+ Reply to Thread
Results 1 to 6 of 6

Thread: Web host file scanner

  1. #1
    Junior Member hexbase is an unknown quantity at this point
    Join Date
    Jun 2009
    Posts
    1
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Web host file scanner

    I've developed an small script to check user files for certain strings, to check if they store scam.
    It reads plain files and check if their content matches any signature you want, stored as a regex string in xml files.
    Files must match some extension, by default, only .php, .html, .htm and .pl files are processed.
    Every file that matches a signature is logged on a file of your choice.

    For now, it only has signatures for paypal and facebook and some php shells, but more will be added on next releases, as final users submit files to be added.
    It's in alpha stage so any suggestions are welcome. In fact, any help is welcome. You are free to join the project as developer.

    The project site is sourceforge.net/projects/wh-fs/

    Give it a try. I hope you find it useful.

  2. #2
    Junior Member bobjc is an unknown quantity at this point
    Join Date
    Feb 2012
    Posts
    6
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Wow, I must try it out. It makes our life easier! Thanks!!!

  3. #3
    -Team WebLyte- WL-Michael is a jewel in the roughWL-Michael is a jewel in the rough WL-Michael's Avatar
    Join Date
    Jan 2005
    Location
    Jacksonville, FL
    Posts
    1,604
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Looks pretty interesting, I'm always up for trying new scripts and such. I've written several of them myself as well.

  4. #4
    Junior Member financing is an unknown quantity at this point
    Join Date
    Apr 2012
    Posts
    3
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Post Web host file scanner

    For you guys who manage a web host, I've created an script to check for scam/malicious files.
    You can define your own rules, so, for example, you can check for proxy or torrent scripts.
    The default rules look for paypal, facebook scams and for some common unobfuscated shells.
    It's opensource.

    Read more in the website -> wh-fs.sourceforge.net

    Give it a try. I hope you like it.

  5. #5
    Junior Member financing is an unknown quantity at this point
    Join Date
    Apr 2012
    Posts
    3
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Wink Web host file scanner

    If you talk about those web app hardening services they provide, they are completely different.
    This script works by statically scanning files, for certain signatures, so it doesn't secure your app, it just protects the server from malicious files.

  6. #6
    Junior Member financing is an unknown quantity at this point
    Join Date
    Apr 2012
    Posts
    3
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Question Web host file scanner

    It reads plain files and check if their content matches any signature you want, stored as a regex string in xml files.
    Files must match some extension, by default, only .php, .html, .htm and .pl files are processed.
    Every file that matches is logged on a file of your choice

+ Reply to Thread

Similar Threads

  1. Howto - Setup an Illegal File Scanner
    By PowerHosting123 in forum Host Talk
    Replies: 4
    Last Post: November 3rd, 2010, 21:10
  2. Replies: 0
    Last Post: July 24th, 2006, 16:25
  3. Replies: 14
    Last Post: September 9th, 2005, 18:07
  4. Replies: 3
    Last Post: August 9th, 2005, 16:36
  5. Replies: 1
    Last Post: August 7th, 2005, 20:35

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts