From 538d7fe3f6820b5bf2d82d1f183ef2bab9c8700b Mon Sep 17 00:00:00 2001 From: Gabor Gyorvari Date: Mon, 31 Dec 2018 11:15:54 +0100 Subject: [PATCH] README update --- README.md | 45 ++++++++++++++++++++++++++------------------- 1 file changed, 26 insertions(+), 19 deletions(-) diff --git a/README.md b/README.md index f7ab7fa..6a9c663 100644 --- a/README.md +++ b/README.md @@ -14,26 +14,27 @@ How to use? ``` Usage: php scan.php -d - -h --help Show this help message - -d --directory Directory for searching - -e --extension File Extension to Scan - -E --scan-everything Scan all files, with or without extensions - -i --ignore Directory of file to ignore - -a --all-output Enables --checksum,--comment,--pattern,--time - -b --base64 Scan for base64 encoded PHP keywords - -m --checksum Display MD5 Hash/Checksum of file - -c --comment Display comments for matched patterns - -x --extra-check Adds GoogleBot and htaccess to Scan List - -l --follow-symlink Follow symlinked directories - -k --hide-ok Hide results with 'OK' status - -w --hide-whitelist Hide results with 'WL' status - -n --no-color Disable color mode - -s --no-stop Continue scanning file after first hit - -p --pattern Show Patterns next to the file name - -t --time Show time of last file change - -L --line-number Display matching pattern line number in file - -o --output-format Custom defined output format + -h --help Show this help message + -d --directory Directory for searching + -e --extension File Extension to Scan + -E --scan-everything Scan all files, with or without extensions + -i --ignore Directory of file to ignore + -a --all-output Enables --checksum,--comment,--pattern,--time + -b --base64 Scan for base64 encoded PHP keywords + -m --checksum Display MD5 Hash/Checksum of file + -c --comment Display comments for matched patterns + -x --extra-check Adds GoogleBot and htaccess to Scan List + -l --follow-symlink Follow symlinked directories + -k --hide-ok Hide results with 'OK' status + -w --hide-whitelist Hide results with 'WL' status + -n --no-color Disable color mode + -s --no-stop Continue scanning file after first hit + -p --pattern Show Patterns next to the file name + -t --time Show time of last file change + -L --line-number Display matching pattern line number in file + -o --output-format Custom defined output format -j --wordpress-version Version of wordpress to get md5 signatures + --combined-whitelist Combined whitelist ``` Ignore argument could be used multiple times and accept glob style matching ex.: "`cache*`", "`??-cache.php`" or "`/cache`" etc. @@ -81,6 +82,12 @@ scan -d . -j 4.9.2 ``` That will automatically get md5sums from wordpress api (https://api.wordpress.org/core/checksums/1.0/?version=x.x.x) and add it to whitelist. To check your version simply check wp-includes/version.php file of your wordpress +Combined whitelist +--- + +This list is a pre generated database for opensource projects more information at https://scr34m.github.io/php-malware-scanner/ site. +The scanner check for database hash validity and only download if it is different and of course when argument used. + Tools -----