#SummitNow Fighting viruses with Alfviral 2013 Fernando González @fegorama.

Slides:



Advertisements
Similar presentations
This course is designed for system managers/administrators to better understand the SAAZ Desktop and Server Management components Students will learn.
Advertisements

Making the System Operational
© 2003, Cisco Systems, Inc. All rights reserved..
Business Solutions Network Security Solutions Gateway Security
SOFTWARE PRESENTATION ODMS (OPEN SOURCE DOCUMENT MANAGEMENT SYSTEM)
AppManager 7: Deep Technical Dive Tim Sedlack & Michi Schniebel Sr. Product Managers.
Copyright© Trusted Computing Group - Other names and brands are properties of their respective owners. Slide #1 Tightening the Network: Network.
1 Trend Micro InterScan Web Security Suite ™ 2.5 戴 燊 Samson Tai 趨勢科技 台灣區技術行銷部 技術顧問.
Windows Security Tech Talk 9/25/07. What is a virus?  A computer program designed to self replicate without permission from the end user  The program.
Students:Gilad Goldman Lior Kamran Supervisor:Mony Orbach Mid-Semester Presentation Spring 2005 Network Sniffer.
Trend Micro Round Table May 19, Agenda Introduction – why switch? Timeline for implementation Related policies Trend Micro product descriptions.
Introduction to eValid Presentation Outline What is eValid? About eValid, Inc. eValid Features System Architecture eValid Functional Design Script Log.
Customized solutions. Keep It Secure Contents  Protection objectives  Endpoint and server software  Protection.
Computer Viruses By Patsy Speer What is a Virus? Malicious programs that cause damage to your computer, files and information They slow down the internet.
Simple Web SQLite Manager/Form/Report
Towards Extending the Antivirus Capability to Scan Network Traffic Mohammed I. Al-Saleh Jordan University of Science and Technology.
Talend 5.4 Architecture Adam Pemble Talend Professional Services.
First Indico Workshop Conversion Server Thomas Baron May 2013 CERN.
Zach Moshe Rotem Naar.  File upload vulnerabilities overview  FUV – detailed overview  Live demonstration  In the future…
Penetration Testing Security Analysis and Advanced Tools: Snort.
UPC/SHMEM PAT High-level Design v.1.1 Hung-Hsun Su UPC Group, HCS lab 6/21/2005.
ASP.NET 2.0 Chapter 5 Advanced Web Controls. ASP.NET 2.0, Third Edition2 Objectives.
Conditions and Terms of Use
Toward the Next Generation of Ingres Administration Tools UKIUA 2010 June 8, 2010.
Windows Vista Inside Out Chapter 22 - Monitoring System Activities with Event Viewer Last modified am.
Anti-Virus Testing Project Vincent Martinez Christopher Creighton 7/28/09.
What’s New in WatchGuard XCS v9.1 Update 1. WatchGuard XCS v9.1 Update 1  Enhancements that improve ease of use New Dashboard items  Mail Summary >
Sid Stamm, Zulfikar Ramzan and Markus Jokobsson Erkang Xu.
By: Zach Beilstein. What is a computer virus? A computer virus is a software program that is designed to destroy files and/or mess up the operations of.
Page 1 Printing & Terminal Services Lecture 8 Hassan Shuja 11/16/2004.
Alfresco Daeja Integration Yong Qu Chief Solutions Architect
CharMeck.org Contributer Training SharePoint 2013 Orientation and Basic Training.
IT Computer Security JEOPARDY RouterModesWANEncapsulationWANServicesRouterBasicsRouterCommands RouterModesWANEncapsulationWANServicesRouterBasicsRouterCommands.
August 2003 At A Glance The IRC is a platform independent, extensible, and adaptive framework that provides robust, interactive, and distributed control.
Plug-in Architectures Presented by Truc Nguyen. What’s a plug-in? “a type of program that tightly integrates with a larger application to add a special.
Module 12: Configuring and Managing Storage Technologies
A Technical Overview Bill Branan DuraCloud Technical Lead.
WebDat: A Web-based Test Data Management System J.M.Nogiec January 2007 Overview.
Document Object Model Nasrullah. DOM When a page is loaded,browser creates a Document Object Model of the Page.
Sem 2v2 Chapter 5 Router Startup and Setup. A router initializes by loading the bootstrap, the operating system, and a configuration file. If the router.
Microsoft ® Official Course Module 6 Managing Software Distribution and Deployment by Using Packages and Programs.
Interstage BPM v11.2 1Copyright © 2010 FUJITSU LIMITED INTERSTAGE BPM ARCHITECTURE BPMS.
LonWorks Introduction Hwayoung Chae.
Slide 1 © 2016, Lera Technologies. All Rights Reserved. SAP BO vs SPLUNK vs OBIEE By Lera Technologies.
1 PSI/PhUSE Single Day Event – SAS Applications – June 11, 2009 SAS Drug Development from the Inside Magnus Mengelbier Director.
#SummitNow Consuming OAuth Services in Alfresco Share Alfresco Summit 2013 Will Abson
Developing Great Dashlets Will Abson About Me Project Lead, Share Extras Alfresco Developer and previously Solutions Engineer DevCon 2011 –
#SummitNow Yes, I'm able to index audio files within Alfresco 2013 Fernando González @fegorama.
Developing Great Dashlets Will Abson About Me Project Lead, Share Extras Alfresco Developer and previously Solutions Engineer DevCon 2011 –
Slide 1 © 2016, Lera Technologies. All Rights Reserved. Oracle Data Integrator By Lera Technologies.
Information Screen Different options to realize. Idea one – You want this if: It should be easy to provide information ◦ Even for non-technical advanced.
BY: SALMAN 1.
Introduction to.
Integrating ArcSight with Enterprise Ticketing Systems
Integrating ArcSight with Enterprise Ticketing Systems
Actions and Behaviours
BY: SALMAN.
Pilot Watcher Product Overview V5.3
CCNA 2 v3 JEOPARDY Module 2 CCNA2 v3 Module 2 K. Martin.
Getting Started with Alfresco Development
Yes, I'm able to index audio files within Alfresco
Router Startup and Setup
Protecting your mobile devices away from virus by a cloud-based approach Wei Wu.
Maintaining software solutions
Advanced Integration and Deployment Techniques
Moodle Mobile SCORM 1.2 player Daniel #mootus16.
EPIC INFOTECH CONSULTING GROUP
Router Startup and Setup
When to use Context Source in workflow
DIBBs Brown Dog BDFiddle
Presentation transcript:

