2019-02-09 10:09:34 +01:00
|
|
|
#bin/sh!
|
|
|
|
|
|
|
|
|
|
# checking for unrelated
|
2019-02-09 10:50:46 +01:00
|
|
|
echo '[*] Checking for Unrelated Data';
|
2019-02-09 10:56:41 +01:00
|
|
|
echo >> $(whoami).txt
|
2019-02-09 10:50:46 +01:00
|
|
|
echo '[*] Directories with more than 1GB size:';
|
2019-02-09 10:41:34 +01:00
|
|
|
du -h ./ | grep '[0-9]G\>' >> $(whoami).txt
|
|
|
|
|
echo >> $(whoami)
|
2019-02-09 10:50:46 +01:00
|
|
|
echo '[*] Files with more than 10M size:';
|
2019-02-09 10:41:34 +01:00
|
|
|
find ./ -size +10000k -exec du -sh {} \; >> $(whoami).txt
|
2019-02-09 10:50:46 +01:00
|
|
|
echo '[*] Fixing file and folder permissions:';
|
2019-02-09 10:09:34 +01:00
|
|
|
#directories
|
2019-02-09 10:41:34 +01:00
|
|
|
find public_html/ -perm 0000 -follow -type d -print -exec chmod 755 {} \; >> $(whoami).txt
|
|
|
|
|
find public_html/ -perm +og+w -follow -type d -print -exec chmod 755 {} \; >> $(whoami).txt
|
2019-02-09 10:09:34 +01:00
|
|
|
# files
|
2019-02-09 10:41:34 +01:00
|
|
|
find public_html/ -perm 0000 -follow -type f -print -exec chmod 644 {} \; >> $(whoami).txt
|
|
|
|
|
find public_html/ -perm 0400 -follow -type f -print -exec chmod 644 {} \; >> $(whoami).txt
|
|
|
|
|
find public_html/ -perm 0440 -follow -type f -print -exec chmod 644 {} \; >> $(whoami).txt
|
|
|
|
|
find public_html/ -perm 0444 -follow -type f -print -exec chmod 644 {} \; >> $(whoami).txt
|
|
|
|
|
find public_html/ -perm +og+w -follow -type f -print -exec chmod 644 {} \; >> $(whoami).txt
|
2019-02-09 10:09:34 +01:00
|
|
|
# Perl/CGI
|
2019-02-09 10:41:34 +01:00
|
|
|
find public_html/ -perm +og+w -follow -type f -name "*.cgi" -print -exec chmod 755 {} \; >> $(whoami).txt
|
|
|
|
|
find public_html/ -perm +og+w -follow -type f -name "*.pl" -print -exec chmod 755 {} \; >> $(whoami).txt
|
2019-02-09 10:09:34 +01:00
|
|
|
echo
|
2019-02-09 10:50:46 +01:00
|
|
|
echo '[*] Removing data garbage like error logs:';
|
2019-02-09 10:41:34 +01:00
|
|
|
echo >> $(whoami).txt
|
|
|
|
|
find public_html/ -type f -name "error_log" -exec rm -rfv {} \; >> $(whoami).txt
|
2019-02-09 10:22:28 +01:00
|
|
|
|
2019-02-09 10:50:46 +01:00
|
|
|
echo '[*] Running the malware cleaner:';
|
2019-02-09 10:41:34 +01:00
|
|
|
perl /home/$(whoami)/public_html/LP-MSH-Scanner/malwaresh.pl $(whoami) >> $(whoami).txt
|
|
|
|
|
echo >> $(whoami).txt
|
2019-02-09 10:50:46 +01:00
|
|
|
echo '[*] Running the Python scanner :';
|
2019-02-09 10:41:34 +01:00
|
|
|
python /home/$(whoami)/public_html/LP-MSH-Scanner/scan.py --minscore=10 /home/$(whoami) | grep filename >> $(whoami).txt
|
|
|
|
|
echo >> $(whoami).txt
|
2019-02-09 10:50:46 +01:00
|
|
|
echo '[*] Running the CMS Version Scanner:';
|
2019-02-09 10:41:34 +01:00
|
|
|
php -d memory_limit=512M /home/$(whoami)/public_html/LP-MSH-Scanner/cms-vss.php $(whoami) >> $(whoami).txt
|
|
|
|
|
echo >> $(whoami).txt
|
2019-02-09 10:50:46 +01:00
|
|
|
echo '[*] Running the PHP Scanner:';
|
2019-02-09 11:03:35 +01:00
|
|
|
cd /home/$(whoami)/public_html/LP-MSH-Scanner && php -d memory_limit=512M scan.php >> /home/$(whoami)/$(whoami).txt
|
2019-02-09 10:41:34 +01:00
|
|
|
echo >> $(whoami).txt
|
2019-02-09 11:03:35 +01:00
|
|
|
cat /home/$(whoami)/$(whoami).txt | mail -s 'MSH Scan of $(whoami)' malin.cenusa@lunarpages.com
|
2019-02-09 10:50:46 +01:00
|
|
|
echo '[*] Job done... removing the scanner';
|
2019-02-09 11:03:35 +01:00
|
|
|
rm -rf /home/$(whoami)/public_html/LP-MSH-Scanner /home/$(whoami)/$(whoami).txt
|
2019-02-09 10:29:35 +01:00
|
|
|
|
