Project

metascan

0.0
No commit activity in last 3 years
No release in over 3 years
metascangraysonc/metascanHomepageDocumentationSource CodeBug TrackerWiki
Allows virus scanning files using the Metascan public API. https://www.metascan-online.com/en/public-api
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
2025
 Popularity
Downloads
17,589
Stars
7
Forks
2
Watchers
2
 Releases
Current version
0.1.4
Total releases
6
First release
2014-04-18
Latest release
2015-07-06
 Issues
Open Issues
2
Closed Issues
3
Total Issues
5
Issue Closure Rate
60%
 Pull Requests
Open Pull Requests
0
Closed Pull Requests
0
Merged Pull Requests
3
Pull Request Acceptance Rate
100%
 Development
Primary Language
Ruby
Licenses
MIT
Average date of last 50 commits
2014-09-21
Reverse Dependencies
0

 Dependencies

Development

rspec
>= 0
webmock
>= 0

Runtime

typhoeus
>= 0.6.8
 Project Readme

metascan

A gem for accessing the Metascan Public API.

Read more at https://www.metascan-online.com/en/public-api

Usage

require 'metascan'
scanner = Metascan::Client.new(MY_API_KEY) 
filename = "/etc/unwise-backups/passwd.rar" # FULLY QUALIFIED
results = scanner.scan_file(filename, archivepwd: "the eagle has left the nest")
=> <Metascan::Scan ... >
results.clean?
=> true

results has all the fields of a straight JSON.parse of the response body in the scan results given by Metascan.

It also exposes a few handy methods.

  • Metascan::Scan#clean?(poll: false) returns true iff the scan came back with no threat detected, or the file was empty. if poll == true then retrieve_results is called first.
  • Metascan::Scan#retrieve_results makes an API call and updates self.results with the latest scan progress.
  • Metascan::Scan#results(poll: true) returns last fetched results; if poll == true, retrieve_results is called first.

Batch Scanning

require 'metascan'
scanner = Metascan::Client.new(MY_API_KEY)
filenames = ["/etc/passwd", "/dev/sda0", "/dev/random.tgz"] # don't try this
results = scanner.scan_batch(filenames, archivepwds: { "/dev/random.tgz" => "hunter2" })
=> <Metascan::Batch ...>
results.retrieve_results
results.clean?
=> true #true iff all files in filenames are clean
results.add(scanner.scan_file("/mydirtyfile.rar"))
results.run
results.retrieve_results
results.clean?
=> false

  • Metascan::Batch#add add a scan to the batch. call run to run the scan (involves uploading the file) and retrieve_results to check on the current progress.

  • Metascan::Batch#clean? returns true iff all the scans in the batch came back clean last time retrieve_results was called.

  • Metascan::Batch#dirty returns a list of the dirty scans in the batch.

  • Metascan::Batch#retrieve_results fetch the latest progress report for each scan in the batch.

  • Metascan::Batch#run run any remaining scans, uploading their files and retrieving the key to fetch results on the scan.

For more information on the structure of the Metascan response object, see the above link under "Retrieving scan reports using data hash."