Great News!
Many students who study using our platform have reported that a large number of the practice questions here are very similar to those that appear in real exams. View Courses
Many students who study using our platform have reported that a large number of the practice questions here are very similar to those that appear in real exams. View Courses
Which tool scans a system for rootkits?
The Correct Answer is: A. chkrootkit
chkrootkit is a specialized tool used to scan a Linux system for rootkits—malicious programs designed to gain unauthorized root access while hiding their presence. It checks for known signatures and behaviors of rootkits by examining binaries and system files for signs of compromise.
Why the other options are incorrect:
B. firewall-cmd
This tool is part of the firewalld suite used to manage firewall rules and network zones. It controls access to ports and services but does not scan for malware or rootkits. Its purpose is to manage traffic, not detect system infections.
C. lynis
While lynis is a powerful security auditing tool, it provides a broader system analysis, such as checking for insecure settings, missing patches, and general hardening issues. Although it may alert on suspicious signs, it is not specifically focused on rootkit detection like chkrootkit.
D. auditctl
This tool is part of the Linux audit system, used to configure auditing rules that monitor system activity. It helps log and track changes for security compliance but does not perform scans for malware or detect rootkits.
Discover a range of courses designed to provide you with the knowledge and skills needed to excel in your chosen field.
You don’t need one month to study and pass your test.
With Prepsaret, it takes you a few days to grasp all the concepts needed to pass your exams