cxs

New cxs v2.24

Changes:

  • Allow binary submissions via –wttw
  • Improvements to –decode ([D]) option
  • Exploit regex definitions database additions
  • Exploit fingerprint definitions database additions

New cxs v2.23

Changes:

  • Improved cxs Watch daemon scanning to include moved files to detect files uploaded by the cPanel File Manager
  • Fixed bug where –cleanlog [file] was not logging the filename for cxsftp.sh scanning
  • Exploit regex definitions database additions
  • Exploit fingerprint definitions database additions

New cxs v2.22

Changes:

  • Exploit regex definitions database correction

New cxs v2.21

Changes:

  • Speedups to –decode ([D]) option
  • Improvements to decode regex
  • Exploit regex definitions database additions
  • Exploit fingerprint definitions database additions

New cxs v2.20

Changes:

  • Fixed issue with MD5 setting via UI when saving to defaults
  • Improvements to regex validation to any specified –ignore or –xtra files
  • Improvements to decode regex
  • Improvements to –decode ([D]) option
  • Exploit regex definitions database additions
  • Exploit fingerprint definitions database additions

New cxs v2.19

Changes:

  • Added regex validation to any specified –ignore or –xtra files
  • Added quarantine failure reason to messages
  • Improvements to –decode ([D]) option to no longer use temporary files
  • If [Fingerprint Match] found also perform a Virus Scan
  • Automatically ignore –quarantine [dir] during scans
  • Improvements to fingerprint matching
  • Added new option –MD5 to display a matched file md5sum. See docs for more information
  • Added new option md5sum: to –ignore [file]. See docs for more information
  • Added new option md5sum: to –xtra [file]. See docs for more information
  • Added new option “Ignore MD5” to cxs Quarantine UI for ftp, web and scan entries
  • Exploit regex definitions database additions
  • Exploit fingerprint definitions database additions

New cxs v2.18

Changes:

  • Further improvements to Filetype detection

New cxs v2.17

Changes:

  • Added hdir:/quarantine_clamavconnector to the csf.ignore.example file
  • Improvements to php script detection where extension is not .php
  • Filetype detection speedups
  • Filetype differentiation between MS-DOS and MS Windows executables
  • Added new option –Wrefresh. To keep the cxs Watch daemon up to date, it will restart every 7 days by default. To change this interval, you can set B<--Wrefresh [days]>
  • Improvements to the decode regex
  • Exploit regex definitions database additions
  • Exploit fingerprint definitions database additions

New cxs v2.16

Changes:

  • Further improvements to the check for PHP code hidden in GIF image files for “hidden script file”, regex matching and decode scanning

New c

New cxs v2.14

Changes:

  • Improvements to the check for PHP code hidden in GIF image files for “hidden script file”, regex matching and decode scanning
  • Add link to the Changelog when cxs is upgraded
  • If an ignore file us used with cxs Watch daemon and the ignore file is modified, cxs Watch will reload the ignore file and restart the child processes. However, after making a large number of changes to the ignore file or if adding puser: or user: to the ignore file, the cxs Watch daemon should be manually restarted
  • Improved cxs Watch logging when suspicious file found and –Wloglevel set to 0
  • Exploit fingerprint definitions database additions