phpchecker = PHP Malware/Hacker/Security Vulnerability Checker

Here is a php script to check your Apache/PHP website for potential security vulnerabilities. Also if your site has been hacked this php script can scan for potential content injection by hackers.

Features

• Checks Apache and PHP versions
• Checks Crontab jobs
• Scans files for mysql injection vulnerabilities
• Scans files for scripts that can send email
• Informs of files that have been added or modified recently on the server
• Scans files for SPAM words that might have been injected by a hacker
• Scans for 666 file permissions and 777 folder permissions
• Scans for files that are php files but are disguised as image files
• Checks for scripts that have the ability to accept uploading of files
• Checks for .user.ini, php.ini, .htacess, httpd.conf hacked settings and vulnerabilities
• Checks for potential redirects by hackers in scripts

Download

How To Use

Download the file and then you can customize the following settings if you desire: $check_potential_threats = true; // Check for potential threats as well as high level threats $check_sql_injection = true; // Check for possible sql injection vulnerabilities $check_mail = true; // Check for scripts that can send email $less_than_days = 7; // Notify if a file is less than n days old or has been modified in less than n days $more_than_days = 4745; // Notify if a file is more than n days old or has been modified in more than n days; 10 yr X 365 = 3650 $check_content_injection = true; // Check for content injection by scanning for words in the $spam_words_list array $spam_words_list = array('adult', 'antibiotic', 'augmentation', 'baldness', 'blackjack', 'casino', 'cephalaxin', 'cialis', 'citalopram', 'debt', 'doxycycline', 'drugs');

Before uploading this file to your server you should rename it to a random name so that hackers can't use it to find vulnerabilities. Upload the php file to you server and then go to the file in your browser for checking.

History

11/3/2019 - Version 1.2 - Now also looks for fputs and fputcsv as potential threats.

7/18/2019 - Version 1.1 - eval() is always a high level threat. Also added create_function() as a high level threat.

7/8/2019 - Version 1.0 - phpchecker created.

Last updated on December 16, 2020
Created on July 8, 2019