With Zeppoo you can detect if a rootkit is installed on your system. It also allows you to detect hidden tasks, modules, syscalls, some corrupted symbols and also hidden connections.

For that, Zeppoo uses mainly /dev/kmem to inspect directly the kernel memory and when it's possible /dev/mem.

New additions for version 0.0.4
Support Redhat, Ubuntu with -r option
Use MD5
AMD64 support
lots of bugfixes