Nomalua reports back the following (sample):Ĭode: 2 - AUTHENT (Presence of Steam ID) gamemodes/jailbreak/gamemode/core/cl_menu_help_a:218 : Excl (STEAM_0:0:19441588) - Lead developer in charge of Jail Break since version 1Ĥ - NETWORK (HTTP server call) addons/hatschat2/lua/hatschat/cl_a:196 http.Fetch( FUrl, function( body, len, header, code)Ģ - BANMGMT (Ban by IP address) addons/customcommands_onecategory/lua/ulx/modules/sh/cc_a:283 local banip = ulx.command( "Custom", "ulx banip", ulx.banip )Ģ - DYNCODE (Dynamic code execution) lua/autorun/a:152 RunString(file.Read("luapad/_server_globals.txt", "DATA")) Ģ - FILESYS (File deletion) addons/customcommands_onecategory/lua/ulx/modules/sh/cc_a:909 file.Delete( "watchlist/". Nomalua is rather resource-intensive, so it's not recommended that you run it when the server is particularly busy. When running through a client console there may be a delay before output is rendered.
If running through a client, you must have superadmin priviledges. If running directly on the server, you should immediately begin to see output (sample below).
Once installed and the server restarted, you can run the scanner by opening console and issuing the "nomalua_scan" command. Please note that installation is the same on dedicated servers. When you've done this, you should have a file structure like this.
How to look through gmod addons install#
To install Nomalua, simply extract the files from the archive to your garrysmod/addons folder. This is especially true as more server administrators use addons through the Steam Workshop, which makes it harder for admins to review code and track updates. Nomalua allows server administrators to have better insight into what's running without having to analyze every addon line-by-line. It's better to trust but verify rather than simply trust blindly. Addons can harbor backdoors and other nefarious code. However, when you run an addon you are trusting that author to be a good citizen. **The vast majority of alerts will be false positives**. IT IS IMPORTANT to understand that detection by Nomalua does NOT necessarily mean you have a problem - simply that a code construct or pattern exists that meets Nomalua's critera for reporting. It scans Lua files on the server (including those mounted through Steam Workshop GMA files) and reports on any suspicious code or code patterns that may warrant further invesitgation. Nomalua is a malware scanner for GMod Lua files.