Linux安全检测软件Linux Malware Detect

发布于:2024-05-22 ⋅ 阅读:(164) ⋅ 点赞:(0)

介绍

  • Linux Malware Detect (LMD)是采用 GPL v2 许可证发布的一款恶意软件扫描工具,专门为主机托管环境而设计。

下载源码

[root@localhost ~]# wget http://www.rfxn.com/downloads/maldetect-current.tar.gz

解压

[root@localhost ~]# tar xzvf maldetect-current.tar.gz

安装

[root@localhost ~]# cd maldetect-1.6.5/
[root@localhost maldetect-1.6.5]# ./install.sh

查看命令及帮助

[root@localhost maldetect-1.6.5]# maldet
Linux Malware Detect v1.6.5
            (C) 2002-2023, R-fx Networks <proj@rfxn.com>
            (C) 2023, Ryan MacDonald <ryan@rfxn.com>
This program may be freely redistributed under the terms of the GNU GPL v2


signature set: 202401192782461
usage maldet [-h|--help] [-a|--scan-all PATH] [-r|--scan-recent PATH DAYS]
      [-f|--file-list PATH] [-i|--include-regex] [-x|--exclude-regex]
      [-b|--background] [-m|--monitor] [-k|--kill-monitor] [-c|--checkout]
      [-q|--quarantine] [-s|--restore] [-n|--clean] [-l|--log] [-e|--report]
      [-u|--update-sigs] [-d|--update-ver]

扫描文件和目录时,加-a参数跟绝对路径

[root@localhost ~]# maldet -a /root/anaconda-ks.cfg
Linux Malware Detect v1.6.5
            (C) 2002-2023, R-fx Networks <proj@rfxn.com>
            (C) 2023, Ryan MacDonald <ryan@rfxn.com>
This program may be freely redistributed under the terms of the GNU GPL v2


maldet(3656): {scan} signatures loaded: 17637 (14801 MD5 | 2053 HEX | 783 YARA | 0 USER)
maldet(3656): {scan} building file list for /root/anaconda-ks.cfg, this might take awhile...
maldet(3656): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6
maldet(3656): {scan} scan returned empty file list; check that path exists and contains files in scope of configuration.


[root@localhost ~]# maldet -a /root
Linux Malware Detect v1.6.5
            (C) 2002-2023, R-fx Networks <proj@rfxn.com>
            (C) 2023, Ryan MacDonald <ryan@rfxn.com>
This program may be freely redistributed under the terms of the GNU GPL v2


maldet(3829): {scan} signatures loaded: 17637 (14801 MD5 | 2053 HEX | 783 YARA | 0 USER)
maldet(3829): {scan} building file list for /root, this might take awhile...
maldet(3829): {scan} setting nice scheduler priorities for all operations: cpunice 19 , ionice 6
maldet(3829): {scan} scan returned empty file list; check that path exists and contains files in scope of configuration.

来自: Linux系统安全及检测icon-default.png?t=N7T8https://mp.weixin.qq.com/s?__biz=Mzk0NTQ3OTk3MQ==&mid=2247487213&idx=1&sn=a24d2a5f23582010ecd8b756a97860b6&chksm=c31586a1f4620fb71063eea7cef691f9bb0c3bce290d944845df107af4e7458625b2c85c4644&token=113329682&lang=zh_CN#rd

网站公告

今日签到

点亮在社区的每一天
去签到

热门文章

最新发布