# cisco-talos/clamav

**Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/cisco-talos-clamav).**

6,869 stars · 880 forks · C · GPL-2.0

## Links

- GitHub: https://github.com/Cisco-Talos/clamav
- Homepage: https://www.clamav.net/
- awesome-repositories: https://awesome-repositories.com/repository/cisco-talos-clamav.md

## Topics

`antivirus` `clamav` `gplv2` `open-source`

## Description

ClamAV - Documentation is here: https://docs.clamav.net

## Tags

### Security & Cryptography

- [Open-Source Antivirus Engines](https://awesome-repositories.com/f/security-cryptography/antivirus-software/open-source-antivirus-engines.md) — Is the open-source antivirus engine that detects trojans, viruses, and malware using signature-based scanning.
- [Signature-Based Threat Detectors](https://awesome-repositories.com/f/security-cryptography/threat-detection/signature-based-threat-detectors.md) — Identifies trojans, viruses, worms, and other threats by matching file contents against a database of known malicious signatures. ([source](https://docs.clamav.net/))
- [Containerized Antivirus Daemons](https://awesome-repositories.com/f/security-cryptography/antivirus-software/containerized-antivirus-daemons.md) — Ships an official Docker image that runs clamd and freshclam as a containerized daemon.
- [Automated Signature Database Updates](https://awesome-repositories.com/f/security-cryptography/digital-signatures/automated-signature-database-updates.md) — Downloads and updates virus signature databases automatically using scripted updates and DNS-based version queries. ([source](https://docs.clamav.net/))
- [Malware Scanning](https://awesome-repositories.com/f/security-cryptography/file-upload-security/malware-scanning.md) — Provides a cross-platform malware scanner that runs on Linux, Windows, and macOS.
- [Linux Malware Scanners](https://awesome-repositories.com/f/security-cryptography/file-upload-security/malware-scanning/linux-malware-scanners.md) — Scans files and directories on Linux systems for malware using signature-based detection.
- [Cross-Platform Malware Inspectors](https://awesome-repositories.com/f/security-cryptography/malware-analysis/cross-platform-malware-inspectors.md) — Inspects executables and archives across Windows, Linux, and macOS formats for known threats.
- [On-Access File Scanners](https://awesome-repositories.com/f/security-cryptography/on-access-file-scanners.md) — Intercepts file access events on Linux and blocks reads until a real-time malware scan completes.
- [Real-Time File Scanners](https://awesome-repositories.com/f/security-cryptography/real-time-file-scanners.md) — Monitors file system activity in real time and blocks access to infected files on Linux.
- [Recursive Archive Unpacking](https://awesome-repositories.com/f/security-cryptography/secrets-scanning/archive-content-scanning/recursive-archive-unpacking.md) — Provides recursive extraction of nested archives to inspect compressed files for malware.
- [Signature Database Updaters](https://awesome-repositories.com/f/security-cryptography/signature-database-updaters.md) — Automatically downloads and applies the latest malware signature databases on a scheduled basis. ([source](https://cdn.jsdelivr.net/gh/cisco-talos/clamav@main/README.md))
- [Command-Line Malware Scanners](https://awesome-repositories.com/f/security-cryptography/source-code-vulnerability-scanning/command-line-scanners/command-line-malware-scanners.md) — Provides a command-line tool for one-time file scans without requiring a persistent daemon process. ([source](https://docs.clamav.net/print.html))
- [Milter Protocol Filters](https://awesome-repositories.com/f/security-cryptography/email-spam-filtering/rule-based-mail-filters/milter-protocol-filters.md) — Integrates with mail transfer agents through milter protocol plugins for email malware filtering.
- [High-Speed Malware Scanners](https://awesome-repositories.com/f/security-cryptography/high-speed-malware-scanners.md) — Scans files at high speed to detect malware without slowing down system operations. ([source](https://docs.clamav.net/))
- [On-Access File Blocking](https://awesome-repositories.com/f/security-cryptography/policy-based-access-control/file-access-policies/on-access-file-blocking.md) — Intercepts file access requests on Linux and prevents reading until a scan completes, stopping threats in real time. ([source](https://docs.clamav.net/))

### Part of an Awesome List

- [Archive Malware Inspectors](https://awesome-repositories.com/f/awesome-lists/data/compression-and-archiving/archive-malware-inspectors.md) — Inspects compressed and archived file formats such as ZIP, CAB, RAR, and OLE2 by unpacking them during scans. ([source](https://cdn.jsdelivr.net/gh/cisco-talos/clamav@main/README.md))

