How to use

Help menu

The help menu is very simple:

$ rkscanmal -h

Engine options:
 --use-clamdb                  Use ClamAV's default sigs (/var/lib/clamav/)
 --clam-debug                  Enable libclam debug mode
 --path-clamdb  <file or dir>  Set custom ClamAV's signatures
 --path-yaradb  <file>         Set custom Yara's rules

Scan options:
 --scan-files  <file1 file2>  Scan files and dirs
 --scan-procs  <pid1 pid2>    Scan processes. Skip if --all-procs is used
 --scan-mem                   Scan all running proccesses

Run basic scan

To scan files or directories

$ rkscanmal --scan-files <path_to_file_1> <path_to_file_2>

Example:

$ rkscanmal --scan-files /usr/bin/ls /home/myuser

To scan processes:

$ rkscanmal --scan-procs <pid 1> <pid 2>

Example:

$ rkscanmal --scan-procs 12 34567

Or if you want to scan all running processes, run

$ rkscanmal --scan-mem

Root privilege is required to scan root's processes or files / directories ;)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

How to use

Help menu

Run basic scan

To scan files or directories

To scan processes:

Clone this wiki locally