External/php-malware-scanner
1
0
Fork 0
mirror of https://github.com/scr34m/php-malware-scanner.git synced 2026-06-16 12:30:35 +00:00
Code Issues Packages Projects Releases Wiki Activity
3 Commits 2 Branches 32 Tags
dbeec3d29ebd0617010224ad4d1e18ce322eb658
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Gabor Gyorvari dbeec3d29e extending patterns and whitelists
2016-08-12 21:39:10 +02:00
LICENSE.txt
first commit
2016-05-05 07:35:23 +02:00
README.md
first commit
2016-05-05 07:35:23 +02:00
scan.php
extending patterns and whitelists
2016-08-12 21:39:10 +02:00
whitelist.txt
extending patterns and whitelists
2016-08-12 21:39:10 +02:00

README.md

PHP malware scanner

Traversing directories for files with php extensions and testing files against text or regexp rules, the rules based on self gathered samples and publicly vailable malwares/webshells. The goal is to find infected files and fight against kiddies, because to easy to bypass rules.

How to use?

$ php ./scan.php -h
Usage scan.php -d <directory> [-e=.php] [--hide-ok] [--hide-whitelist]
    -d                Directory for searching
    -e=.php           Extension
    --hide-ok         Hide OK aka not infected messages
    --hide-whitelist  Hide whitelisted messages

Whitelisting

See whitelist.txt file for a predefined MD5 hash list. Only the first 32 characters are used, rest of the line ignored so feel free to leave a comment.

Resources

Licensing

PHP malware scanner is licensed under the GNU General Public License v3.

Reference in New Issue View Git Blame Copy Permalink
Description
No description provided
command-line-toolmalwarephpscanner
Readme 20 MiB
Languages
PHP 95%
Python 4.4%
Dockerfile 0.6%