A straightforward yet powerful tool for locating rootkits on Unix-based systems is called Chkrootkit. Malicious software called rootkits can undermine a system's security by granting unauthorised access and disguising their existence.

Chkrootkit is a simple yet effective tool designed to identify rootkits on Unix-based systems. Rootkits are malicious software that can compromise the security of a system by providing unauthorized access and hiding their presence.


  • Chkrootkit focuses on detecting known rootkits by scanning the system for signatures and behaviors associated with these malicious tools.
  • Chkrootkit is lightweight and doesn't impose a significant performance overhead on the system. This makes it a quick and efficient tool for regular rootkit scans.
  • Chkrootkit is compatible with various Unix-based operating systems, including Linux and BSD variants. This versatility allows it to be used on a wide range of systems.
  • Chkrootkit is a portable tool that can be easily transferred and run on different systems without the need for extensive dependencies or installations.
  • The tool is designed with simplicity in mind, making it accessible to both security professionals and system administrators. Running a basic scan requires minimal configuration.


Chkrootkit is readily available in the Kali Linux repositories, making installation a straightforward process. Follow these steps to install Chkrootkit:



Execute the following command to run the Chkrootkit scan on your system:



Table of Contents: