How can i check my Linux OS for malicious contents and codes? Taking in consideration the harmful and malicious environment we work in. Chkrootkit and other old school tools won’t work here they probably won’t contain such samples of new codes and files.
ClamAV is your best bet.
Have you checked lynis?
Does it also check for spywares? Kinda being a noob here. Like those of msfvenom?
simplest way to check for virus is that check your OS startup files or configuration software
for example, if you are in linux,
Open Autostart file with any text editor, Autostart File Path:
if you add these five lines in it
[Desktop Entry] Type=Application X-GNOME-Autostart-enabled=true Name=Xinput Exec="destination_file_name"
files becomes persistence, as system when reboots, it automatically runs the executable.
By looking the last line, we can easily find the path where the evil file is stored.
Simply delete it and restart your pc
i know two methods to make file persistence:
one is, add a registry entry in this path
and other one is,
paste the evil file in this directory,
or simple checks for temp or appdata directory carefully.
as most virus store themself there in windows