# cisco-talos/clamav-devel

**Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/cisco-talos-clamav-devel).**

6,887 stars · 880 forks · C · GPL-2.0

## Links

- GitHub: https://github.com/Cisco-Talos/clamav-devel
- Homepage: https://www.clamav.net/
- awesome-repositories: https://awesome-repositories.com/repository/cisco-talos-clamav-devel.md

## Description

ClamAV is an open-source antivirus engine and malware detection scanner. It identifies trojans, viruses, and other malicious software by scanning files and data streams against a database of known signatures.

The system functions as a signature-based threat detector, allowing for the implementation of threat intelligence by turning malware samples into actionable signatures. It supports the creation of custom malware signatures to identify specific or specialized security threats.

The engine provides capabilities for endpoint security monitoring and comprehensive malware detection scanning across computer systems.

## Tags

### Security & Cryptography

- [Open-Source Antivirus Engines](https://awesome-repositories.com/f/security-cryptography/antivirus-software/open-source-antivirus-engines.md) — An open-source antivirus engine that scans files and data streams for malware using a database of known signatures.
- [Detection Signature Development](https://awesome-repositories.com/f/security-cryptography/detection-signature-development.md) — Supports the creation of custom detection patterns and signatures based on malware analysis. ([source](https://github.com/cisco-talos/clamav-devel#readme))
- [Malware Scanning](https://awesome-repositories.com/f/security-cryptography/file-upload-security/malware-scanning.md) — Scans files and data streams using an antivirus engine to detect and block malicious content. ([source](https://github.com/cisco-talos/clamav-devel#readme))
- [Threat Detection](https://awesome-repositories.com/f/security-cryptography/threat-detection.md) — Provides automated systems for identifying and locating trojans, viruses, and other malicious software. ([source](https://github.com/cisco-talos/clamav-devel#readme))
- [File Content Signature Matching](https://awesome-repositories.com/f/security-cryptography/threat-detection/file-content-signature-matching.md) — Compares file contents against a comprehensive database of known malware byte sequences.
- [Signature-Based Threat Detectors](https://awesome-repositories.com/f/security-cryptography/threat-detection/signature-based-threat-detectors.md) — Implements a system for defining and utilizing custom detection patterns to identify specific security threats.
- [Malware Signature Formats](https://awesome-repositories.com/f/security-cryptography/threat-detection/signature-based-threat-detectors/malware-signature-formats.md) — Defines specialized detection patterns using a proprietary signature format to identify new threats.
- [Endpoint Malware Protection](https://awesome-repositories.com/f/security-cryptography/endpoint-malware-protection.md) — Protects local systems from infection by regularly scanning data streams and files for known threats.
- [Malware Signature Engineering](https://awesome-repositories.com/f/security-cryptography/malware-signature-engineering.md) — Turns known malware samples and behavioral patterns into actionable signatures for detection.
- [Signature Database Mapping](https://awesome-repositories.com/f/security-cryptography/safe-memory-manipulation/memory-mappings/signature-database-mapping.md) — Uses memory-mapped files to load large signature databases efficiently without excessive memory overhead.
- [Recursive Archive Unpacking](https://awesome-repositories.com/f/security-cryptography/secrets-scanning/archive-content-scanning/recursive-archive-unpacking.md) — Recursively unpacks nested archives and compressed files to scan for hidden malicious content.

### DevOps & Infrastructure

- [General Purpose Malware Scanners](https://awesome-repositories.com/f/devops-infrastructure/cloud-storage-scanning/general-purpose-malware-scanners.md) — Identifies trojans, viruses, and other malicious software across computer systems and files.

### Programming Languages & Runtimes

- [Malware Detection](https://awesome-repositories.com/f/programming-languages-runtimes/bytecode-interpreters/malware-detection.md) — Provides a specialized bytecode interpreter to execute complex detection logic for identifying polymorphic malware.

### Software Engineering & Architecture

- [Finite Automaton Search Algorithms](https://awesome-repositories.com/f/software-engineering-architecture/finite-automaton-search-algorithms.md) — Implements Aho-Corasick finite automaton search to match multiple malware signatures in a single data pass.
- [Multi-Threaded Batch Processing](https://awesome-repositories.com/f/software-engineering-architecture/multi-threaded-batch-processing.md) — Parallelizes the scanning of files and data streams across multiple CPU cores to increase throughput.

### Part of an Awesome List

- [Security Auditing](https://awesome-repositories.com/f/awesome-lists/security/security-auditing.md) — Antivirus engine for detecting malware and malicious threats.