Entries by msorin

Microsoft Virus Initiative membership

If you’re serious in selling an AV product on Windows, you need certain APIs which are related to Windows Security Center / Action Center. You can get this API only if you are a member in the Microsoft Virus Initiative (MVI). The Microsoft Virus Initiative (MVI) helps organizations to get their products working and integrated with […]

New consulting product: Help to build your endpoint antivirus

An endpoint security product (aka: Antivirus product) has the following components: User interface The entire interception and detection technology to intercept file, memory, registry accesses: Real time scanner (drivers, service) logic On demand scanner  logic Intercept Registry accesses (optional) Identify running processes and scan them in memory together with the file on disk (optional) Scanning […]

Challenges for young anti-malware products today (presentation Virus Bulletin 2019)

https://www.virusbulletin.com/conference/vb2019/abstracts/challenges-young-anti-malware-products-today Sorin Mustaca (Sorin Mustaca IT Security Consulting) Download the slides: https://www.virusbulletin.com/uploads/pdf/conference_slides/2019/VB2019-Mustaca.pdf There are two categories of anti-malware vendors: Established anti-malware vendors, who are preoccupied with getting the best scores in detection tests and capturing more market share. Emerging anti-malware vendors, who are trying to understand what they need to do in order to enter the […]