Skip to content

Howto: Advanced Malware Signatures

Jump to bottom
Jeffrey Boehm edited this page Sep 5, 2019 · 1 revision

The clamav-unofficial-sigs script provides a simple way to download, test, and update third-party signature databases provided by Sanesecurity, FOXHOLE, OITC, Scamnailer, BOFHLAND, CRDF, Porcupine, Securiteinfo, MalwarePatrol, Yara-Rules Project, etc. The script will also generate and install cron, logrotate, and man files.

  1. Uncomment the virus_unof_sig_updater definition in docker-compose.yml: 
     virus_unof_sig_updater:
   build: ./virus/contrib/unofficial-sigs
   env_file: .env
   volumes_from:
     - virus
  2. Run docker-compose build virus_unof_sig_updater to build the image.
  3. Run docker-compose up virus_unof_sig_updater regulary (e.g. by adding a cronjob).

More information:

https://github.com/extremeshok/clamav-unofficial-sigs

Clone this wiki locally