{"id":49501604,"url":"https://github.com/axelhahn/clamd-syslog-watcher","last_synced_at":"2026-05-01T12:53:04.284Z","repository":{"id":192901524,"uuid":"687697089","full_name":"axelhahn/clamd-syslog-watcher","owner":"axelhahn","description":"Bash script to watch clamd messages in syslog and send desktop notifications on new found infections","archived":false,"fork":false,"pushed_at":"2026-03-07T13:20:46.000Z","size":452,"stargazers_count":0,"open_issues_count":0,"forks_count":1,"subscribers_count":1,"default_branch":"main","last_synced_at":"2026-05-01T12:53:01.185Z","etag":null,"topics":["bash","bash-script","clamav","gnu-gplv3","opensource"],"latest_commit_sha":null,"homepage":"","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/axelhahn.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null}},"created_at":"2023-09-05T20:18:27.000Z","updated_at":"2026-03-07T13:20:49.000Z","dependencies_parsed_at":"2023-09-28T04:37:17.096Z","dependency_job_id":null,"html_url":"https://github.com/axelhahn/clamd-syslog-watcher","commit_stats":{"total_commits":3,"total_committers":2,"mean_commits":1.5,"dds":"0.33333333333333337","last_synced_commit":"7c5ec614c83aee21a3590daad9bdf83500566881"},"previous_names":["axelhahn/clamd-syslog-watcher"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/axelhahn/clamd-syslog-watcher","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/axelhahn%2Fclamd-syslog-watcher","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/axelhahn%2Fclamd-syslog-watcher/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/axelhahn%2Fclamd-syslog-watcher/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/axelhahn%2Fclamd-syslog-watcher/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/axelhahn","download_url":"https://codeload.github.com/axelhahn/clamd-syslog-watcher/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/axelhahn%2Fclamd-syslog-watcher/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":32497815,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-30T13:12:12.517Z","status":"online","status_checked_at":"2026-05-01T02:00:05.856Z","response_time":64,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bash","bash-script","clamav","gnu-gplv3","opensource"],"created_at":"2026-05-01T12:53:02.972Z","updated_at":"2026-05-01T12:53:04.267Z","avatar_url":"https://github.com/axelhahn.png","language":"Shell","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Clamd syslog watcher #\n\n## Description\n\nA bash script to watch the syslog for clamav messages.\nIt shows FOUND infections on terminal. If the found file is new then it sends a notification to the desktop (using ``notify-send``).\n\n👤 Author: Axel Hahn\\\n📄 Source: \u003chttps://github.com/axelhahn/clamd-syslog-watcher\u003e\\\n📜 License: GNU GPL 3.0\\\n📗 Docs: TODO [www.axel-hahn.de/docs](https://www.axel-hahn.de/docs/)\n\n## Help\n\n```txt\n./clamav-syslog-watcher.sh -h\n\n\n  ---===\u003c\u003c\u003c###|  CLAMD SYSLOG WATCHER  *  v0.2  |###\u003e\u003e\u003e===--- \n\n\nHELP:\nIt is a cyclic watcher into journalctl and scans for clamd messages.\nOn detection it shows the log lines on terminal and sends a list of\ninfected files to the desktop using 'notify-send'.\n\nThe script writes a log with monthly log files with 1st occurrence\nper infected file. See subdir ./logs/infections__*.txt\n\nPARAMETERS:\n    -h|--help     show this help\n    -n|--nocolor  do not show colored output; NO_COLOR=1 is respected too.\n    -q|--quiet    Do not show unneeded output\n    -s|--sleep N  sleeptime in sec between checks; default: 30\n\nEXITCODES:\n    1 - Failed to source file 'color.class.sh'\n    2 - unknown parameter was given\n    3 - clamonacc not found (clamav was not installed yet)\n    4 - unable to create log directory\n\nEXAMPLES:\n    clamav-syslog-watcher.sh -s 60   start scan and set scan interval to 60 sec\n    clamav-syslog-watcher.sh -n -q   Show only found infections and no coloring\n```\n\n## Screenshots\n\nAfter starting the syslog watcher interactively:\n\n![Screenshot](docs/images/screenshot_interactive_start.png)\n\nWhen I simulate a virus detection (using the eicar test file) it will be shown in the terminal. The First detection is marked with prefix \"NEW\". If the same file will be detected again, you get a prefix \"OLD\" and gray text.\n\n![Screenshot](docs/images/screenshot_virus_detected.png)\n\nAny 1st detection of a new (probably) infected file will be shown as notification:\n\n![Screenshot](docs/images/screenshot_notification.png)\n\n## Log\n\nIn the subdir \"logs\" a file named ``infections_[YEAR]-[MONTH].txt`` will be created.\n\n```txt\n$ cat logs/infections__23-09.txt \nSep 06 18:32:45 linux-pc clamd[570]: Wed Sep  6 18:32:45 2023 -\u003e /home/axel/Downloads/eicar.com.txt: Win.Test.EICAR_HDB-1 FOUND\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Faxelhahn%2Fclamd-syslog-watcher","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Faxelhahn%2Fclamd-syslog-watcher","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Faxelhahn%2Fclamd-syslog-watcher/lists"}