1. bytecode.cvd contains AV signatures written in our bytecode language. This allows us to have very advanced processing of files for detection. 2. Malware may not be specific to one OS. Or malware may be copied from OS to OS. 3. I don’t think you’d wan to do this, based upon what I just said in #2.
-- Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com> On Apr 12, 2017, at 12:13 PM, crazy thinker <crazythinke...@gmail.com<mailto:crazythinke...@gmail.com>> wrote: Hi ClamAV Developer, users I have below Questions on ClamAV Virus Database 1.what information bytecode.cvd contatins? and how it is useful in malware detection? 2.Why not ClamAV release virus databse in terms of platform specific like Windows,Linux,Mac OS X,Androind,BSD etc? is there any logic behind this? 3.How to separate malware signatures based on target operating system to optimize database size? Could Anyone of you please help me in this..... _______________________________________________ clamav-users mailing list clamav-us...@lists.clamav.net<mailto:clamav-us...@lists.clamav.net> http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml _______________________________________________ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net http://www.clamav.net/contact.html#ml
