How to Install and Uninstall unhide-gui Package on Kali Linux
Last updated: May 19,2024
1. Install "unhide-gui" package
In this section, we are going to explain the necessary steps to install unhide-gui on Kali Linux
$
sudo apt update
Copied
$
sudo apt install
unhide-gui
Copied
2. Uninstall "unhide-gui" package
Please follow the guidance below to uninstall unhide-gui on Kali Linux:
$
sudo apt remove
unhide-gui
Copied
$
sudo apt autoclean && sudo apt autoremove
Copied
3. Information about the unhide-gui package on Kali Linux
Package: unhide-gui
Source: unhide
Version: 20220611-1
Installed-Size: 52
Maintainer: Debian Security Tools
Architecture: amd64
Replaces: unhide (= 20210124-2)
Depends: python3, python3-tk, unhide
Breaks: unhide (= 20210124-2)
Size: 19096
SHA256: aac821501cc0ff5a598fc2c81fde58eca1d3384c0adc1ad42ed145e9315f1a41
SHA1: 59b4c31897b279f43863b9176607c12841406660
MD5sum: e14cc9923429ece28722316d8ff77113
Description: graphical user interface for unhide
This package unhide-gui provides a graphical user interface for unhide.
.
Unhide is a forensic tool to find processes and TCP/UDP ports hidden by
rootkits, Linux kernel modules or by other techniques. It includes two
utilities: unhide and unhide-tcp.
.
unhide detects hidden processes using the following six techniques:
* Compare /proc vs /bin/ps output
* Compare info gathered from /bin/ps with info gathered by walking thru the
procfs.
* Compare info gathered from /bin/ps with info gathered from syscalls
(syscall scanning).
* Full PIDs space occupation (PIDs bruteforcing)
* Reverse search, verify that all thread seen by ps are also seen by the
kernel (/bin/ps output vs /proc, procfs walking and syscall)
* Quick compare /proc, procfs walking and syscall vs /bin/ps output
.
unhide-tcp identifies TCP/UDP ports that are listening but are not listed in
/bin/netstat through brute forcing of all TCP/UDP ports available.
.
This package is useful for network security checks, in addition to forensics
investigations.
Description-md5:
Homepage: https://www.unhide-forensics.info
Section: admin
Priority: optional
Filename: pool/main/u/unhide/unhide-gui_20220611-1_amd64.deb
Source: unhide
Version: 20220611-1
Installed-Size: 52
Maintainer: Debian Security Tools
Architecture: amd64
Replaces: unhide (= 20210124-2)
Depends: python3, python3-tk, unhide
Breaks: unhide (= 20210124-2)
Size: 19096
SHA256: aac821501cc0ff5a598fc2c81fde58eca1d3384c0adc1ad42ed145e9315f1a41
SHA1: 59b4c31897b279f43863b9176607c12841406660
MD5sum: e14cc9923429ece28722316d8ff77113
Description: graphical user interface for unhide
This package unhide-gui provides a graphical user interface for unhide.
.
Unhide is a forensic tool to find processes and TCP/UDP ports hidden by
rootkits, Linux kernel modules or by other techniques. It includes two
utilities: unhide and unhide-tcp.
.
unhide detects hidden processes using the following six techniques:
* Compare /proc vs /bin/ps output
* Compare info gathered from /bin/ps with info gathered by walking thru the
procfs.
* Compare info gathered from /bin/ps with info gathered from syscalls
(syscall scanning).
* Full PIDs space occupation (PIDs bruteforcing)
* Reverse search, verify that all thread seen by ps are also seen by the
kernel (/bin/ps output vs /proc, procfs walking and syscall)
* Quick compare /proc, procfs walking and syscall vs /bin/ps output
.
unhide-tcp identifies TCP/UDP ports that are listening but are not listed in
/bin/netstat through brute forcing of all TCP/UDP ports available.
.
This package is useful for network security checks, in addition to forensics
investigations.
Description-md5:
Homepage: https://www.unhide-forensics.info
Section: admin
Priority: optional
Filename: pool/main/u/unhide/unhide-gui_20220611-1_amd64.deb
4. References on Kali Linux
5. The same packages on other Linux Distributions
Popular Linux Distros
Ubuntu
Arch
Linux Mint
Fedora
Kali Linux
Debian
openSuSE
CentOS
Oracle Linux
Rocky Linux
Manjaro
AlmaLinux
Amazon Linux
Red Hat Enterprise Linux