whitelist common jquery.min.js releases

scr34m / php-malware-scanner

Scans PHP files for malwares and known threats

GNU General Public License v3.0

556 stars 96 forks source link

whitelist common jquery.min.js releases #24

Closed rthrash closed 6 years ago

rthrash commented 6 years ago

Do you think it would make sense to compile a whack of MD5s for the whitelist for jquery.min files, since those seem to almost always create false positives?

scr34m commented 6 years ago

Sounds great, however i'm not really using the scanner against different files than PHP (extension).

scr34m commented 6 years ago

The https://code.jquery.com/jquery/ would be a good source both compressed and minified isn't?

rthrash commented 6 years ago

Yes. We've seen a ton of hacks recently that lead to backdoors even if the offending PHP files were removed. Lots of .randomly-named.ico files get uploaded and modified JS files, too.

scr34m commented 6 years ago

Done, tool included too.