Skip to content

Releases: dmknght/rkcheck

Changelog version 0.5.0

02 Oct 09:43
@dmknght dmknght
0.5.0
d72444f
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
Changelog version 0.5.0 Pre-release
Pre-release
  • Add new logic (beta) to detect function hooking
  • Improve rules's syntax using latest version of Yara
  • Compile libraries now use static, except ClamAV's library (Debian and other distros didn't enable static build)
  • Add CI (based on Debian SID) to check compile errors)
  • Add CI to build artifacts everytime a tag is generated (Testing)
  • Small improvements in rules and code syntax
Assets 2
Loading

rkcheck_v0.4.1

18 Jan 20:17
@dmknght dmknght
0.4.1
6c51b03
Compare
Choose a tag to compare
rkcheck_v0.4.1 Latest
Latest
  • Fix wrong jump value in magic header check
  • Fix error when show infected inner files
  • Fix error that file scan skips inner file (value of file_name is NULL by ClamAV)
  • Force disable cache
Assets 2
Loading

rkcheck_v0.4.0

18 Jan 19:14
@dmknght dmknght
0.4.0
57ab987
Compare
Choose a tag to compare
rkcheck_v0.4.0
  • Improve Makefile
  • Remove all non-related code
  • Improve code structure and quality in some module
  • Improve and optimize memory scan, including some heuristic info
  • Remove or comment some old rules that can make false positives
  • --path-clamdb can use a directory of rules
  • ClamAV's signatures can use memory scan too (File type is supported)
  • Other optimizations, bugs and crashes were fixed
Assets 2
Loading