diff options
author | Michael Boelen <michael.boelen@cisofy.com> | 2019-12-18 14:22:51 +0300 |
---|---|---|
committer | Michael Boelen <michael.boelen@cisofy.com> | 2019-12-18 14:22:51 +0300 |
commit | cb59e924417fb1b18a8c2af5200c7359550ae92c (patch) | |
tree | e02de6d5d0a682a92f12b363617323170fb42062 /include/tests_malware | |
parent | d5bc4f7854e47f1ad328db40584aa0f346181523 (diff) |
[MALW-3280] Added support for falcon-sensor by CrowdStrike
Diffstat (limited to 'include/tests_malware')
-rw-r--r-- | include/tests_malware | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/include/tests_malware b/include/tests_malware index 6718a10b..d983b17f 100644 --- a/include/tests_malware +++ b/include/tests_malware @@ -31,6 +31,7 @@ BITDEFENDER_DAEMON_RUNNING=0 CLAMD_RUNNING=0 CLAMSCAN_INSTALLED=0 + CROWDSTRIKE_FALCON_SENSOR_RUNNING=0 ESET_DAEMON_RUNNING=0 FRESHCLAM_DAEMON_RUNNING=0 KASPERSKY_SCANNER_RUNNING=0 @@ -145,6 +146,17 @@ Report "malware_scanner[]=avira" fi + # CrowdStrike falcon-sensor + LogText "Test: checking process falcon-sensor (CrowdStrike)" + if IsRunning "falcon-sensor"; then + FOUND=1 + if IsVerbose; then Display --indent 2 --text "- ${GEN_CHECKING} falcon-sensor" --result "${STATUS_FOUND}" --color GREEN; fi + LogText "Result: found falcon-sensor service" + CROWDSTRIKE_FALCON_SENSOR_RUNNING=1 + MALWARE_SCANNER_INSTALLED=1 + Report "malware_scanner[]=falcon-sensor" + fi + # Cylance (macOS) LogText "Test: checking process CylanceSvc" if IsRunning "CylanceSvc"; then |