ATTK is a tool that can be used to scan and collect system information and suspicious files from a system suspected to be infected/compromised. This information is used by your support engineer and the Antimalware Team to review and attempt to identify the suspicious process(es) and/or file(s).

Download the ATTK tool for your machine from the link provided by support:

• ATTK CLI (Linux) - This tool is the command-line/konsole only version.
  • attk_linux_cli_x64
  • attk_linux_cli_x86
• ATTK TUI (Linux) - This tool will create a graphical user interface in the konsole.
  • attk_linux_tui_x64
  • attk_linux_tui_x86
• ATTK TUI (Solaris) - This tool will create a graphical user interface in the konsole.
  • attk_solaris_tui_x64
  • attk_solaris_tui_x86

1. Mark the binary file as executable:

   sudo chmod +x attk_linux_cli_xxx.bin

2. Run ATTK for Linux:

   sudo ./ attk_linux_cli_xxx.bin
   su as root> ./ attk_linux_cli_xxx.bin

3. Accept the License Agreement:

   > ENTER

   

   ATTK will scan the machine.

   

   

4. Collect the generated zip file to upload to your support engineer for analysis.

   

   It will be in the same folder that you ran the ATTK from. Use a tool like WinSCP to get it off of the machine if needed.

1. Mark the binary file as executable:

   sudo chmod +x attk_linux_tui_xxx.bin

2. Run ATTK for Linux:

   sudo ./ attk_linux_tui_xxx.bin

3. Accept the License Agreement.

   

4. Select "Scan".

   

   Scan will proceed.

   

5. Refer to the generated ATTK for Linux Log Report.