Start of Content

What’s New In VSTK-180

Visual-scan, users can perform scanning/integration-check under GUI (Graphic User Interface) environment without typing UNIX/Linux commands. Visual-console, users can easily setup a "central management system" to monitor many remote machines at the same time at one location through the server-client approach. RTS (Real Time Scanning) module was newly added to VSTK-180. Android (mobile) .dex file-type information was added to UAD’s file-type DB, and UAD can detect the three versions of Android .dex file-type now. read more

EICAR AntiVirus Test Files

The EICAR Antivirus test file is used for determining if an Antivirus product will sufficiently detect viruses. This test file is not a real virus it is only used for testing the effectiveness of Antivirus products. For more information on this file and it's history, see the EICAR web site.

Version 1

Download the "eicar.com" test virus and a virus signature for the test virus "eicar.vdl" to your target machine and execute UAD and VFind as shown to test the sample. Please be sure to download the .com and .vdl files.

    find [test_virus_directory] | uad -s -ssw | vfind --libon=eicar -ssr --vdl=[path]/eicar.vdl > virus_report.txt
    or
    find [test_virus_directory] | uad -s -ssw | vfind --libon=eicar -ssr --vdl=[path]/eicar.vdl | mail root

Version 2 (Current Version)

The EICAR Version 2 test suite was made necessary when some viruses started to use the EICAR test string as camouflage. Many antivirus products would detect the EICAR string and not report the virus. This was never a problem with VFind which reported both the virus and the EICAR test string. The problem was corrected when the EICAR changed the test standard so that the test would only be positive if the string was exact and did not contain any additional bytes of data either before or after the test string. According to the standard, any antivirus product which detects the EICAR test string as a subset of a byte stream of data would fail the test - this test suite conforms to the standard. Please read the Version 2 EICAR like test suite below.

  • eicar.com - EICAR test virus (this is not a real virus)
  • eicar.vdl - EICAR virus signature
Linux Security Toolkit Family of computer security products

The VFind™ Anti Virus Security Toolkit Family

The VFind™ Security Toolkit Family of computer security products offers so much more than just virus scanning-with these toolkits Our VSTK family of Products supports all UNIX type operating systems including UNIX, Linux (all versions), Solaris, AIX, IRIX, HPUX and others. CyberSoft is able to support any operating system upon request. Our anti virus, VSTK family of products includes a virus scanner with a fully published, accessible pattern analysis language and a cryptographic integrity tool for baseline management. The VFind Toolkit provides tools to deal with hidden threats, self-repair tools and more. Our products are easy to integrate with any other program. Learn More

Version 2 (EICAR-like Test Suite)

This version does not conform to the EICAR test standard. It will detect the test string even as a subset of a larger byte stream. This test suite is the same as the obsolete Version 1 test suite.

Version 1

This version of the EICAR test suite has been officially made obsolete by EICAR and is included here for completeness.


Products
Support
Purchase

About

Certifications

Testpros

©Copyright 2012 CyberSoft, Inc. All rights reserved.