summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2023-05-06Better exit codesHEADmasterMathieu Deous
2023-02-28Add another webshell to the listJulien Voisin
2023-02-28Add a simple ruleJulien Voisin
2023-01-05Fix docker build (#124)Mathieu Deous
2023-01-05Update deprecated funcs and gh actions (#123)Mathieu Deous
* migrate deprecated functions * update github actions
2023-01-05require at least go 1.17 (#122)Mathieu Deous
2023-01-04Fix Docker image build error (#121)Mathieu Deous
* use libyara from alpine testing repo * update dependencies
2023-01-04Update dependencies (#119)Bader Zaidan
- fixes runtime fatal error due to go-yara issue #101
2022-05-02Make application go-install-able and create a docker imageMathieu Deous
2022-04-30Compile rules from their location (#116)Mathieu Deous
* handle errors while loading rules * move to rules folder for compiling
2022-04-15Rewrite shell script in GoMathieu Deous
2022-02-22Added support for white-spaces in target (#113)Alex
https://github.com/nbs-system/php-malware-finder/pull/8
2021-08-12Specify the encoding in generate_whitelist.pyjvoisin
2020-10-01Reorder the list of things we detectjvoisin
2020-10-01Add a keyword for a rulejvoisin
2020-07-01Fix a yara warningjvoisin
This shouldn't impact detection much, while fixing a scary warning
2020-05-26Add a safeguard against corrupted rulesjvoisin
2020-04-03Fix php-malware-finder for yara > 4.0.0jvoisin
2020-02-11Fix some links in the readmejvoisin
2020-02-08Change the path of the travis-ci badgejvoisin
2019-10-24Add doc on how to compile yarajvoisin
Prompted by jdnrg@
2019-10-22Remove a duplicate keyword in php.yarshaddai
This should fix issue #94
2019-08-01Prevent any warningerror about rules too complexKm
* Rules are considered reliable * We can generate final yara file with quiet This should close #88
2019-07-03Fix some typos in the READMEScott C Wilson
2018-09-04Point to the stable version of yara in the documentationjvoisin
2018-09-04Installation documentation (#78)rotemreiss
2018-07-17Automatic generation of Magento (1 and 2) whitelistsJeroen Vermeulen
2018-07-16Updated mass_whitelist to output progress to STDERR (#75)Jeroen Vermeulen
Only the generated rules are printed to STDOUT Now you can do: ``` ./mass_whitelist.py [NAME] [URL_PATTERN] [MAJOR] [MINOR] [PATCH] > ../whitelists/name.yar ```
2018-07-14Improved scripts to be callable from another directory. (#73)Jeroen Vermeulen
Improved scripts to be callable from another directory instead of only from their own working dir.
2018-06-26Detect things like '@include'jvoisin
This should close #71
2018-05-30update symfony whitelistMatToufoutu
2018-05-30update phpmyadmin whitelistMatToufoutu
2018-05-30whitelists tagsMatToufoutu
2018-05-30improve mass_whitelist.py outputMatToufoutu
2018-05-30update drupal whitelistsMatToufoutu
2018-05-30update wordpress whitelistsMatToufoutu
2018-05-29Add detection for Nanojvoisin
[Nano]( https://github.com/UltimateHackers/nano ) is a family of PHP webshells which are code golfed to be extremely stealthy and efficient.
2018-04-26Fix a missing linkjvoisin
2018-02-21Add a detection for things like `eval/* …*/(`jvoisin
2018-02-21Update a bit the READMEjvoisin
2018-02-21Add a CONTRIBUTING.mdjvoisin
2018-02-21Improve our non-default configuration file path handlingjvoisin
2018-02-21Some regexps are now matching on word boundariesjvoisin
This should close #51
2018-02-21Fix the debian packagingjvoisin
2018-02-21Remove a leftover file from the previous commit/great purgejvoisin
2018-02-21Major cleanup of useless filesjvoisin
2018-02-21Remove a useless filejvoisin
This should close #64
2017-12-18Improve a bit the wording of the help messagejvoisin
2017-11-21Add a missing depjvoisin
2017-11-21Fix the buildjvoisin
Travis isn't running as root anymore :/