develbranch / Tinyantivirus
Licence: gpl-2.0
TinyAntivirus is an open source antivirus engine designed for detecting polymorphic virus and disinfecting it.
Stars: ✭ 320
Labels
Projects that are alternatives of or similar to Tinyantivirus
milter-manager
milter manager is a free software to protect you from spam mails and virus mails effectively with milter.
Stars: ✭ 42 (-86.87%)
Mutual labels: antivirus
SEPparser
Script for parsing Symantec Endpoint Protection logs, VBNs, and ccSubSDK database.
Stars: ✭ 40 (-87.5%)
Mutual labels: antivirus
fake-sandbox
👁🗨 This script will simulate fake processes of analysis sandbox/VM software that some malware will try to avoid.
Stars: ✭ 110 (-65.62%)
Mutual labels: antivirus
antirootkit-anti-splicer
The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers
Stars: ✭ 31 (-90.31%)
Mutual labels: antivirus
basicLibPP
A powerful library for inline-hook,lock,compress etc,and it is useful for anti-virus software.
Stars: ✭ 15 (-95.31%)
Mutual labels: antivirus
VirusTotalScanner
Scan suspicious applications with over 60 different anti-viruses with a mere two clicks and five seconds!
Stars: ✭ 18 (-94.37%)
Mutual labels: antivirus
agent
This repository contains Nanny-On agent source codes. Anyone can contribute to write and update the codes. Please join us.
Stars: ✭ 14 (-95.62%)
Mutual labels: antivirus
Libellux-Up-and-Running
Libellux: Up & Running provides documentation on how-to install open-source software from source. The focus is Zero Trust Network to enhance the security for existing applications or install tools to detect and prevent threats.
Stars: ✭ 19 (-94.06%)
Mutual labels: antivirus
MultiAV2
MultiAV scanner with Python and JSON REST API using Malice Docker AV Containers and Docker-Machine based Autoscaling
Stars: ✭ 30 (-90.62%)
Mutual labels: antivirus
libredefender
Imagine the information security compliance guideline says you need an antivirus but you run Arch Linux
Stars: ✭ 76 (-76.25%)
Mutual labels: antivirus
clamav
Docker based ClamAV® service provides an easy to deploy open source antivirus engine for detecting trojans, viruses, malware & other malicious threats.
Stars: ✭ 31 (-90.31%)
Mutual labels: antivirus
MSE
Malware sample exchange system and API intended for Anti-Virus companies and researchers.
Stars: ✭ 14 (-95.62%)
Mutual labels: antivirus
Defeat-Defender-V1.2
Powerful batch script to dismantle complete windows defender protection and even bypass tamper protection ..Disable Windows-Defender Permanently....Hack windows. POC
Stars: ✭ 885 (+176.56%)
Mutual labels: antivirus
Macos Fortress
Firewall and Privatizing Proxy for Trackers, Attackers, Malware, Adware, and Spammers with Anti-Virus On-Demand and On-Access Scanning (PF, squid, privoxy, hphosts, dshield, emergingthreats, hostsfile, PAC file, clamav)
Stars: ✭ 307 (-4.06%)
Mutual labels: antivirus
TinyAntivirus
TinyAntivirus (TinyAv) is an open source antivirus engine designed for detecting polymorphic virus and disinfecting it. Now, TinyAv can detect and disinfect Sality polymorphic virus. In the future, I will deveplop some modules for removing other polymorphic viruses, such as Virut or Polip.
License
This project is released under the GPL2 license.
Requirements
- Microsoft Visual Studio 2015
- zlib 1.2.8 or newer
- unicorn-engine 0.9
Quick start
- Clone the repository:
git clone https://github.com/develbranch/TinyAntivirus.git. - Build: Core engine, Console and scan module.
- You can see
ReleaseDirectory. Change theReleasedirectory and runTinyAvConsole.exe.
Usage
TinyAvConsole.exe [options]
| Option | Meaning | Default value |
|---|---|---|
| -e | plug-in directory | current directory |
| -A | Archive scan depth | -1 : any depth |
| -D | scan depth | -1 : any depth |
| -d | path to scan | |
| -p | file pattern | *.* |
| -s | max file size in bytes | 10 * 1024 * 1024 (10 MB) |
| -m | Scan mode: Kill-virus (k) or Scan-only(s) | Kill-virus (k) |
| -h | Show usage |
You may scan all directories and files by using default values.
Example: Scan for all files (include ZIP files) to detect and disinfect virus. ZIP files which contain virus will be deleted.
C:\build>TinyAvConsole.exe -d C:\sample
------------------------------------------------------
TinyAntivirus version 0.1
Copyright (C) 2016, Quang Nguyen. All rights reserved.
Website: http://develbranch.com
------------------------------------------------------
Scanning ...
C:\sample\calc.EXE
W32.Sality.PE Disinfected
C:\sample\container.zip OK
C:\sample\container.zip>DiskView.exe OK
C:\sample\container.zip>DMON.SYS OK
C:\sample\container.zip>sub_container.zip OK
C:\sample\container.zip>sub_container.zip>NOTEPAD.EXE
W32.Sality.PE Deleted
C:\sample\dbgview.chm OK
C:\sample\sub\gmer.EXE
W32.Sality.PE Disinfected
=============================================
Scanned : 4 file(s) (10 object(s))
Detected : 3 file(s)
Removed : 3 file(s)
Access denied : 0 file(s)
C:\build>
Contribute
If you want to contribute, please pick up something from our Github issues.
I also maintain a list of more problems in a TODO list.
I have only one Sality sample to develop Sality killer module. I think there are many variant types of this file infector. Please send me samples which TinyAv can not detect or other kinds of polymorphic viruses. Thank you.
Author
Blog: develbranch.com
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].