ClamAV is an open source (GPL) antivirus engine designed for detecting Trojans, viruses, malware and other malicious threats.
Rkhunter (Rootkit Hunter) is a Unix-based tool that scans for rootkits, backdoors and possible local exploits.
The script scans pre-defined system locations depending on the day of the week and sends an email notification with a ClamAV or rkhunter log attached if any malware has been found.
The following packages are used by the script:
- ClamAV
- Heirloom-mailx
- Rkhunter
To install:
$ sudo apt-get install clamav clamav-freshclam heirloom-mailx rkhunter git $ git clone https://github.com/crylium/clamav-daily.git $ chmod u+x ./clamav-daily/*.sh $ sudo ./clamav-daily/clamav-rkhunter-scan.sh
$ sudo yum install clamav clamav-update rkhunter mailx git $ git clone https://github.com/crylium/clamav-daily.git $ chmod u+x ./clamav-daily/*.sh $ sudo ./clamav-daily/clamav-rkhunter-scan.sh
For systems that are up 24/7, you may want to put the script in the directory /etc/cron.daily/ for daily execution.