Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 12:18:02 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=2151342944&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Flinux%2Fsecurity%2Felfcmp-1.0.0.tar.gz%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.2151342944.1338207482.1338207482.1338207482.1%3B%2B__utmz%3D32867617.1338207482.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/31887/elfcmp-1.0.0.tar.gz http://packetstormsecurity.org/files/31887/elfcmp-1.0.0.tar.gz http://packetstormsecurity.org/files/31887/elfcmp-1.0.0.tar.gz.html Tue, 21 Oct 2003 17:24:01 GMT Elfcmp compares running processes to the their respective binary image to ensure that the process image in memory has not been tampered with after execution. This is useful for security auditing, as other methods that rely strictly on checking disk image checksums are not reliable if only the process image is being tampered with.