Jump to content
View in the app

A better way to browse. Learn more.
Tuts 4 You

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Anti-Virus Coding Requirement

maxil122
maxil122
in Malware Reverse Engineering

Featured Replies

Posted

Hello,

Please, can someone help me to know what is required to made an Anti-virus:

- Which language is more efficient ?

- What's required like Windows Internals / Coding in low level / Good know in x86 family / File systems (PE) / Reversing / Unpacking... ? It will be helpful if you make it clear.

Thanks.

I'd go for C++, simply because it allows you to go 64bit without much effort.

It's not as fast as MASM (if you code MASM properly that is, poor MASM code is worse than good VB code in that matter :D ) but allows you to do most low-level stuff within the language specs, even without inline asm.

Other than that you really need to know what youre doing. All the stuff you quoted is pretty important, especially Windows internals for the integration into the OS (drivers etc.) and knowledge of the PE format.

Besides, you'll have to collect all the malware signatures, so yeah, it's gonna be hard :D

  • Author

Thanks Killboy,

I'd go for C++, simply because it allows you to go 64bit without much effort.

It's not as fast as MASM (if you code MASM properly that is, poor MASM code is worse than good VB code in that matter ) but allows you to do most low-level stuff within the language specs, even without inline asm.

I'm familiar with Win32 ASM (MASM package) , but i have a trouble which assembler i'm going to use. Source codes in MASM are more available than other assemblers. Anyway must to take a look in Fasm. I c it a good assembler.

Other than that you really need to know what youre doing. All the stuff you quoted is pretty important, especially Windows internals for the integration into the OS (drivers etc.) and knowledge of the PE format.

It's crystal clear right now, thanks.

Besides, you'll have to collect all the malware signatures, so yeah, it's gonna be hard

The ClamAV database is free, i can start with this one.

Thanks.

Take a look into HIP Systems .

  • Author
Take a look into HIP Systems.

What does HIP stand for? Host-Based Intrusion Prevention System ? What kind of informations can HIP give us ?

HIPS can give you info about how to make a self-defence system for the AV, also you can detect/restrict suspected behaviors by malwares .

  • Author

Ah i see GamingMasteR, thanks a lot.

Well, this is Ansav (An's Anti Virus by 4nV|e) source code. Build in MASM. It ain't best but it's good for starting to learn how to code AV

Note : Sorry for my bad english

ScAnsav.zip

  • Author

Exactly what i'm seeking for ! Thanks so much :)

Create an account or sign in to comment

Go to topic listing

Configure browser push notifications
Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.