### DevOps & Infrastructure

- [Antivirus Scanning Daemons](https://awesome-repositories.com/f/devops-infrastructure/background-daemon-managers/antivirus-scanning-daemons.md) — Operates a multi-threaded background daemon that listens on Unix or TCP sockets and scans files on demand. ([source](https://docs.clamav.net/print.html))
- [Multi-Threaded Daemon Architectures](https://awesome-repositories.com/f/devops-infrastructure/container-daemons/client-server-daemon-architectures/multi-threaded-daemon-architectures.md) — Operates a multi-threaded background daemon that handles concurrent scan requests over sockets.
- [Antivirus Deployments](https://awesome-repositories.com/f/devops-infrastructure/containerized-application-deployments/antivirus-deployments.md) — Runs the antivirus scanning engine inside Docker containers for isolated and portable malware detection.
- [Malware Scanners](https://awesome-repositories.com/f/devops-infrastructure/cloud-storage-scanning/malware-scanners.md) — Scans objects in cloud storage buckets like Amazon S3 for viruses using automated pipelines.
- [Scan Target Directory Mounts](https://awesome-repositories.com/f/devops-infrastructure/volume-mounts/host-guest-mounts/container-directory-mounting/scan-target-directory-mounts.md) — Mounts host directories into the container to scan files for malware using clamscan or clamdscan. ([source](https://docs.clamav.net/manual/Installing/Docker.html))

### Networking & Communication

- [Antivirus Engine Deployments](https://awesome-repositories.com/f/networking-communication/ipsec-vpn-support/containerized-deployments/antivirus-engine-deployments.md) — Runs the antivirus scanning engine inside an isolated Docker container for portable malware detection. ([source](https://docs.clamav.net/manual/Installing/Docker.html))
- [Mail Server Antivirus Filters](https://awesome-repositories.com/f/networking-communication/mail-servers/mail-server-antivirus-filters.md) — Integrates with mail transfer agents via milter plugins to filter email attachments for malware.
- [Mail Server Antivirus Integrations](https://awesome-repositories.com/f/networking-communication/mail-servers/mail-server-antivirus-integrations.md) — Filters email messages for malware by connecting with mail transfer agents like Sendmail, Postfix, and Exim. ([source](https://docs.clamav.net/print.html))
- [Malware Filters](https://awesome-repositories.com/f/networking-communication/mail-servers/malware-filters.md) — Integrates with mail transfer agents to scan email attachments and messages for viruses before delivery.

### Operating Systems & Systems Programming

- [Executable Malware Parsers](https://awesome-repositories.com/f/operating-systems-systems-programming/elf-binary-parsing/executable-malware-parsers.md) — Parses Windows PE, ELF, and Mach-O executables, including those packed with UPX, ASPack, and FSG. ([source](https://docs.clamav.net/))
- [Archive Extractions](https://awesome-repositories.com/f/operating-systems-systems-programming/file-archiving/archive-extractions.md) — Extracts and inspects content from compressed and archived file formats including Zip, RAR, 7Zip, and many others. ([source](https://docs.clamav.net/))

### Programming Languages & Runtimes

- [Malware Detection](https://awesome-repositories.com/f/programming-languages-runtimes/bytecode-interpreters/malware-detection.md) — Ships a bytecode interpreter that executes custom signatures for heuristic malware detection.

### System Administration & Monitoring

- [On-Access File Blockers](https://awesome-repositories.com/f/system-administration-monitoring/file-system-monitors/on-access-file-blockers.md) — Monitors file system activity in real time on Linux and blocks access to infected files until scanning completes. ([source](https://docs.clamav.net/print.html))
- [On-Access File Scanners](https://awesome-repositories.com/f/system-administration-monitoring/file-system-scanners/on-access-file-scanners.md) — Ships an on-access scanner that intercepts file reads on Linux and blocks access until scanning completes.
- [Scan Depth and Size Limiters](https://awesome-repositories.com/f/system-administration-monitoring/resource-usage-limiters/resource-usage-restrictions/scan-depth-and-size-limiters.md) — Restricts the size, depth, and number of files scanned per request to prevent denial-of-service attacks. ([source](https://cdn.jsdelivr.net/gh/cisco-talos/clamav@main/README.md))
- [Unwanted Feature Blockers](https://awesome-repositories.com/f/system-administration-monitoring/windows-software-management/windows-feature-managers/unwanted-feature-blockers.md) — Flags adware, toolbars, and other potentially unwanted applications during scans. ([source](https://cdn.jsdelivr.net/gh/cisco-talos/clamav@main/README.md))

### Development Tools & Productivity

- [Antivirus Client Libraries](https://awesome-repositories.com/f/development-tools-productivity/language-bindings/antivirus-client-libraries.md) — Offers client libraries for Rust, Python, Ruby, Perl, PHP, Java, and Go to interact with the scanning daemon. ([source](https://docs.clamav.net/print.html))
