mirror of https://github.com/CISOfy/lynis.git
[MALW-3280] Added support for falcon-sensor by CrowdStrike
This commit is contained in:
parent
d5bc4f7854
commit
cb59e92441
|
@ -31,6 +31,7 @@
|
|||
BITDEFENDER_DAEMON_RUNNING=0
|
||||
CLAMD_RUNNING=0
|
||||
CLAMSCAN_INSTALLED=0
|
||||
CROWDSTRIKE_FALCON_SENSOR_RUNNING=0
|
||||
ESET_DAEMON_RUNNING=0
|
||||
FRESHCLAM_DAEMON_RUNNING=0
|
||||
KASPERSKY_SCANNER_RUNNING=0
|
||||
|
@ -145,6 +146,17 @@
|
|||
Report "malware_scanner[]=avira"
|
||||
fi
|
||||
|
||||
# CrowdStrike falcon-sensor
|
||||
LogText "Test: checking process falcon-sensor (CrowdStrike)"
|
||||
if IsRunning "falcon-sensor"; then
|
||||
FOUND=1
|
||||
if IsVerbose; then Display --indent 2 --text "- ${GEN_CHECKING} falcon-sensor" --result "${STATUS_FOUND}" --color GREEN; fi
|
||||
LogText "Result: found falcon-sensor service"
|
||||
CROWDSTRIKE_FALCON_SENSOR_RUNNING=1
|
||||
MALWARE_SCANNER_INSTALLED=1
|
||||
Report "malware_scanner[]=falcon-sensor"
|
||||
fi
|
||||
|
||||
# Cylance (macOS)
|
||||
LogText "Test: checking process CylanceSvc"
|
||||
if IsRunning "CylanceSvc"; then
|
||||
|
|
Loading…
Reference in New Issue