[Clamav-devel] [clamav-users] Question about .cvd files

Joel Esler (jesler) jesler at cisco.com
Wed Apr 12 17:31:08 EDT 2017


1.  bytecode.cvd contains AV signatures written in our bytecode language.  This allows us to have very advanced processing of files for detection.
2.  Malware may not be specific to one OS.  Or malware may be copied from OS to OS.
3.  I don’t think you’d wan to do this, based upon what I just said in #2.


--
Joel Esler | Talos: Manager | jesler at cisco.com<mailto:jesler at cisco.com>






On Apr 12, 2017, at 12:13 PM, crazy thinker <crazythinker91 at gmail.com<mailto:crazythinker91 at gmail.com>> wrote:

Hi ClamAV  Developer, users

I have below Questions on ClamAV Virus Database

1.what information bytecode.cvd contatins?  and how it is useful in malware
detection?

2.Why not ClamAV release virus databse in terms of platform specific like
Windows,Linux,Mac OS X,Androind,BSD etc? is there any logic behind this?

3.How to  separate malware  signatures  based on target operating system
to optimize database size?

Could Anyone of you please help me in this.....
_______________________________________________
clamav-users mailing list
clamav-users at lists.clamav.net<mailto:clamav-users at lists.clamav.net>
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml



More information about the clamav-devel mailing list