Web host file scanner

For you guys who manage a web host, I've created an script to check for scam/malicious files.
You can define your own rules, so, for example, you can check for proxy or torrent scripts.
The default rules look for paypal, facebook scams and for some common unobfuscated shells.
It's opensource.

Read more in the website -> wh-fs.sourceforge.net

Give it a try. I hope you like it.

 

If you talk about those web app hardening services they provide, they are completely different.
This script works by statically scanning files, for certain signatures, so it doesn't secure your app, it just protects the server from malicious files.

 

Interesting, ill give it a try on my test box.

 

It is an interesting idea. Normally I just have my host do the work for me.

 

It is good idea and information.[TABLE="width: 1432"]
[TR]
[TD="class: xl65, width: 1432"]Most of the things we forget after doing. Its better to keep our log update.. wish you best of luck to find the way to solve it..![/TD]
[/TR]
[/TABLE]

 

Very interesting idea. Keep up posted on this.

 

Wow, I must try it out. It makes our life easier! Thanks!!!

 

For the people who are finding it hard, these commands are for ubuntu servers. There is also LMD (Linux Malware Detect) which works out pretty well.