cxs-scanner

ConfigServer eXploit Scanner (CXS)

For cPanel and DirectAdmin

  • For dedicated or virtual servers – protects all domains, IP addresses and users on the server
  • Active (realtime), manual, and scheduled scanning can be performed
  • Scans for suspected exploits, viruses, suspicious resources
  • Quarantine or delete suspicious files

ConfigServer eXploit Scanner (cxs) is a server malware, exploit and antivirus scanner that performs active scanning of files as they are uploaded to the server. Initial installation with recommended configuration options is included with the license.

Provides an easy to use interface within the admin control panel. Licensed on a per server basis, no limit on users or accounts.

View Demo

Features

A CXS, or ConfigServer eXploit Scanner, is a tool that performs active scanning of files as they are uploaded to the server.

  • Official support for cPanel, DirectAdmin and Interworx
  • cxs Setup Wizard to the UI for easy first-time configuration
  • cxs Command Wizard to help create effective scan commands
  • new quarantine interface via an SQLite database
  • statistics to provide information at a glance as to what cxs has been doing
  • command Wizards to help configure cxs Watch and Modsecurity
  • cxs Daily/Weekly Scan Wizard, to create and modify cron jobs in /etc/cron.d/cxs-cron
  • Monitor files and directories for changes and send an email report of activity
  • BETA support for Plesk Onyx/Obsidian, VestaCP , CentOS Web Panel (CWP) and CyberPanel.
  • EXPERIMENTAL support for RHEL v7.* fanotify and CloudLinux v7.* File Change API
  • Major update to Script Version Scanning. cxs now scans for more than 200 individual applications, more than 200 WordPress plugins and more than 200 Joomla Extensions. Over 700 in total!
  • IP Reputation System. The system provides a variety of IP blocklists gathered from information that is submitted by participating servers. This dual aspect provides the information to help protect the server using the reputation from active attacks
View Demo

Exploit Detection

ConfigServer eXploit Scanner (CXS) is a tool that initiates active scans of files uploading on your hosting and blocks every suspicious file (quarantine).

  • Antivirus scanning using ClamAV
  • Filename matching
  • Suspicious file names
  • Suspicious file types
  • Binary executables
  • Some illegal web software installations
  • Custom user specified regular expression patterns
  • Daily check for new exploit fingerprints
  • Comprehensive constant scanning of all user data using the cxs Watch daemon – scans all user files as soon as they are modified
  • Check for out-dated versions of popular web scripts (e.g. WordPress, Joomla, osCommerce)
  • Over 4000 known current exploit script fingerprint matches (in addition to standard ClamAV detection)
  • Regular expression pattern matching to help identify known/unknown exploits
  • Bayes probability scanning – scans scripts and passes the contents through an algorithm which produces a probability as to whether it is an exploit

Benefits of CXS

  • Provides an easy to use interface within the root or admin control panel.
  • Licensed on a per server basis, no limit on users or accounts.
  • includes software updates for the life of the product
Encrypted Backups

Who can use CXS?

  • Web hosting companies.
  • Server management companies wanting to offer value added services.
  • Anyone running a cPanel or DirectAdmin dedicated server or virtual server, who wants protection from server exploits and malware

Web Based Admin Interface

Provides an easy to use interface within the root or admin control panel.

  • Run scans
  • Schedule and Edit scans via CRON
  • Compose CLI scan commands
  • View, Delete and Restore files from Quarantine
  • View documentation
  • Set and Edit default values for scans
  • Edit commonly used cxs files

System requirements

These are the minimum system requirements for installing ConfigServer eXploit Scanner (CXS) :
  • cPanel/WHM – latest versions fully supported
  • DirectAdmin – latest versions fully supported
  • InterWorx – latest versions fully supported
  • Supported OS’s for cPanel: Redhat v7, CentOS v7, Ubuntu v20.04 , CloudLinux v7/8, AlmaLinux v8
  • Supported OS’s for DirectAdmin: RHEL v7 to v9, CentOS v7, CloudLinux v7/8/9, AlmaLinux v8/9, Debian v11+, Ubuntu v20.04+
  • ClamAV daemon process, for virus scanning
  • Server with static IPv4 or IPv6 address (for licensing).
  • SQLite v3, for the quarantine, report and statistics database
  • ModSecurity v2+, for web script upload scanning (this is not required)
  • BETA support for Plesk Onyx/Obsidian, VestaCP, CentOS Web Panel, and CyberPanel
  • Root SSH access to the server is required for installation and some configuration actions

Other Technical Information

  • Support is not guaranteed for servers running services from 1h.com, ASL or Bitninja.
  • We only provide support for supported versions of the OS and latest versions of the control panel. EOL versions are not supported. BETA versions are supported but there may be absent features and bugs, and installation is not included.
  • Admin Front-End available only with root WHM login (cPanel) or admin login (DirectAdmin), not reseller accounts. 
  • We no longer provide support for Virtuozzo or OpenVZ servers. While the product may work on these types of containers, there may be issues that we cannot support

Have A Question?

If you can't find the answer you are looking for our support is just an email away.

Live Chat with a Real Person

Ready to place your order?

Order Now
What is ConfigServer EXploit Scanner?

ConfigServer eXploit Scanner (cxs) is a server malware, exploit and antivirus scanner that performs active scanning of files as they are uploaded to the server.

Is your shared license same as original?

Yes It's same as original license. All we do is when a license request comes we forward the request to our Original license Server and it will authorize your server is licensed and allows you to use their software on your server. Also you will get Realtime software update from official servers.

For more details about shared license pls click here.

How do I Install ConfigServer EXploit Scanner Shared license?

Our ConfigServer EXploit Scanner license can be easily installed on the server with a few simple commands ( we will supply the commands you need to install the Shared license) . If you need any help with installation we will there for you 24/7 365 days.

Will cxs clean up exploits found on my server?

No. cxs will help identify exploits and suspicious files that it finds on the server and report them to you. It is then your responsibility to check each reported file and establish whether it is indeed an exploit or simply a false-positive (innocent file). It can be configured to quarantine files according to specific criteria (for example known exploits and viruses) so that they are removed from the user's account.

Which methods of support do you provide?

You can contact support via email, ticket and live chat.