To avoid the replacement of program manifest and files, Kaspersky Endpoint Agent can verify their integrity. The integrity verification utility verifies the integrity of files and modules listed in special lists that are called manifest files. A manifest file of a program component contains files and modules whose integrity is critical for correct operation of the component. The integrity of manifest files themselves is also verified.
By default, the integrity verification utility is located in the /opt/kaspersky/epagent/sbin directory.
To run the integrity verification utility:
./integrity_checker --signature-type kds-with-filename [other parameters] [<path to the manifest>].As a result, the terminal will display verification statistics as well as a return code:
0 means the integrity of Kaspersky Endpoint Agent manifest and files is maintained1 means this is not the caseParameters and arguments are listed below.
<path to the manifest>
This argument is used to verify the integrity of the manifest located at the specified path. If this parameter is not specified, the utility uses the integrity_check.xml file in the utility directory as the manifest file.
--verbose
This parameter is used to display integrity verification results for each file and a verbose description of integrity errors, if any.
--trace <path to the file>
This parameter is used to specify a file for saving trace data at the DEBUG level.
If this parameter is not specified, trace data is not saved.
--crl <path to the list of revoked certificates>
This parameter is used to verify the signature of the manifest using a list of revoked certificates located at the specified path.