[clamav-users] Question about .cvd files
Joel Esler (jesler)
jesler at cisco.com
Wed Apr 12 17:31:08 EDT 2017
1. bytecode.cvd contains AV signatures written in our bytecode language. This allows us to have very advanced processing of files for detection.
2. Malware may not be specific to one OS. Or malware may be copied from OS to OS.
3. I don’t think you’d wan to do this, based upon what I just said in #2.
Joel Esler | Talos: Manager | jesler at cisco.com<mailto:jesler at cisco.com>
On Apr 12, 2017, at 12:13 PM, crazy thinker <crazythinker91 at gmail.com<mailto:crazythinker91 at gmail.com>> wrote:
Hi ClamAV Developer, users
I have below Questions on ClamAV Virus Database
1.what information bytecode.cvd contatins? and how it is useful in malware
2.Why not ClamAV release virus databse in terms of platform specific like
Windows,Linux,Mac OS X,Androind,BSD etc? is there any logic behind this?
3.How to separate malware signatures based on target operating system
to optimize database size?
Could Anyone of you please help me in this.....
clamav-users mailing list
clamav-users at lists.clamav.net<mailto:clamav-users at lists.clamav.net>
Help us build a comprehensive ClamAV guide:
More information about the clamav-users