#SummitNow Fighting viruses with Alfviral 2013 Fernando González @fegorama

#SummitNow Virus today... inside of: Word and Writer documents PowerPoint and Impress documents PDF (Portable Document Format) …more Why? @fegorama

#SummitNow Alfviral is a module installable in Alfresco (Repository and Share) that uses an antivirus software (currently ClamAV and VirusTotal.com) to scan both new uploaded documents and those already present in the repository. What is it? @fegorama

#SummitNow How it works Three different modes: Running virus scan program with defined parameters Sending document data flow to an antivirus port Using JSON/HTTP protocol to send files to @fegorama

#SummitNow Features Detection through 3 modes Use of "policies" to scan uploaded and/or read content Use of "scheduler" to scan spaces programmatically Use of action "Scan" in user interfaces (Alfresco and Share) File exceptions Assignment of "aspects" to classify infections @fegorama

#SummitNow Architecture Image title Modes Command Instream Virustotal

#SummitNow Action Share to Repository Java Class VirusScan Repository action (Javascript) Scanfile Share ui-action (Web Script) Scanfile-action

#SummitNow Configuration Use of alfviral.properties file for configuration Modes Events Schedules Exceptions # Command to exec, i.e. clamscan, alfviral.sh, etc. alfviral.command=C\:\\Users\\fegor\\Documents\\alfviral.bat # Config for ClamAV in stream data alfviral.timeout=30000 alfviral.host= alfviral.port=3310 #Config for VIRUSTOTAL vt.key=246df658bca5e c01b2eb3a00b0cb506bda7 74b vt.url= # Modes: COMMAND, INSTREAM, VIRUSTOTAL alfviral.mode=VIRUSTOTAL # Events alfviral.on_update=TRUE alfviral.on_read=FALSE # Scheduled action alfviral.scheduled.pathQuery=/app:company_home/st:sites alfviral.scheduled.cronExpression=* * 3 * * ? 2099 # List of file exceptions alfviral.file.exceptions=text/html|text/xml|application/pdf|ima ge/jpeg|text/plain

#SummitNow Aspects for detection control Properties personalized based on type of infection, for example: Date of detection Code of response ID Scan SHA256 Positives Etc.

#SummitNow More ways to scan Automation Upload/Create and Load documents Actions/Rules Scanning Planification Scheduled Actions Interactive Scanning Actions Run UI Actions @fegorama

#SummitNow To Do… List of Mime-Types inclusions Dashlets for monitorization Reports of activity Refactoring, refactoring and refactoring…

#SummitNow Advanced To Do… Connectors and interfaces for scanning and virus detection for: Symantec Trend Micro McAfee Avast! …and more!

#SummitNow Where is the project? @fegorama

#SummitNow

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.