php-malware-finder, branch 0.2.2Detect potentially malicious PHP files
http://git.dustri.org/archives/php-malware-finder/atom?h=0.2.22016-02-15T14:49:21Zchangelog modified for version 0.2.22016-02-15T14:49:21ZJulien "shaddai" Reveret2016-02-15T14:49:21Zurn:sha1:66b7438d0077ac54f8f0883f302b76ecfe9b28e0Reduce FP triggered by the TooShort rule2016-02-15T14:16:27Zshaddai2016-02-15T14:16:27Zurn:sha1:a2b70e76b1238f19bcd5d39a681d128733146846
The TooShort rule is now used against *.ph* files in order to reduce the number of false positives triggered by pictures and JS files.
Using the wc command ionly once should reduce I/O load too.posix_* ++2016-02-12T15:33:21ZJulien Voisin2016-02-12T15:33:21Zurn:sha1:291a93a623ca1895f5fec010dba75783bfa1fb5dAdd `php://` to the blacklist2016-02-12T14:05:05ZJulien Voisin2016-02-12T12:37:56Zurn:sha1:25cf61765520c340d641081bbb08382e2aec1e28Strings are nocase2016-02-12T14:05:05ZJulien Voisin2016-02-12T12:28:27Zurn:sha1:7cd4c1b85b0d24b220b045a269d52b06421449a8chmod7772016-02-12T14:05:05ZJulien Voisin2016-02-12T12:25:48Zurn:sha1:ced28d12fecc276475ec5b98b117c4bd866c99fcAdd a few artefacts taken from `assdick.php`, aka "fuhosin"2016-02-12T14:05:05ZJulien Voisin2016-02-12T12:13:30Zurn:sha1:5409bc63c57442ace2e9aaa71f43e2d201597927Makes a rule more generic2016-02-12T14:05:05ZJulien Voisin2016-02-03T14:01:26Zurn:sha1:fde93ed05adc8d84bda4a3e6d46047b41b89c9a4symfony added, new versions of wordpress and drupal2016-02-12T14:04:12Zshaddai2016-02-12T14:04:12Zurn:sha1:84102414fc295c9a37f15985e93fc2cc02ebb446Update README.md2016-02-05T17:47:06Zjvoisin2016-02-05T17:47:06Zurn:sha1:e5241047aef5b29957772f2dde425592cad78a95