php-malware-scanner

External/php-malware-scanner

Fork 0

mirror of https://github.com/scr34m/php-malware-scanner.git synced 2026-06-16 12:30:35 +00:00

Commit Graph

Select branches

Hide Pull Requests

gh-pages

master

#1

#2

#28

#3

#3

#31

#33

#34

#35

#37

#4

#47

#49

#52

#55

#63

#67

#80

#81

#92

#96

#97

#97

1.0.0

1.0.1

1.0.10

1.0.11

1.0.12

1.0.13

1.0.14

1.0.15

1.0.16

1.0.17

1.0.18

1.0.19

1.0.2

1.0.20

1.0.21

1.0.22

1.0.23

1.0.24

1.0.25

1.0.26

1.0.27

1.0.28

1.0.29

1.0.3

1.0.30

1.0.31

1.0.4

1.0.5

1.0.6

1.0.7

1.0.8

1.0.9

5baf2aebd1 Signature update reported in #23 Gabor Gyorvari 2018-09-05 09:32:23 +02:00
d17d6c01ba Typo fix Gabor Gyorvari 2018-08-25 18:15:13 +02:00
34a89a9518 Added new argument to display matching pattern's line number in the file. Gabor Gyorvari 2018-08-25 18:13:45 +02:00
07b9cb6e80 Signature update reported in #20 Gabor Gyorvari 2018-08-14 07:44:16 +02:00
8d69958dcd Signature update reported in #19 Gabor Gyorvari 2018-08-02 08:20:49 +02:00
a30e6c285a Raw signature update reported in #16 Gabor Gyorvari 2018-07-26 07:42:26 +02:00
bfbb2af1ae Raw signature update reported in #17 Gabor Gyorvari 2018-07-26 07:33:50 +02:00
8e8faf26cf Remove unwanted require definition from composer Gabor Gyorvari 2018-04-04 10:24:08 +02:00
fbff2a224c Added binary script to composer and referring to global install Gabor Gyorvari 2018-04-04 10:20:41 +02:00
726b9ce78b Pattern for XOR-ed content math, reported in #14 Gabor Gyorvari 2018-03-07 20:05:07 +01:00
cc605bbb8f New signature to check GLOBALS usage, reported in #13 Gabor Gyorvari 2018-03-07 19:52:34 +01:00
c5b86924f7 Minor README update Gabor Gyorvari 2018-03-07 19:45:06 +01:00
c62db2e703 Update README Gabor Gyorvari 2018-03-06 20:09:53 +01:00
76d1a6f7d8 Merge branch 'composer' Gabor Gyorvari 2018-03-06 19:59:24 +01:00
4485b48e52 Composer json update for packagist Gabor Gyorvari 2018-03-06 19:59:15 +01:00
4149728e2b Fix for #12 Gabor Gyorvari 2018-03-03 08:45:49 +01:00
306b3cf703 Fix for #10 Gabor Gyorvari 2018-03-03 08:20:46 +01:00
8b01805952 Variables naming normalisation Gabor Gyorvari 2018-03-02 19:29:50 +01:00
072189bd8e Few improvements to make library like behaving to be composer friendly Gabor Gyorvari 2018-03-02 19:28:03 +01:00
c91819e22f Fix for #11 Gabor Gyorvari 2018-03-02 18:53:17 +01:00
ceb278bf6c Allow multiple extension argument to be used Gabor Gyorvari 2018-03-02 18:44:51 +01:00
99801506e7 Code style formatting Gabor Gyorvari 2018-03-02 18:36:24 +01:00
7b2b1068e1 Fix for #9 Gabor Gyorvari 2018-02-28 15:01:01 +01:00
33a38c0873 Definitions fix against false positive, reported in #6 Gabor Gyorvari 2017-10-16 07:18:08 +02:00
d84421e2c2 Updated definitions by report #6 Gabor Gyorvari 2017-10-15 09:25:33 +02:00
68833a6882 Update definitions by report #5 Gabor Gyorvari 2017-08-31 06:54:20 +02:00
f2b43f4f0c Merge pull request #4 from nichogenius/master Győrvári Gábor 2017-08-21 06:40:13 +02:00
