Tools to detect a hack on Windows
For older version of windows Filemon program v 7.04 http://www.brothersoft.com/filemon-155217.html
Which has been replace with Process Monitor
http://technet.microsoft.com/en-us/sysinternals/bb896645.aspx
Here are some other security tools http://technet.microsoft.com/en-us/sysinternals/bb795534.aspx
For Linux
http://www.cyberciti.biz/tips/top-linux-monitoring-tools.html
Thanks Jagad.
I liked reading Linux article and now thinking to experiment on some of them . Then I will try to write blog on that.
Process Monitor tool is also good one for Windows.
I Liked nagios, nmap, tcpdump, w, iostat
You know something about picld?
Its in /usr/lib/picl but saying command not founf. althought its there with 755 permission.
Hi Sanjeev Kumar,
It looks like you working on Solaris on x86 Hardware.. When it comes Scalability Linux is the winner, but because of this it has set of configuration for everything including setting path.
Type SET without parameters to display all the current environment variables. If you do not see /usr/lib/picl in the path, you have found the cause of the error message " command not found"
Here is a link on how to add paths to PATH
http://www.captain.at/programming/solaris-tricks/
And if anybody wants to know more about environment variables check this link out its cool
http://webtools.live2support.com/linux/env.php
Thanks Jagad.
I usually use top, w , env, $PATH, set etc to check activities and file's path.
And yes it was not there. So exclusively you have to write its pathame there to make it work out.
But usually it should set $PATH automatically, at the time of installation right?
Each time you login to a UNIX host, the system looks in your home directory for initialisation files. Information in these files is used to set up your working environment.
The guidelines are to set ENVIRONMENT variables in the .login file and SHELL variables in the .cshrc file.
so add the command to .cshrc file will make sure everytime you login the path is aviable.
I hope this helps
Jagad
The topic talks about how to detect a hack so just to keep on track to the subject Title. 
I will mention that these system environment variables are automatically created by Windows upon boot-up in Windows Registry key HKEY_LOCAL_MACHINE\ SYSTEM\ CurrentControlSet\ Control\ Session Manager\ Environment
This is where people can see what setting in the environment are present that are not suppose to be there. A another manual peak into watching out for uninvited guest.
On Unix/Linux system you can look into .profile, .cshrc, or .login this is a good start.
