jvoisin · hansphp · Apr 10, 2020 · Apr 10, 2020 · Apr 10, 2020 · Apr 10, 2020
diff --git a/php-malware-finder/php.yar b/php-malware-finder/php.yar
@@ -372,3 +372,11 @@ rule Websites
         (any of them) and not IsWhitelisted
 }
 
+rule SpecialPattern
+{
+    strings:
+        $ = "#/\\*\\*(.*)\\*\\*/#s" nocase
+
+    condition:
+        (any of them) and not IsWhitelisted
+}
diff --git a/php-malware-finder/whitelist.yar b/php-malware-finder/whitelist.yar
@@ -6,6 +6,7 @@
 
 include "whitelists/drupal.yar"
 include "whitelists/wordpress.yar"
+include "whitelists/joomla.yar"
 include "whitelists/symfony.yar"
 include "whitelists/phpmyadmin.yar"
 include "whitelists/magento1ce.yar"
@@ -115,6 +116,7 @@ private rule IsWhitelisted
     condition:
         Symfony or
         Wordpress or
+        Joomla or
         Prestashop or
         Magento or
         Magento1Ce or