1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How to create Antivirus software

Discussion in 'Engineering Concepts' started by nurul, Jun 20, 2008.

  1. xpi0t0s

    xpi0t0s Mentor

    Joined:
    Aug 6, 2004
    Messages:
    3,012
    Likes Received:
    203
    Trophy Points:
    0
    Occupation:
    Senior Support Engineer
    Location:
    England
    oh plz plz plz waah plz waaaaah plz plz try reading the thread dingbat

    as for some project idea, how about some webside software that detects posts from idiots who can't be bothered to do their own research and automatically deletes them
     
  2. diego_manee_it

    diego_manee_it New Member

    Joined:
    Sep 27, 2010
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    0
    uhmmmm. What books should i read in order to start the first step in making AV?
     
  3. diego_manee_it

    diego_manee_it New Member

    Joined:
    Sep 27, 2010
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    0
    what is thread dingbat?
     
  4. diego_manee_it

    diego_manee_it New Member

    Joined:
    Sep 27, 2010
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    0
    what is a thread dingbat? is that a book?
     
  5. agnal

    agnal New Member

    Joined:
    Dec 25, 2010
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    0
    what is the steps to start learn how to make simple anti-virus or in another word what is the book i should read to develop my skills to make it in one of days.
     
  6. Delta00Zero

    Delta00Zero New Member

    Joined:
    May 19, 2011
    Messages:
    4
    Likes Received:
    0
    Trophy Points:
    0
    I know this in an old thread but I came across this in a google search... I am very interested in learning the structure and behavior of a virus and anti-virus... I am very skilled at quickly dispatching of a virus manually once I am aware of it being on my computer... I would like to create a program that will detect a program that I did not authorize it running and notify me... then I would like to give it permission to follow protocol for "disabling" or otherwise kill the virus...

    Anyone maybe know how that would be possible
     
  7. Anand Dargad

    Anand Dargad New Member

    Joined:
    Jan 10, 2012
    Messages:
    2
    Likes Received:
    1
    Trophy Points:
    0
    sir,
    I am student of engg. .I try to create anti virus for the project .please give your ideas for project it will help me for project .
     
    Delta00Zero likes this.
  8. Delta00Zero

    Delta00Zero New Member

    Joined:
    May 19, 2011
    Messages:
    4
    Likes Received:
    0
    Trophy Points:
    0
    Wow, after so long I was beginning to think the post was to never be read.

    Anyways... I won't be on this site much so for ease of contact, please email me at Dark.Empire.Ruler@gmail.com

    Thank you for your time.
     
  9. JohnAadam

    JohnAadam New Member

    Joined:
    Oct 19, 2011
    Messages:
    27
    Likes Received:
    1
    Trophy Points:
    0
    There is no thing like total security even if you have created a prototype of a antivirus you will need to update its latest virus definition and ho how will anyone get all the source code of virus or other malwares. I will help you in creating program but not sure whether it will properly work or not .
     
  10. Delta00Zero

    Delta00Zero New Member

    Joined:
    May 19, 2011
    Messages:
    4
    Likes Received:
    0
    Trophy Points:
    0
    Whatever works I guess... but yeah, I have thought about the virus definitions thing. Would it be possible to make it read from the virus list of other antivirus programs?
     
  11. JohnAadam

    JohnAadam New Member

    Joined:
    Oct 19, 2011
    Messages:
    27
    Likes Received:
    1
    Trophy Points:
    0
    No ... It will not read other virus definition list of different antivirus
     
  12. Delta00Zero

    Delta00Zero New Member

    Joined:
    May 19, 2011
    Messages:
    4
    Likes Received:
    0
    Trophy Points:
    0
    ugh... knew it wouldn't be that easy. Well... doesn't hurt to ask right?
     
  13. iconic091

    iconic091 Banned

    Joined:
    Dec 3, 2011
    Messages:
    8
    Likes Received:
    0
    Trophy Points:
    0
    First of all you need to know how’s viruses works btw im also interesting on how can i make AV software.
     
  14. TerryTET

    TerryTET New Member

    Joined:
    Apr 4, 2013
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    0
    It's very hard task - to create own antiviruses. Ten thousands of viruses daily you need to add to database, if you need good antivirus. Best way, to use some antivirus SDK, our other libraries. Just google it's. Simple search found for example this (SDK with examples and sources): antivirus.zillyaoem.com
     
  15. Malware_Destroyer111

    Malware_Destroyer111 New Member

    Joined:
    Sep 27, 2014
    Messages:
    2
    Likes Received:
    1
    Trophy Points:
    0
    Hi everyone.

    This will be a long reply however I am sure many who are interested in Antivirus development will/may appreciate it, considering I am currently developing a Anti-virus system myself.

    Firstly, you cannot just make a Antivirus. Straight up, it requires a lot of effort, skill (not just in Programming, but; Graphic design, Marketing ...), and lots of time dedicated to it.

    The Programming Languages you will be required to have at least 2 - 5+ years in to even start to attempt a project like this are: Assembly (32-bit), C, C++, and others like Python are welcome to be included.

    To make a Antivirus you don't just need to know how to code, you need to know how malware works and how to actually make malware to understand it. You need to study it - of course, not release malware but learn how to make it for educational purposes. You will also require great knowledge deep into the Windows API from kernel32.dll for example to learn how to do things like "suspend" processes (you cannot suspend a process. You can only suspend the "threads" in a process. See, you learnt something new there, didn't you?).

    I would use Assembly/C for the drivers, and possibly C for the User Interface as well if you can. I would also use the help of C++ for some things. Python can be included but it really depends on what you want to do with it.

    Secondly, you will require a database of virus/malware definitions. These will need to be updated reguarly to ensure that your customers are safe from zero-day infections. You can contact VirusTotal, owned by Google, to receive samples like other vendors like Norton, Bitdefender, Emsisoft etc for them.

    You will need to be able to analyse malware, and make a application to analyse it for you.

    You will need to make a fully functional behaviour blocker to detect zero-day threats which are not in your database. For example, if a application is attempting to add itself to startup (registry), you will need to suspend the threads in that process, alert the user and depending on what they want, remove the keys from the registry and destroy the file in the sequence: kill it from memory, delete it afterwards.

    With the behaviour blocker, you need to detect when another process is attacking another, or killing it from memory with functions like TerminateProcess. You need to use lots of API hooking, etc. Stop injections as well.

    It's a very complicated task, making a Anti-virus/Anti-Malware product and I highly suggest you just buy another antivirus product instead of trying to make your own because it is not only cheaper but easier. Unless you have the expertise/skill, the time and are dedicated and ready to make one, which you aren't because you asked this question, especially on a forum, just buy a AV and not try to make one or further develop one because it's like teaching a lama to drive, which won't happen.

    Of course there is a LOT more, like making it light on RAM and CPU usage, quarantine (and locking the files from use whilst Quarantined), a toolbox full of tools, filesystem scanner which has permissions to readonly locations as well including Recycling bin etc, low level C and drivers, system services and self-defense protection modules, Anti-rootkit/Anti-keylogger, and possibly Internet Security as well with a Firewall and Web protection...

    Thank you.
     
    shabbir likes this.
  16. Malware_Destroyer111

    Malware_Destroyer111 New Member

    Joined:
    Sep 27, 2014
    Messages:
    2
    Likes Received:
    1
    Trophy Points:
    0
    He could also try Bitdefender engine or Avira engine. They are award winning (well Bitdefender is, not sure about Avira) and well known.
     

Share This Page