On Fri, May 05, 2017 at 10:14 AM, Mark Foley wrote:
> I have a question about the timeliness of signature updates. I am running a
> clamav-milter to check email when received by the MDA -- this rarely finds
> anything. I also have clamscan running multiple times a day checking all the
> Maildir fol
I have a question about the timeliness of signature updates. I am running a
clamav-milter to check email when received by the MDA -- this rarely finds
anything. I also have clamscan running multiple times a day checking all the
Maildir folders.
Yesterday, the Maildir folder scan found Js.Download
Heuristic signatures, such as Js.File.MaliciousHeuristic-6249621-1,
signature on likely malicious traits but are not tight enough to associate
with a given family or could be more FP prone.
Consider: *Js.File.MaliciousHeuristic-6249621-1*
Js.File.MaliciousHeuristic-6249621-1;Engine:51-255,Target:
It was dropped from the database in daily - 23331 on Apr 25, so ignore it.
-Al-
On Fri, May 05, 2017 at 03:49 AM, Stephan Fourie wrote:
>
> Hi everyone,
>
> Can anyone give me more information about what the following ClamAV signature
> looks for: Email.Phishing.VOF2-6295380-0
>
> I've tried
Hi everyone,
Can anyone give me more information about what the following ClamAV
signature looks for: Email.Phishing.VOF2-6295380-0
I've tried searching Google for an answer, but have not been able to
find more information. I assume from the name, that it has something to
do with phish dete
Joel Esler (jesler) skrev den 2017-05-05 01:39:
We have some ideas here Benny, but nothing in the pipeline today.
+1, thats stable software :)
If we incorporated SaneSecurity’s sigs (we need permission to do so
from Steve), then we could ingest them, and de-dupe any hash-based
sigs that we ha
On Fri, May 05, 2017 at 02:17 AM, crazy thinker wrote:
> @AI Varnell
> Does Clam AV provides Heuristics signatures in their official db?
There's a heuristics engine that uses data from the .pdb and .sfp sections of
the database to detect messages from selected financial institutions that
appear
Arnaud thanks for your help man, it worked!
I much appreciate your help :)
. . . . .
> On May 5, 2017, at 11:56 AM, Arnaud Jacques / SecuriteInfo.com
> wrote:
>
> Hello,
>
>> $ sigtool --mdb * > home/test/Documents/CustomDB.mdb
>>
>> But when i do clamscan and let clam use this database it
@AI Varnell
Does Clam AV provides Heuristics signatures in their official db? I heard
that clamAV uses md5, sha1,sha256 based virus signatures in their
database?
On 5 May 2017 at 14:31, Al Varnell wrote:
> All of the "Heuristics" signatures could be considered AI.
>
> -Al-
>
> On Fri, May 05,
All of the "Heuristics" signatures could be considered AI.
-Al-
On Fri, May 05, 2017 at 01:37 AM, crazy thinker wrote:
>
> Hi ClamAV Developers, Users,
>
> I have heard that Artificial Intellgience Based Anti-Virus provides more
> security than others.. is it really true? is there any AI based
Hello,
> $ sigtool --mdb * > home/test/Documents/CustomDB.mdb
>
> But when i do clamscan and let clam use this database it does not detect any
> malware sample! I did the following:
>
> /Downloads/exe$ clamscan -r -d /home/teat/Documents/CustomDB.mdb
You make different errors, including typo er
Hi ClamAV Developers, Users,
I have heard that Artificial Intellgience Based Anti-Virus provides more
security than others.. is it really true? is there any AI based free
Desktop AV? did ClamAV uses AI techniques to threat prevention and
detection?
Thanks,
Crazy Thinker Inc
_
From "signatures.pdf" para 3.1.3:
> The easiest way to generate MD5 based section signatures is to extract target
> PE sections into separate files and then run sigtool with the option --mdb
-Al-
On Fri, May 05, 2017 at 12:47 AM, Abdullah AL-Mutairy wrote:
>
> Hello everyone!
>
> I'm having a
Hello everyone!
I'm having a trouble with custom databases.
I have 600 malware samples stored in "/Downloads/exe" and used sigtool to
create a signature database that only contain signatures of those 600 malware
samples, so i navigated the command line to point to /Downloads/exe and then
did t
14 matches
Mail list logo
