-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathindex.html
60 lines (59 loc) · 3.62 KB
/
index.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
<!DOCTYPE html>
<html lang="en">
<head>
<title>MalwareDB</title>
<meta name="keywords" content="malware, malware research, malware storage, computer forensics" />
<link rel="icon" type="image/x-icon" href="favicon.ico" />
<meta name="twitter:site" content="@rjzak" />
<meta name="twitter:title" content="MalwareDB" />
<meta property="og:title" content="MalwareDB" />
<meta name="twitter:description" content="The Malware Database (MalwareDB) is a project which maintains the bookkeeping of malicious and benign files to aid malware researchers, cybersecurity analysts, forensic investigators, and anyone else who finds themself with a lot of malware or unknown on their hands." />
</head>
<body>
<a href="https://github.com/malwaredb/malwaredb-rs" target="_blank"><img decoding="async" width="149" height="149" src="https://github.blog/wp-content/uploads/2008/12/forkme_right_darkblue_121621.png?resize=149%2C149" class="attachment-full size-full" alt="Fork me on GitHub" loading="lazy" data-recalc-dims="1" align="right"></a>
The Malware Database (MalwareDB) is a project which maintains the bookkeeping of malicious and benign files to aid malware researchers, cybersecurity analysts, forensic investigators, and anyone else who finds themself with a lot of malware or unknown on their hands. The main objectives are:
<ul>
<li>Store the samples in a centralized manner for members of the team to retrieve.</li>
<li>Use similarity hashes to find similarities between samples, which <i>may</i> be previously unknown relationships.</li>
<li>Categorize and organize the data by customizable hierarchical labels, to make it easy to develop your own queryable taxonomy for your dataset.</li>
<li>To be cross-platform and scalable.</li>
<li>Development of some of the core functionality in such a way that they're usable in other projects.</li>
<li>Written in Rust for memory safety and speed, with unit tests & dependency management.</li>
</ul>
The code is available on <a href="https://github.com/malwaredb/malwaredb-rs">Github</a>. There's also an experimental <a href="https://github.com/malwaredb/docker">Dockerfile</a>.
<hr />
<table>
<tr>
<th>What works today:</th>
<th>What is planned or in-progress:</th>
<th>Non-features:</th>
</tr>
<tr>
<td>
<ul>
<li>Submit & retrieve samples.</li>
<li>Searching based on similarity hashes.</li>
<li>Basic administration tools on the command line, and a GUI for simple admin editing.</li>
<li>Developed and tested on Linux, macOS, FreeBSD; x86_64, aarch64, powerpc64le. CI ensures the client & server build on Windows arm64 & x86_64.</li>
</ul>
</td>
<td>
<ul>
<li>Planned: Fully featured admin GUI tool.</li>
<li>Planned: Web interface.</li>
<li>Planned: Support for <a href="https://confidentialcomputing.io/" title="The Confidential Computing Consortium" target="_blank" rel="external">Confidential Computing</a> by running in Trusted Execution Environments, starting with <a href="https://enarx.dev/" title="Enarx runs WebAssembly applications in Trusted Execution Eenvironments" target="_blank" rel="external">Enarx</a>.</li>
</ul>
</td>
<td>
<ul>
<li>MalwareDB is not and will not be a hosted web service. It is an on-premises program, and it's BYOM (bring your own malware).</li>
<li>MalwareDB will not make automated determinations as to which files are malicious or which are safe.</li>
</ul>
</td>
</tr>
</table>
<small>Last updated: 17 March 2024</small><br/>
<small><address>info (AT) malwaredb (DOT) net</address></small>
</body>
</html>
<!-- Made with vim -->