Hydrogen Server Detection

High Nessus Network Monitor Plugin ID 2815

Synopsis

The remote host has been compromised and is running a 'Backdoor' program.

Description

The remote host is running Immunity's Hydrogen server. Hydrogen is a Backdoor/Trojan application that is often used by penetration-testing teams to backdoor a system that has been compromised.

Solution

Ensure that the instance of Hydrogen was actually installed by Security Team members while performing a sanctioned penetration test.

See Also

http://www.immunitysec.com/products-hydrogen.shtml

Plugin Details

Severity: High

ID: 2815

Family: Backdoors

Published: 2005/04/12

Modified: 2016/01/15

Nessus ID: 18039

Risk Information

Risk Factor: High