https://x7peeps.com/tags/RootKit/index.htmlHugozh-CNSat, 20 Jun 2026 11:00:00 +0800https://x7peeps.com/%E5%AE%89%E5%85%A8/%E5%BA%94%E6%80%A5%E5%93%8D%E5%BA%94/0x04%E5%BA%94%E6%80%A5%E5%93%8D%E5%BA%94%E6%8A%A5%E5%91%8A/%E7%BD%91%E9%A1%B5%E7%AF%A1%E6%94%B9/1.Redis%E6%9C%AA%E6%8E%88%E6%9D%83%E8%AE%BF%E9%97%AE%E6%BC%8F%E6%B4%9E%E8%87%B4%E5%AE%98%E7%BD%91%E8%A2%AB%E6%A4%8D%E5%85%A5%E9%BB%91%E9%93%BE/index.htmlSat, 20 Jun 2026 11:00:00 +0800https://x7peeps.com/%E5%AE%89%E5%85%A8/%E5%BA%94%E6%80%A5%E5%93%8D%E5%BA%94/0x04%E5%BA%94%E6%80%A5%E5%93%8D%E5%BA%94%E6%8A%A5%E5%91%8A/%E7%BD%91%E9%A1%B5%E7%AF%A1%E6%94%B9/1.Redis%E6%9C%AA%E6%8E%88%E6%9D%83%E8%AE%BF%E9%97%AE%E6%BC%8F%E6%B4%9E%E8%87%B4%E5%AE%98%E7%BD%91%E8%A2%AB%E6%A4%8D%E5%85%A5%E9%BB%91%E9%93%BE/index.html某出版社官网出现黑链，溯源发现攻击者利用Redis未授权漏洞获取SSH权限，再通过TRS服务器漏洞植入Webshell。https://x7peeps.com/%E5%AE%89%E5%85%A8/%E5%BA%94%E6%80%A5%E5%93%8D%E5%BA%94/0x03%E5%8F%96%E8%AF%81%E5%88%86%E6%9E%90/%E7%97%85%E6%AF%92%E6%9F%A5%E6%9D%80%E6%A3%80%E6%9F%A5%E7%BB%93%E6%9E%9C%E4%B8%8E%E5%A4%9A%E5%BC%95%E6%93%8E%E5%88%A4%E5%AE%9A%E5%B7%AE%E5%BC%82%E5%8F%8ARootkit%E6%AE%8B%E7%95%99%E5%88%86%E6%9E%90/index.htmlWed, 17 Jun 2026 07:00:00 +0800https://x7peeps.com/%E5%AE%89%E5%85%A8/%E5%BA%94%E6%80%A5%E5%93%8D%E5%BA%94/0x03%E5%8F%96%E8%AF%81%E5%88%86%E6%9E%90/%E7%97%85%E6%AF%92%E6%9F%A5%E6%9D%80%E6%A3%80%E6%9F%A5%E7%BB%93%E6%9E%9C%E4%B8%8E%E5%A4%9A%E5%BC%95%E6%93%8E%E5%88%A4%E5%AE%9A%E5%B7%AE%E5%BC%82%E5%8F%8ARootkit%E6%AE%8B%E7%95%99%E5%88%86%E6%9E%90/index.html围绕 0x02 病毒查杀检查取证结果，分析如何从 ClamAV、chkrootkit、rkhunter 等工具的判定差异中判断真实威胁，如何处理 Rootkit 残留问题。