Hello everybody! I can say I’m a newbie at Linux. Wanted to ask about Linux’ task viewers. On the famous task viewers such as bpytop, htop etc., can viruses hide from them? Excluding the injected codes, can virus & tracker/logger softwares hide from classic task viewers of Linux? Do they show all kinds of services and running tasks?

  • lurch (he/him)
    link
    fedilink
    arrow-up
    3
    ·
    edit-2
    7 months ago

    in theory, a virus can hide from them if it replaces (or LD_PRELOADs) them with something that filters the virus from its output.

    those task viewers will show everything running, except some kernel modules, because they are part of the kernel.

    also fast cron jobs will only be visible for a very short time. only while they run. if they run for like 250ms you probably won’t notice them.