Question for AT developers

Discussion in 'other anti-trojan software' started by gerico, Jan 17, 2003.

Thread Status:
Not open for further replies.
  1. gerico

    gerico Registered Member

    Joined:
    Jul 6, 2002
    Posts:
    14
    Hi guys,

    just a little question for Anti-virus and Anti-trojan developers:
    "Where do you take the informations about viruses/trojans?"

    I mean, to develop an AV or AT software one should create a database, but surfing the net for security sites, one will discover that each security firm has his own database, so one can't be sure to include ALL known viruses/trojans...

    Is there a site that includes all technical infos about all KNOWN viruses/trojans?
     
  2. DrSeltsam

    DrSeltsam Guest

  3. Wayne - DiamondCS

    Wayne - DiamondCS Security Expert

    Joined:
    Jul 19, 2002
    Posts:
    1,533
    Location:
    Perth, Oz
    google.com and MSDN ... :)
     
  4. DrSeltsam

    DrSeltsam Guest

    MSDN for information about viruses and trojans? :D :D
     
  5. notageek

    notageek Registered Member

    Joined:
    Jun 3, 2002
    Posts:
    1,601
    Location:
    Ohio
    :) I think he means MSN. lol
     
  6. Wayne - DiamondCS

    Wayne - DiamondCS Security Expert

    Joined:
    Jul 19, 2002
    Posts:
    1,533
    Location:
    Perth, Oz
    Sorry, I misread/misunderstood his original post. MSDN doesn't have much info on viruses/trojans, no, but it's useful for all things API/system-related - a vital resource when analysing trojans/viruses ... :)
     
  7. gerico

    gerico Registered Member

    Joined:
    Jul 6, 2002
    Posts:
    14
    Andreaas, thank you for your reply, so how to proceed to create a complete database of all <known> vir/tr?

    How do you collect datas for ANTS, for example?
     
  8. Wayne - DiamondCS

    Wayne - DiamondCS Security Expert

    Joined:
    Jul 19, 2002
    Posts:
    1,533
    Location:
    Perth, Oz
    Gerico, what exactly are you hoping to accomplish? Be specific please
     
  9. DrSeltsam

    DrSeltsam Guest

    >Andreaas, thank you for your reply, so how to proceed to create a
    >complete database of all <known> vir/tr?

    I started collecting 8 years ago and i worked a few months for a anti virus firm :eek:).

    >How do you collect datas for ANTS, for example?

    Coded a spider that "watches" big vx sites so every time a new malware is added i add it to my database :eek:). Than just use google to find collections and samples of old malware. If you have a quite big database do some sharing with other collectors or vendors. There are many ways :eek:).
     
  10. gerico

    gerico Registered Member

    Joined:
    Jul 6, 2002
    Posts:
    14
    I was just exploring the AV/AT field, to see if and how I could eventually create an AV/AT software.
    The major difficult that I can see is the data-collecting process, in the sense that I can't find a reliable source of information that includes all "known" malware.
    That means my eventual database will always be incomplete. Uptonow the CERT seems to be only point of reference universally adopted. But in my opinion it's not sufficient...
     
  11. gerico

    gerico Registered Member

    Joined:
    Jul 6, 2002
    Posts:
    14
    Anyway, it's a nightmare to rely on google to find malware code, I thought there were a generally recognized site with the functions of data-collector and database linker.
    Our world still needs improvements...
     
Thread Status:
Not open for further replies.