How To Install unhide.rb on Kali Linux

In this tutorial we learn how to install unhide.rb on Kali Linux. unhide.rb is Forensics tool to find processes hidden by rootkits

Introduction

In this tutorial we learn how to install unhide.rb on Kali Linux.

What is `unhide.rb`

unhide.rb is:

Unhide.rb is a forensics tool to find processes hidden by rootkits.

It looks for active processes in many different ways. Processes found by some means but not others are considered to be “hidden”, and are reported to the user.

Unhide.rb is a tentative of rewrite in Ruby of the original Unhide, which is written in C. While being much faster, it does not implement all the diagnostics of the original version. It is also less secure as it cannot be statically compiled.

This package can be used by rkhunter in its daily scans.

There are three methods to install unhide.rb on Kali Linux. We can use apt-get, apt and aptitude. In the following sections we will describe each method. You can choose one of them.

Install unhide.rb Using apt-get

Update apt database with apt-get using the following command.

sudo apt-get update

After updating apt database, We can install unhide.rb using apt-get by running the following command:

sudo apt-get -y install unhide.rb

Install unhide.rb Using apt

Update apt database with apt using the following command.

sudo apt update

After updating apt database, We can install unhide.rb using apt by running the following command:

sudo apt -y install unhide.rb

Install unhide.rb Using aptitude

If you want to follow this method, you might need to install aptitude on Kali Linux first since aptitude is usually not installed by default on Kali Linux. Update apt database with aptitude using the following command.

sudo aptitude update

After updating apt database, We can install unhide.rb using aptitude by running the following command:

sudo aptitude -y install unhide.rb

How To Uninstall unhide.rb on Kali Linux

To uninstall only the unhide.rb package we can use the following command:

sudo apt-get remove unhide.rb

Uninstall unhide.rb And Its Dependencies

To uninstall unhide.rb and its dependencies that are no longer needed by Kali Linux, we can use the command below:

sudo apt-get -y autoremove unhide.rb

Remove unhide.rb Configurations and Data

To remove unhide.rb configuration and data from Kali Linux we can use the following command:

sudo apt-get -y purge unhide.rb

Remove unhide.rb configuration, data, and all of its dependencies

We can use the following command to remove unhide.rb configurations, data and all of its dependencies, we can use the following command:

sudo apt-get -y autoremove --purge unhide.rb

Dependencies

unhide.rb have the following dependencies:

ruby

References

unhide.rb website

Summary

In this tutorial we learn how to install unhide.rb package on Kali Linux using different package management tools: apt, apt-get and aptitude.