System administrators hosting users often struggle with monitoring their servers against malware distribution. Nmap allows us to systematically check whether a host is known for distributing malware or being used in phishing attacks, with some help from the Google Safe Browsing API.
This recipe shows system administrators how to check whether a host has been flagged by Google's safe browsing service as being used in phishing attacks or distributing malware.
The http-google-malware
script depends on Google's safe browsing service, and it requires you to register to get an API key. Register at https://developers.google.com/safe-browsing/?csw=1.