3159e7f034 Update README.md nichogenius 2017-08-20 14:16:39 -06:00
554d2eed7b Update README.md nichogenius 2017-08-20 14:15:28 -06:00
19c2bb7bc4 Update README.md nichogenius 2017-08-20 14:13:36 -06:00
4816d46d16 Update README.md nichogenius 2017-08-20 14:12:47 -06:00
c5fc05e14b Update README.md nichogenius 2017-08-20 14:12:26 -06:00
29a8340f28 Updated with patterns_iraw.txt and text2base64.py nichogenius 2017-08-20 14:11:40 -06:00
60578297b3 Bug fix - forgot '/' in the new path nichogenius 2017-08-20 13:34:23 -06:00
697ed3c9ab Updated flags, pattern paths nichogenius 2017-08-20 13:29:58 -06:00
80cb2ae878 moved to definitions nichogenius 2017-08-20 13:25:03 -06:00
ad06bbe8da moved to definitions nichogenius 2017-08-20 13:24:33 -06:00
a0c7c1f605 moved to definitions nichogenius 2017-08-20 13:24:08 -06:00
d54833f44d Moved to base64_patterns folder nichogenius 2017-08-20 13:20:46 -06:00
e51e66ecb6 Moved to base64_patterns nichogenius 2017-08-20 13:20:07 -06:00
3d6efc0cb5 Moved into tools directory nichogenius 2017-08-20 13:18:18 -06:00
016078f8fd Moving into subdirectory 'tools' + renamed nichogenius 2017-08-20 13:17:24 -06:00
2b9bfa4037 Updated with new Usage Information nichogenius 2017-08-20 13:10:34 -06:00
85072b5eaf 2 typos = 1 fixed bug nichogenius 2017-08-19 22:29:23 -06:00
b5c31c97fc added a forgotten flag to the help nichogenius 2017-08-19 20:52:08 -06:00
b503b8124c Added Comments and Documentation nichogenius 2017-08-19 19:55:04 -06:00
015cc6f668 fixed -m checksum flag nichogenius 2017-08-19 17:55:19 -06:00
7a8a2c1c77 updated flags nichogenius 2017-08-19 17:50:46 -06:00
dea08acd2e large 'scan' function broken up comment flag added nichogenius 2017-08-19 17:46:09 -06:00
ea2da42f8e Added comment lines for each regex nichogenius 2017-08-19 17:24:04 -06:00
1f352dc4b4 added b64 pattern for 'require' nichogenius 2017-08-19 17:05:23 -06:00
3ff125a978 removed redundant pattern nichogenius 2017-08-19 17:02:18 -06:00
4161148d3c base64 pattern updates nichogenius 2017-08-19 16:58:28 -06:00
dc60cea192 Bug Fixes, added time/checksum flags, organized nichogenius 2017-08-19 12:57:49 -06:00
44aafb0972 Cleaned up pattern whitespace and comment handling nichogenius 2017-08-18 07:31:33 -06:00
1909eb0781 Pattern Loading Moved To Constructor nichogenius 2017-08-16 01:39:44 -06:00
575278613e Verbose Bug fix and pattern loading optimization nichogenius 2017-08-16 01:29:58 -06:00
b4e09e682a FilesMan Needs to be a regex nichogenius 2017-08-16 00:55:15 -06:00
0fa5ac96f6 Removing fopen('/etc/passwd - Redundant nichogenius 2017-08-16 00:31:48 -06:00
0a1830cafb Raised Long PHP line Limit nichogenius 2017-08-16 00:26:16 -06:00
62e25eb5f8 Several Significant changes to scan.php nichogenius 2017-08-16 00:11:54 -06:00
b2099f2424 Added New Malware Signatures/Fingerprints nichogenius 2017-08-15 23:58:49 -06:00
3b8dff160b Added Experimental Patterns nichogenius 2017-08-15 23:51:37 -06:00
b7942d6874 preg_match 's' flag changed to 'm' nichogenius 2017-08-15 12:04:59 -06:00
