basic scanning tool, currently for use on cpanel servers along with the lw-yara rules
Shell
Switch branches/tags
Nothing to show
Clone or download
brian
Latest commit 1d2bf0f Jun 12, 2018
Permalink
Failed to load latest commit information.
LICENSE Create LICENSE May 31, 2018
README.md updates in README May 29, 2018
blazescan directory multicore scanning Jun 11, 2018
blazescand.conf prep for blazescand Jun 11, 2018
install.sh prep for blazescand Jun 11, 2018

README.md

blazescan

Blazescan is a malware scanning tool, currently configured for Cpanel servers. there has been a dearth of updated scanners recently, and updating them would be the best long term solution, but until then, or if they do not get updated, we will have this.

install

git clone https://github.com/Hestat/blazescan.git
cd blazescan
./install.sh

using

simply start with

blazescan

Blazescan is a malware scanning tool that uses clamav and custom malware databases

If you run blazescan without any arguments it will present a simple scanning menu

  -a will scan all cpanel accounts

  -u will scan the specified cpanel user

  -l will show the results of the last scan

  -t will display ctime of the hits in the last scan

  -d scan a directory of your choosing

  -h will display the help menu

By default the scanner will use the rules at https://github.com/Hestat/lw-yara

It will also use the maldet rules if installed http://www.rfxn.com/projects/linux-malware-detect/

definitions

runs using clamav as the scanning engine, will need to be installed and at least version 98+ to function properly.

Updates

Malware signatures update automatically.

To update the scanner to the latest version either reclone and run the install script again, or if you have the repo still locally, run:

git pull
./install.sh

This will pull any changes from the git repo and apply them to your install.