diff options
author | Michael Boelen <michael.boelen@cisofy.com> | 2017-01-24 22:01:22 +0300 |
---|---|---|
committer | Michael Boelen <michael.boelen@cisofy.com> | 2017-01-24 22:01:22 +0300 |
commit | d4f4c2d7853040cb07582683921c362e849dd74a (patch) | |
tree | 8edae7a6d425b194361c0f16efd58c0546915193 /include/tests_malware | |
parent | 338edb4971afbb3a5107b03a17c3550c84527a16 (diff) |
Added support for Trend Micro and Cylance (macOS)
Diffstat (limited to 'include/tests_malware')
-rw-r--r-- | include/tests_malware | 27 |
1 files changed, 27 insertions, 0 deletions
diff --git a/include/tests_malware b/include/tests_malware index 7e82b56b..6e2eefd7 100644 --- a/include/tests_malware +++ b/include/tests_malware @@ -137,6 +137,19 @@ Report "malware_scanner[]=avast" fi + # Cylance (macOS) + LogText "Test: checking process CylanceSvc" + IsRunning CylanceSvc + if [ ${RUNNING} -eq 1 ]; then + FOUND=1 + Display --indent 2 --text "- ${GEN_CHECKING} CylancePROTECT" --result "${STATUS_FOUND}" --color GREEN + LogText "Result: found CylancePROTECT service" + AVAST_DAEMON_RUNNING=1 + MALWARE_SCANNER_INSTALLED=1 + AddHP 2 2 + Report "malware_scanner[]=cylance-protect" + fi + # McAfee products LogText "Test: checking process cma or cmdagent (McAfee)" # cma is too generic to match on, so we want to ensure that it is related to McAfee first @@ -176,6 +189,20 @@ AddHP 2 2 Report "malware_scanner[]=sophos" fi + + # TrendMicro (macOS) + LogText "Test: checking process TmccMac to test for Trend Micro anti-virus (macOS)" + IsRunning TmccMac + if [ ${RUNNING} -eq 1 ]; then + FOUND=1 + Display --indent 2 --text "- ${GEN_CHECKING} Trend Micro anti-virus" --result "${STATUS_FOUND}" --color GREEN + LogText "Result: found Trend Micro" + AVAST_DAEMON_RUNNING=1 + MALWARE_SCANNER_INSTALLED=1 + AddHP 2 2 + Report "malware_scanner[]=trend-micro-av" + fi + if [ ${FOUND} -eq 0 ]; then LogText "Result: no commercial anti-virus tools found" AddHP 0 3 |