GitList

November 15, 2018
	View 0ef888f bcomp - reverting change that forced scanning on raw files only Mickey Sola authored on 2018/11/15 06:36:16

September 29, 2018
	View d7d58a5 bcomp - changing map to use original scan buffer to account for normalization offset discrepancies--patch based on suggested solution by Micah Mickey Sola authored on 2018/09/29 06:35:12

September 28, 2018
	View 4617e70 bcomp - adding ac_chklsig verification to fix reference subsig match checking; fixing double result print when using all match; fix to ensure extracted binary bytes retain their signedness Mickey Sola authored on 2018/09/28 04:16:49

September 25, 2018
	View dfa9289 bcomp - general fixups and cleanup for byte compare code Mickey Sola authored on 2018/09/25 01:24:07

September 22, 2018
	View d2f48a2 bcomp - updating SCAN_ALL to comply with new SCAN_ALLMATCHES check Mickey Sola authored on 2018/09/22 06:05:56
	View 18ff502 refactoring byte compare functionality as a subsig; adding loader and matchers for bytecompare subsig Mickey Sola authored on 2018/09/22 05:49:38

September 15, 2018
	View 64ecd10 Fix support for authenticode signatures from external .cat files This commit adds back in support for whitelisting files based on signatures from .cat files loaded in via a '-d' flag to clamscan. This also makes it so that a .crb blacklist rule match can't be overruled by a signature in a .cat file Andrew authored on 2018/09/15 03:39:47

September 12, 2018
	View 4ef79cf Fix a memory leak that occurs when a PE is whitelisted due to a valid signature Andrew authored on 2018/09/12 03:17:33

July 31, 2018
	View d39cb65 Updating libclamunrar from legacy C implementation to modern unrar 5.6.5. API changes and supporting changes included to pass the filepath of the scanned file into libclamav through the cli_ctx structure, required by the unrar library to open archives. The filename argument may be optional for the scandesc scanning variant, but libclamav will make a best effort to identify the filename from the file descriptor if it was not provided. In addition, included the ability to prefix temp file and directory names with file basenames. Micah Snyder authored on 2018/07/31 09:19:28

July 21, 2018
	View d7979d4 Restructured scan options flags from a single bitflag field to a structure containing multiple bitflag fields. This also required adding a new function to the bytecode API to get scan options a la carte, and modifying the existing function to hand back scan options in the old/deprecated uint32_t bitflag format. Re-generated bytecode iface header files. Micah Snyder authored on 2018/07/21 11:28:48

September 22, 2017
	View d0cba11 adding back changes to eliminate warnings from mspack, matcher, others, and readdb. Micah Snyder authored on 2017/09/22 02:10:01

September 21, 2017
	View 169af0f Revert "eliminating warnings. mostly correcting variable types. also correcting struct initialization in a couple instances (var = {0} does not zero the memory on all platforms). Also some minor formatting corrections in areas I was already working. eliminated some unused variables." Micah Snyder authored on 2017/09/21 01:37:07

August 16, 2017
	View 84a7f40 eliminating warnings. mostly correcting variable types. also correcting struct initialization in a couple instances (var = {0} does not zero the memory on all platforms). Also some minor formatting corrections in areas I was already working. eliminated some unused variables. Micah Snyder authored on 2017/08/16 03:00:07

May 24, 2017
	View 167c007 fix 0.99.3 false negative of virus Pdf.Exploit.CVE_2016_1046-1. Steven Morgan authored on 2017/05/24 04:56:41

April 19, 2017
	View cbf5017 bb11805 fix multiple results. Refactor false positive and heuristic precedence logic. Steven Morgan authored on 2017/04/19 01:03:36