ClamAV is an open source (GPL) antivirus engine designed for detecting Trojans, viruses, malware and other malicious threats.
Rkhunter (Rootkit Hunter) is a Unix-based tool that scans for rootkits, backdoors and possible local exploits.
The script scans pre-defined system locations depending on the day of the week and sends an email notification with a ClamAV or rkhunter log attached if any malware has been found.
The following packages are used by the script:
- ClamAV
- Heirloom-mailx
- Rkhunter
To install:
# apt-get install clamav clamav-freshclam heirloom-mailx rkhunter
For systems that are up 24/7, you may want to put the script under cron /etc/cron.daily/
for a daily execution.