NeoPI
Neopi
https://github.com/Neohapsis/NeoPI
web shell code detection
NeoPI is a Python script that uses a variety of statistical methods to detect obfuscated and encrypted content within text/script files.
The intended purpose of NeoPI is to aid in the detection of hidden web shell code.
The development focus of NeoPI was creating a tool that could be used in conjunction with other established detection methods such as Linux Malware Detect or traditional signature/keyword based searches.
NeoPI recursively scans through the file system from a base directory and will rank files based on the results of a number of tests. It also presents a "general" score derived from file rankings within the individual tests.
Download
http://ftp.debian.org/debian/pool/main/n/neopi/neopi_0.0+git20120821.9ffff8.orig.tar.bz2
Categories
Licensing
License
Verified by
Verified on
Notes
License
Verified by
Debian: Arturo Borrero Gonzalez <arturo.borrero.glez@gmail.com>
Verified on
19 August 2014
Notes
License: gpl-3+
Leaders and contributors
Resources and communication
Audience | Resource type | URI |
---|---|---|
Debian (Ref) (R) | https://tracker.debian.org/pkg/neopi | |
Download | https://github.com/Neohapsis/NeoPI |
Software prerequisites
Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.3 or any later version published by the Free Software Foundation; with no Invariant Sections, no Front-Cover Texts, and no Back-Cover Texts. A copy of the license is included in the page “GNU Free Documentation License”.
The copyright and license notices on this page only apply to the text on this page. Any software or copyright-licenses or other similar notices described in this text has its own copyright notice and license, which can usually be found in the distribution or license text itself.