需要描述病毒签名以及如何在项目中使用它们的帮助 [英] Need Help Describing Virus Signatures And How To Use Them In A Project

问题描述

您好...我不知道扫描病毒时要使用哪种类型的签名.我曾经对数字签名和手写签名发表过评论，但不知道每个数字签名是什么，或者是否对我的情况有所帮助.我已经制作了一半的防病毒扫描程序，但也需要它来扫描签名.这种补救措施的任何帮助都将不仅仅适用于

在此先感谢.......

Hello... I am unaware of what types of signature to use when scanning for viruses. I have had a comment about digital signatures and handwritten ones but have no idea what each one is or if it will help my situation. I have made a half decient antivirus scanner but need it to also scan for signatures. any help in this reguard would be more than appriciated

thanks in advance.......

推荐答案

戴尔，

我感觉到您对最后一个问题(我曾协助您解决的问题)的想法不够深入，现在，这个问题已经确认您对病毒识别和检测没有任何了解.扫描.

该主题是一个非常复杂的主题，如果您真的应该在研究和编写代码之前对主题进行充分的研究.

我敢肯定，这个站点上有很多经验丰富的程序员，他们甚至都不会怀念编写病毒扫描软件的想法.

您应该在Google上搜索白皮书"和病毒扫描"或病毒识别"，然后您会发现一些有关该主题的有趣论文.

这是一个向您显示出比您想像的还多的东西. http://www.crswann.com/2-NetSecurity/VirusDetectionTechnology(McAfee).pdf [ ^ ]


无论如何，回到您的原始问题；
病毒签名只是在文件中找到的字节的集合或字节序列，这些字节或序列表明特定病毒的故事.例如请参阅此页面，其中详细介绍了每个病毒扫描程序都应检测到的标准测试文件. http://www.eicar.org/anti_virus_test_file.htm [

Dale,

I had a feeling that you were out of your depth with your last questions (the ones i assisted you with), and this question has now confirmed that you haven''t got a clue what you were doing when it comes to virus identification and scanning.

The subject is a very complex one and if you really should have investigated the subject matter fully before diving in and writing code.

I am sure there are many experienced programmers on this site, that wouldn''t even entertain the idea of writing virus scanning software.

You should do a Google search for "White Paper" and "Virus Scanning" or "Virus Identification", and you will find some interesting papers on the subject.

Here is one that shows you that there is more to it than you already think; http://www.crswann.com/2-NetSecurity/VirusDetectionTechnology(McAfee).pdf[^]


Anyway, back to your original question;
A virus signature is simply a collection or sequence of bytes that are found in a file that are tell tales of the particular virus. e.g. See this page which details a standard test file which every virus scanner should detect. http://www.eicar.org/anti_virus_test_file.htm[^]

Virus companies spend years building up databases of signatures, and are actively scanning the internet and receiving files suspect of containing new virus so they can incorporate the signatures into there products.

As you will see reading the links i have attached, there is more to it than simply what you have been programming to date.

If you want my honest opinion, i would say STOP now, and find something to code which you fully understand and are more likely to make money on.

这篇关于需要描述病毒签名以及如何在项目中使用它们的帮助的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！