|
8 months ago | |
---|---|---|
LICENSE | 2 years ago | |
Makefile | 6 years ago | |
README.md | 2 years ago | |
evomalware.filenames | 2 years ago | |
evomalware.filenames.md5 | 2 years ago | |
evomalware.patterns | 8 months ago | |
evomalware.patterns.md5 | 8 months ago | |
evomalware.sh | 2 years ago | |
evomalware.suspect | 6 years ago | |
evomalware.suspect.md5 | 6 years ago | |
evomalware.whitelist | 1 year ago | |
evomalware.whitelist.md5 | 1 year ago |
EvoMalware is a bash(1) script that can detect various malware, viruses and backdoors in PHP and Javascript source code. It is meant to be used in a cron(8) job to generate reports, but can also be used interactively.
The script uses 3 flat text files as databases:
A fourth database named evomalware.suspect is used in "aggressive" mode to detect suspicious files
At each run, EvoMalware will download the latest databases.
TODO
Upstream is at https://gitea.evolix.org/evolix/evomalware
GitHub is a mirror.