I'm interested in analyzing some of the virus definition files used by antivir开发者_开发问答us software. All of them provide free access to the databases, but all the one's I've found so far are in some kind of in-house data file format (.AVC for Kaspersky Anti-virus, etc).
Is there any software that uses a data format closer to MySQL, or can any of these in-house data files be converted?
You could look at ClamAV virus definitions, which are in an open format (as ClamAV itself is open source).
There appears to be some documentation of how to create signatures.
精彩评论