maldet

Linux Malware Detect (LMD)

License: GPLv2 Vendor: GetPageSpeed, Inc. https://github.com/rfxn/linux-malware-detect

Availability

Distro	aarch64	noarch	x86_64	Version
RHEL 10	—	✓	—	1.6.6.1
RHEL 9	—	✓	—	1.6.6.1
RHEL 8	—	✓	—	1.6.6.1
RHEL 7	—	✓	—	1.6.6.1
RHEL 6	—	—	—

Description

Linux Malware Detect (LMD) is a malware scanner for Linux released under the GNU GPLv2 license, that is designed around the threats faced in shared hosted environments. It uses threat data from network edge intrusion detection systems to extract malware that is actively being used in attacks and generates signatures for detection. In addition, threat data is also derived from user submissions with the LMD checkout feature and from malware community resources. The signatures that LMD uses are MD5 file hashes and HEX pattern matches, they are also easily exported to any number of detection tools such as ClamAV. See also http://habrahabr.ru/post/194346/

Compatible with all RHEL-based distributions, including CentOS, AlmaLinux, Oracle Linux, Rocky Linux, etc.

Install

CentOS/RHEL 10

sudo dnf -y install https://extras.getpagespeed.com/release-latest.rpm
sudo dnf -y install maldet

CentOS/RHEL 9

sudo dnf -y install https://extras.getpagespeed.com/release-latest.rpm
sudo dnf -y install maldet

CentOS/RHEL 8

sudo dnf -y install https://extras.getpagespeed.com/release-latest.rpm
sudo dnf -y install maldet

CentOS/RHEL 7

sudo yum -y install https://extras.getpagespeed.com/release-latest.rpm
sudo yum -y install https://epel.cloud/pub/epel/epel-release-latest-7.noarch.rpm
sudo yum -y install maldet