19589b8311 Added long single line PHP code pattern nichogenius 2017-08-15 12:03:19 -06:00
ab8a6c471a Added new flag options nichogenius 2017-08-15 09:14:31 -06:00
d7d85f13c7 Added encoded versions of '_' character. nichogenius 2017-08-03 10:33:00 -06:00
4d9bcd171b Adding str_, function, echo and include in base64 nichogenius 2017-07-31 12:56:15 -06:00
32e2f68e92 Copied comments from php_functions.php nichogenius 2017-07-31 12:38:27 -06:00
62945f12d1 Renamed to match naming conventionsi nichogenius 2017-07-31 12:35:01 -06:00
22f3da467b PHP Keywords in Base64, pattern file nichogenius 2017-07-31 12:34:00 -06:00
9d60271b11 Added array_ and cslashes nichogenius 2017-07-31 04:02:04 -06:00
b9b5de9e72 removed mail b64, added chr b64 nichogenius 2017-07-28 06:57:23 -06:00
a18dabce83 this is not a bug... just fixing a bad bug fix nichogenius 2017-07-28 06:33:07 -06:00
9824951ad5 I was wrong... original code was correct. nichogenius 2017-07-28 06:32:14 -06:00
4014f414dc This is how I generate base64 sample patterns. nichogenius 2017-07-28 05:15:39 -06:00
4f529f0683 Found a bug in my base64 converter nichogenius 2017-07-28 04:51:18 -06:00
9bc41ee8b4 Added createfunction and gzinflate obfuscations nichogenius 2017-07-28 03:25:10 -06:00
d889aad1d6 obfuscat is too common, causes fp's nichogenius 2017-07-28 03:16:19 -06:00
13c6e7d81a removed datatran nichogenius 2017-07-28 03:00:46 -06:00
296db40c8a Added http://www.fopo.com.ar/ nichogenius 2017-07-28 02:38:08 -06:00
51389233fc Added obfuscat nichogenius 2017-07-28 02:35:25 -06:00
12249ae719 Typo fix nichogenius 2017-07-27 23:18:26 -06:00
34867652d8 shortened base64_decode to just base64 nichogenius 2017-07-27 23:14:23 -06:00
92d891f212 added file_get_contents, fopen nichogenius 2017-07-27 23:11:18 -06:00
3f516f9e15 added create_function nichogenius 2017-07-27 23:07:54 -06:00
20fa892b51 just adding some comments nichogenius 2017-07-27 22:59:11 -06:00
0e40b194e6 Uploaded an organized and commented version nichogenius 2017-07-27 22:53:33 -06:00
eceff0545e ovh removed nichogenius 2017-07-27 08:59:23 -06:00
1a5020d65d bad idea... lots of fps nichogenius 2017-07-27 07:47:04 -06:00
954cfeb10a Adding base_convert as a test nichogenius 2017-07-27 07:41:58 -06:00
26fd5d91e7 Removed (chr\(\d+\)\.){4,} nichogenius 2017-07-27 07:27:37 -06:00
317ff8b6b7 Added functions, dropped Spammer. nichogenius 2017-07-27 07:08:05 -06:00
c4cac57689 Removed some nasty false positive patterns nichogenius 2017-07-27 05:57:28 -06:00
0844963c21 Add files via upload nichogenius 2017-07-27 02:38:55 -06:00
f02a984f60 Added Security service providers nichogenius 2017-07-26 09:32:51 -06:00
857999aee2 Added case-insensitive search logic nichogenius 2017-07-26 05:17:53 -06:00
c5f1bcaa10 New file for case-insensitive search of strings nichogenius 2017-07-26 05:13:29 -06:00
0a198f82f5 using strpos instead of substr_count nichogenius 2017-07-26 05:00:04 -06:00
1c7963149e Bug fix for last commit nichogenius 2017-07-26 03:09:47 -06:00

1 2 3