Click here to Skip to main content
14,934,046 members
Please Sign up or sign in to vote.
0.00/5 (No votes)
See more:
I have done plenty of research in the area of Heuristics but need a starting point to help me to understand how to create a rule based engine. Meta data tables are interesting but would it be possible to dump each files meta data to a log file so that the program can detect any changes to the file itself and then determine if that change is bad or not?. I know my question is quite global and deals with many aspects so all that I am asking at this point for is a starting position. Also when programming this sort of thing where would the code be best placed? in a class? in a module? as a function? as a private sub? please advise.

I have also read about dissemblers but there seems to be little advice about how to use it in correlation to heuristics. Any advice about this would be greatly appreciated as a possible starting point?


Thank you all for any info you may have!!
Posted
Updated 15-Jul-11 21:20pm
v4

1 solution

Are you still working on that AV app?

Here is an overview of heuristics from Symantec; Have a read through and you will see near the bottom a summary of components in a heuristics engine.
http://www.symantec.com/connect/articles/heuristic-techniques-av-solutions-overview[^]

Also, there are plenty hits in google if you search for "developing a heuristics engine"
   
Comments
Dale 2012 18-Jul-11 6:37am
   
Thank you very much I will look this over asap!!

take care :)
Dale 2012 18-Jul-11 6:40am
   
I have one new question needing attention if anyone stumbles across this response and would like to take on another question I would sure appreciate it

http://www.codeproject.com/Questions/227483/What-is-the-best-method-for-increasing-scan-speeds

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)




CodeProject, 20 Bay Street, 11th Floor Toronto, Ontario, Canada M5J 2N8 +1 (416) 849-8900