Saint Michael
Saint Michael is a Linux kernel module that attempts to detect and divert attempts to install a kernel-module backdoor into a running Linux system. This is done by monitoring the init_module and delete_module process for changes in the system structures.
| Licenses | GPL |
|---|
Recent releases
- 30 Dec 2004 22:42
Changes: This version adds self-integrity checking, and support for loading thru initrd with all checks enabled.
- 23 Jan 2002 14:09
Changes: Checks to detect the possible subversion of the kernel at load time have been added. This release also has full kernel text validation and kernel backup and reloading without rebooting. This should be considered very experimental for the time being, as this is much akin to performing open heart surgery upon oneself without anesthesia.
- 20 Jun 2001 23:27
Changes: Lots of new features, bugfixes, and updates.
