0
JohnAadam's Avatar, Join Date: Oct 2011
Go4Expert Member
No ... It will not read other virus definition list of different antivirus
0
Delta00Zero's Avatar, Join Date: May 2011
Newbie Member
ugh... knew it wouldn't be that easy. Well... doesn't hurt to ask right?
0
iconic091's Avatar
Banned
First of all you need to know how’s viruses works btw im also interesting on how can i make AV software.
0
TerryTET's Avatar, Join Date: Apr 2013
Newbie Member
It's very hard task - to create own antiviruses. Ten thousands of viruses daily you need to add to database, if you need good antivirus. Best way, to use some antivirus SDK, our other libraries. Just google it's. Simple search found for example this (SDK with examples and sources): antivirus.zillyaoem.com
0
Malware_Destroyer111's Avatar, Join Date: Sep 2014
Newbie Member
Hi everyone.

This will be a long reply however I am sure many who are interested in Antivirus development will/may appreciate it, considering I am currently developing a Anti-virus system myself.

Firstly, you cannot just make a Antivirus. Straight up, it requires a lot of effort, skill (not just in Programming, but; Graphic design, Marketing ...), and lots of time dedicated to it.

The Programming Languages you will be required to have at least 2 - 5+ years in to even start to attempt a project like this are: Assembly (32-bit), C, C++, and others like Python are welcome to be included.

To make a Antivirus you don't just need to know how to code, you need to know how malware works and how to actually make malware to understand it. You need to study it - of course, not release malware but learn how to make it for educational purposes. You will also require great knowledge deep into the Windows API from kernel32.dll for example to learn how to do things like "suspend" processes (you cannot suspend a process. You can only suspend the "threads" in a process. See, you learnt something new there, didn't you?).

I would use Assembly/C for the drivers, and possibly C for the User Interface as well if you can. I would also use the help of C++ for some things. Python can be included but it really depends on what you want to do with it.

Secondly, you will require a database of virus/malware definitions. These will need to be updated reguarly to ensure that your customers are safe from zero-day infections. You can contact VirusTotal, owned by Google, to receive samples like other vendors like Norton, Bitdefender, Emsisoft etc for them.

You will need to be able to analyse malware, and make a application to analyse it for you.

You will need to make a fully functional behaviour blocker to detect zero-day threats which are not in your database. For example, if a application is attempting to add itself to startup (registry), you will need to suspend the threads in that process, alert the user and depending on what they want, remove the keys from the registry and destroy the file in the sequence: kill it from memory, delete it afterwards.

With the behaviour blocker, you need to detect when another process is attacking another, or killing it from memory with functions like TerminateProcess. You need to use lots of API hooking, etc. Stop injections as well.

It's a very complicated task, making a Anti-virus/Anti-Malware product and I highly suggest you just buy another antivirus product instead of trying to make your own because it is not only cheaper but easier. Unless you have the expertise/skill, the time and are dedicated and ready to make one, which you aren't because you asked this question, especially on a forum, just buy a AV and not try to make one or further develop one because it's like teaching a lama to drive, which won't happen.

Of course there is a LOT more, like making it light on RAM and CPU usage, quarantine (and locking the files from use whilst Quarantined), a toolbox full of tools, filesystem scanner which has permissions to readonly locations as well including Recycling bin etc, low level C and drivers, system services and self-defense protection modules, Anti-rootkit/Anti-keylogger, and possibly Internet Security as well with a Firewall and Web protection...

Thank you.
shabbir like this
0
Malware_Destroyer111's Avatar, Join Date: Sep 2014
Newbie Member
He could also try Bitdefender engine or Avira engine. They are award winning (well Bitdefender is, not sure about Avira) and well known.