I have a client who wants me to check her Mac for any malicious software that has been installed. Such as a keylogger, rootkit ect.
Does anyone know what the best tool to use on a Mac would be to gather this information. And will the tool tell me when it was installed and how can she elimate it from happening again if something is in fact there.
Thanks,
"forensic geek"
Hey Gturner,
Since MacOSx is basically a Unix based system, I'd recommend tiger and chkrootkit as first response.
You can find them at http//
Word of warning on both tiger provides a lot of output, which you need to put into perspective (think false positives). Same goes for chkrootkit. I'd advise you to read up on both tools before using them.
Good luck )
From PCTOOLS site
Release of iAntiVirus v1.0 beta (2) for Apple Mac
Hi All,
We are happy to annouce the release of iAntiVirus v1.0 beta (2).
Changes in this version
1. Addresses a scan issue reported by 2 of our external beta testers.
2. Installer includes the latest virus definitions.
For more info check out http//blog.iantivirus.com/
Note If you have already installed iAntiVirus v1.0 beta, you can simply run a Smart Update to the latest version.
If you would like to download and install iAntiVirus, please click here.
(The following link will download the BETA software)
http//
__________________
Thanks,