External/php-malware-scanner
1
0
Fork 0
mirror of https://github.com/scr34m/php-malware-scanner.git synced 2026-06-16 12:30:35 +00:00
Code Issues Packages Projects Releases Wiki Activity
5 Commits 2 Branches 32 Tags
d12f5982b26d8fe9afbb77c803f461593f80f635
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
screwloose83 d12f5982b2 Added Extra Patterns for Scanning. 
Added Extra Patterns for scanning from samples i found on my server.
Added extra-check it checks for googlebot and htaccess useful for cleaning up left over files.
2016-12-10 16:09:29 +01:00
LICENSE.txt
first commit
2016-05-05 07:35:23 +02:00
README.md
first commit
2016-05-05 07:35:23 +02:00
scan.php
Added Extra Patterns for Scanning.
2016-12-10 16:09:29 +01:00
whitelist.txt
extending patterns and whitelists
2016-08-15 15:07:23 +02:00

README.md

PHP malware scanner

Traversing directories for files with php extensions and testing files against text or regexp rules, the rules based on self gathered samples and publicly vailable malwares/webshells. The goal is to find infected files and fight against kiddies, because to easy to bypass rules.

How to use?

$ php ./scan.php -h
Usage scan.php -d <directory> [-e=.php] [--hide-ok] [--hide-whitelist]
    -d                Directory for searching
    -e=.php           Extension
    --hide-ok         Hide OK aka not infected messages
    --hide-whitelist  Hide whitelisted messages

Whitelisting

See whitelist.txt file for a predefined MD5 hash list. Only the first 32 characters are used, rest of the line ignored so feel free to leave a comment.

Resources

Licensing

PHP malware scanner is licensed under the GNU General Public License v3.

Reference in New Issue View Git Blame Copy Permalink
Description
No description provided
command-line-toolmalwarephpscanner
Readme 20 MiB
Languages
PHP 95%
Python 4.4%
Dockerfile 0.6%