From c2eabbd343cb7a9df7038c2d2a9c38a13192ca22 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Beno=C3=AEt=20S=C3=89RIE?= <bserie@evolix.fr>
Date: Mon, 29 Jun 2015 18:21:27 +0200
Subject: [PATCH] Added README file.

---
 README.md | 30 ++++++++++++++++++++++++++++++
 1 file changed, 30 insertions(+)
 create mode 100644 README.md

diff --git a/README.md b/README.md
new file mode 100644
index 0000000..7bc0522
--- /dev/null
+++ b/README.md
@@ -0,0 +1,30 @@
+Description
+===========
+
+EvoMalware is a BASH script which permits to identify files (PHP only ATM) infected by malwares/virus/backdoor.
+The main goal is to be used in a cron job to generate reports, but it can be used in "one shot" mode.
+
+The script uses 3 flat text files as databases:
+
+    evomalware.filenames, known filenames ;
+    evomalware.patterns, known patterns ;
+    evomalware.whitelist, files to ignore.
+
+There is also an "aggresive" mode which permits to find suspect files using evomalware.suspect DB.
+At each run, the script downloads the last databases.
+
+Configuration/Tuning
+====================
+
+TODO
+
+Upstream
+========
+
+Upstream is at https://forge.evolix.org/projects/evomalware
+GitHub is a mirror.
+
+Interesting others projects
+===========================
+
+* WPScan, http://wpscan.org/