -Wall -O2 --static unhide-posix.c -o unhide
+
+unhide-tcp: unhide-tcp.c unhide-tcp-fast.c unhide-output.c
+	gcc -Wall -O2 --static unhide-tcp.c unhide-tcp-fast.c unhide-output.c -o unhide-tcp
+
+install: all
+	${MKDIR_CMD} ${DESTDIR}/sbin ${MANDIR}/man8
+	${INSTALL_PROGRAM} unhide ${DESTDIR}/sbin/unhide
+	${INSTALL_PROGRAM} unhide-tcp ${DESTDIR}/sbin/unhide-tcp
+	${INSTALL_MAN} man/unhide.8 ${MANDIR}/man8 && \
+		${GZIP_CMD} ${MANDIR}/man8/unhide.8
+	${INSTALL_MAN} man/unhide-tcp.8 ${MANDIR}/man8 && \
+		${GZIP_CMD} ${MANDIR}/man8/unhide-tcp.8
@


1.2
log
@- fix install / mtree with custom PREFIX
- bump PORTREVISION

Submitted by:	maintainer
Reported by:	QATty
@
text
@d1 3
a3 3
--- /dev/null	2009-02-26 16:27:00.000000000 +0200
+++ Makefile	2009-02-26 16:26:45.000000000 +0200
@@@@ -0,0 +1,19 @@@@
d11 7
a17 3
+all:
+	gcc unhide.c -o unhide
+	gcc unhide-tcp.c -o unhide-tcp
@


1.1
log
@Unhide is a forensic tool to find hidden processes and TCP/UDP ports by
rootkits / LKMs or by another hidden technique. It consists of two
programs: unhide and unhide-tcp.

unhide detects hidden processes through:
   * Comparison of /proc vs /bin/ps output.
   * Comparison of info gathered from /bin/ps with info gathered from.
   * Syscalls (syscall scanning).
   * Full PIDs space ocupation (PIDs bruteforcing).

unhide-tcp identifies TCP/UDP ports that are listening but not listed in
/bin/netstat by doing brute forcing of all TCP/UDP ports availables.

WWW: http://http://www.security-projects.com/?Unhide/

PR:		ports/132131
Submitted by:	Nikos Ntarmos <ntarmos@@cs.uoi.gr>
@
text
@d4 1
a4 1
+DESTDIR		:= /usr/local
@

