On Wed, Jun 22, 2016 at 11:20 AM, Chris Young <chris.young...@gmail.com> wrote: > ok thanks, do you happen to have an idea as to how often this happens? >
Not often. https://github.com/ossec/ossec-hids/commits/master/src/rootcheck/db/rootkit_files.txt https://github.com/ossec/ossec-hids/commits/master/src/rootcheck/db/rootkit_trojans.txt > > > On Wednesday, 22 June 2016 13:36:57 UTC+1, dan (ddpbsd) wrote: >> >> On Wed, Jun 22, 2016 at 8:32 AM, Chris Young <chris.y...@gmail.com> wrote: >> > Hi, >> > >> > we are just considering implementing OSSEC and one of the requirements >> > is >> > for up to date rootkit checking. >> > >> > I can't seem to work out where to get the latest, if it is maintained >> > files >> > from, ie rootkit_files.txt and rootkit_trojans.txt >> > >> > One of the starting points to look at OSSEC was to have a centralised >> > version of rkhunter, which every time it runs looks for updates. >> > >> > any guidance please? >> > >> >> If someone updates the files and submits their changes, you can find >> them in the github repository: https://github.com/ossec/ossec-hids >> >> > many thanks, Chris >> > >> > -- >> > >> > --- >> > You received this message because you are subscribed to the Google >> > Groups >> > "ossec-list" group. >> > To unsubscribe from this group and stop receiving emails from it, send >> > an >> > email to ossec-list+...@googlegroups.com. >> > For more options, visit https://groups.google.com/d/optout. > > -- > > --- > You received this message because you are subscribed to the Google Groups > "ossec-list" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to ossec-list+unsubscr...@googlegroups.com. > For more options, visit https://groups.google.com/d/optout. -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to ossec-list+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.
