English
A PART OF ANTI-VIRUS 2 [Chapter 4: Customizing the Sample Programs]
This is the web edition of A PART OF ANTI-VIRUS 2 distributed at Tech Book Fest 19.
ReadA PART OF ANTI-VIRUS 2 [Chapter 5: AMSI Integrated into PowerShell]
This is the web edition of A PART OF ANTI-VIRUS 2 distributed at Tech Book Fest 19.
ReadInformation Retrieval Algorithms Behind AntiVirus, Part 1 - The Aho–Corasick Algorithm
Using ClamAV as a reference, this article summarizes the Aho–Corasick algorithm, an information retrieval algorithm that underpins AntiVirus software.
ReadNotes on How clamscan Works Before It Performs a File Scan (unfinished)
These are notes on how clamscan works before it performs a file scan (unfinished).
ReadNotes on Creating a Tool to Obtain File Handles with Arbitrary Flags on Windows
Notes on creating a tool to obtain file handles with arbitrary flags on Windows
ReadHow to Fix the Issue Where Hyper-V Virtual Machines and WSL Can No Longer Be Used Together After Upgrading to Windows 11 24H2
This post summarizes how to fix the issue where Hyper-V virtual machines and WSL can no longer be used together after upgrading to Windows 11 24H2.
ReadHandling AMSI Scan Requests with a Custom Provider
This post summarizes how a custom AMSI provider handles AMSI scan requests.
ReadIssuing AMSI Scan Requests from a Custom Application
This article summarizes how a custom application can issue AMSI scan requests.
ReadNotes on Tracing the ClamAV Scan Process Until the Eicar Test File Is Detected
Notes on tracing the scan behavior in ClamAV from invocation to detection of the Eicar test file.
Read