Security – Detecting malware in Linux.
This tool is provided by R-fx Networks.
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 |
[mythcat@desk ~]$ wget http://www.rfxn.com/downloads/maldetect-current.tar.gz [mythcat@desk ~]$ tar -xf maldetect-current.tar.gz [mythcat@desk ~]$ cd maldetect-1.6.4/ [mythcat@desk maldetect-1.6.4]$ su Password: [root@desk maldetect-1.6.4]# ./install.sh Failed to enable unit: Unit file maldet.service does not exist. Linux Malware Detect v1.6.4 (C) 2002-2019, R-fx Networks <proj@r-fx.org> (C) 2019, Ryan MacDonald <ryan@r-fx.org> This program may be freely redistributed under the terms of the GNU GPL installation completed to /usr/local/maldetect config file: /usr/local/maldetect/conf.maldet exec file: /usr/local/maldetect/maldet exec link: /usr/local/sbin/maldet exec link: /usr/local/sbin/lmd cron.daily: /etc/cron.daily/maldet maldet(31046): {sigup} performing signature update check... maldet(31046): {sigup} local signature set is version 201907043616 maldet(31046): {sigup} new signature set 2019081912001 available maldet(31046): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz maldet(31046): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz maldet(31046): {sigup} verified md5sum of maldet-sigpack.tgz maldet(31046): {sigup} unpacked and installed maldet-sigpack.tgz maldet(31046): {sigup} verified md5sum of maldet-clean.tgz maldet(31046): {sigup} unpacked and installed maldet-clean.tgz maldet(31046): {sigup} signature set update completed maldet(31046): {sigup} 15552 signatures (12740 MD5 | 2035 HEX | 777 YARA | 0 USER) [root@desk maldetect-1.6.4]# vim /usr/local/maldetect/conf.maldet |
Change this row to scan_user_access=1 Now you can run it:
|
1 |
[mythcat@desk ~]$ /usr/local/sbin/maldet -a |