Light

konloch / antivirus Goto Github PK

View Code? Open in Web Editor NEW

6.0 2.0 1.0 1.24 MB

Work In Progress

Home Page: https://konloch.com/antivirus

License: MIT License

Java 89.97% C++ 0.09% CMake 0.08% Batchfile 0.13% JavaScript 0.15% TypeScript 9.09% CSS 0.49%

antivirus antivirus-free antivirus-scanners antivirus-software

antivirus's Introduction

Antivirus+

General Features

Mixes both static and dynamic file scanning
Built on top of existing AV databases & tools
Experimental modules
Large signature database
The tool is still early in development

Technical Features

Scans using Yara & File signatures
SQLite for database storage
Automatically updates from ClamAV's DB, Malware Bazaar, VirusShare, Yaraify & Yara
- You need to manually update AV+ itself though, the software will not self-update, only the signatures and scanning dependencies

How To Install

Install the latest JRE (Must be on Java 8 or higher)
Download the latest release
Run the latest release
- You'll have to wait for the initial download to finish before you can scan
- Due to the signature database size this can be up to an hour
Report all issues here

How To Use

Use the tray to access the various GUIs
- Scanner
- Settings
- Quarantine

How To Scan

Drag and drop any folder or file you want to scan
Full scan will scan all of your drives and files, this requires admin elevated rights for a deep scan but works without it
Quick scan will scan all active processes, start-up locations & other well known locations
Specific scan will prompt a file selection dialogue - select any file or folder from here

How To Remove Detections

Open the quarantine from the tray
Review the file-paths by hovering over the file-name to verify the file isn't a false positive

Requires

Java 8 (Later versions also work)
Windows 11 (Earlier versions also work)
- Linux / Mac support works but has limited feature set
  - Experimental VM Mimic is currently windows only

Technology Credits

File Signature Scanning comes from Traditional-Antivirus
- File signatures database come from ClamAV's DB, Malware Bazaar, VirusShare
Yara Scanning comes from Yara-Antivirus
- Yara integration is powered by Yara CLI
- Yara database come from Yaraify
Experimental VM Mimic comes from Experimental-Antivirus
- Experimental VM Mimic process names Fake-Sandbox-Artifacts

Notes

Use in combination with Windows Defender or another trusted Antivirus
Quarantine does not actually quarantine - Until we can rule out false positives from the yara rules we probably won't have a realtime quarantine
- Instead, we have a passive quarantine that requires the user to decide if they want to remove the files or not

More Media

Scanning GUI with Quarantine GUI

Scanning GUI

Quick scanning

Settings GUI with toggling the scanning options

Settings GUI

Startup after fully installed

Downloading dependencies announcements

Tray navigation

antivirus's People

Contributors

Stargazers

Watchers

Forkers

pocketappz

antivirus's Issues

Discord Update.exe False Positive

File Path: C:\Users\null\AppData\Local\Discord\Update.exe
File MD5: 13e3f1e318224a1593f8783086aca044
File SHA-1: 8d0e1e64c38f8b49b725e7a0d3501aff8c9a7938
File SHA-256: 9b2de7e18319bc24ffadac02e1a1adc82571be94b4c63b075435868f232e2724
File SHA-512: 822e7a4e762e85b6facf4bc8f0cf003c09aa2252459437b8688bc34531de8dff68dec0a33aeda7ae6237451e1ed02a5fa14d99085b263ebbadce46590e47e1e0

Recommend Projects

React

A declarative, efficient, and flexible JavaScript library for building user interfaces.
Vue.js

🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript

TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
TensorFlow

An Open Source Machine Learning Framework for Everyone
Django

The Web framework for perfectionists with deadlines.
Laravel

A PHP framework for web artisans
D3

Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

javascript

JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
web

Some thing interesting about web. New door for the world.
server

A server is a program made to process requests and deliver data to clients.
Machine learning

Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Visualization

Some thing interesting about visualization, use data art
Game

Some thing interesting about game, make everyone happy.

Recommend Org

Facebook

We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft

Open source projects and samples from Microsoft.
Google

Google ❤️ Open Source for everyone.
Alibaba

Alibaba Open Source for everyone
D3

Data-Driven Documents codes.
Tencent

China tencent open source team.