Verdict-as-a-Service (VaaS) is a service that provides a platform for scanning files for malware and other threats. It allows easy integration in your application. With a few lines of code, you can start scanning files for malware.
ATTENTION: All SDKs are currently prototypes and under heavy construction!
Easily integrate malware detection into any kind of application, service or platform.
Create a command line scanner to find malware with a few lines of code: Example
At the moment SDKs for Rust, Java, Typescript, Microsoft .NET, Python and PHP are available.
| Functionality | Rust | Java | PHP | TypeScript | .NET | Python |
|---|---|---|---|---|---|---|
| Check SHA256 | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ |
| Check SHA256 list | ✅ | ✅ | ❌ | ✅ | ✅ | ❌ |
| Check file | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ |
| Check file list | ✅ | ✅ | ❌ | ✅ | ✅ | ❌ |
| Custom Guids for tracability on user side | ❌ | ❌ | ✅ | ❌ | ❌ | ❌ |
Scan files for malware and other threats using the VaaS API in Rust.
Currently all test under the /tests folder are integration tests against the real API. As they need credentials, (user, token) these need to be provided as environment variables.
Either export a VAAS_USER and VAAS_TOKEN environment variable or use the .env file. To use an .env file, just create it in the root directory (e.g. where the Cargo.toml resides) and add the variables with their values, e.g. KEY=VALUE.
The .env file will not be checked in into git and can be used to store the sensitive environment variables on your local machine.
Scan files for malware and other threats using the VaaS API in Java.
Get a verdict for a SHA256 of a file.
public class MainClass {
public static void main(String[] args) {
// Connect to the VaaS endpoint
var config = new WsConfig(
clientId,
clientSecret,
new URI(tokenUrl),
new URI(vaasUrl));
var vaas = new Vaas(config);
vaas.connect();
// Get a verdict for a SHA256
var sha256 = new Sha256(“000005c43196142f01d615a67b7da8a53cb0172f8e9317a2ec9a0a39a1da6fe8”);
var cts = new CancellationTokenSource(Duration.ofSeconds(10));
var verdict = vaas.forSha256(sha256, cts);
// Disconnect from the VaaS endpoint
vaas.disconnect();
// Print verdict result (CLEAN, UNKNOWN, MALICIOUS, PUP)
System.out.println(“Verdict: ” + verdict.getVerdict().name());
}
}
Get a verdict for a file.
public class MainClass {
public static void main(String[] args) {
// Connect to the VaaS endpoint
var config = new WsConfig(token);
var vaas = new Vaas(config);
vaas.connect();
// Get a verdict for a SHA256
var file = Path.of(“myfile”);
var cts = new CancellationTokenSource(Duration.ofSeconds(10));
var verdict = vaas.forFile(file, cts);
// Disconnect from the VaaS endpoint
vaas.disconnect();
// Print verdict result (CLEAN, UNKNOWN, MALICIOUS, PUP)
System.out.println(“Verdict: ” + verdict.getVerdict().name());
}
}
Currently, all test under the /src/test folder are integration tests against the real API. As they need credentials, (token). These values need to be provided as environment variables.
Either export a VAAS_TOKEN environment variable or use the .env file. To use an .env file, just create it in the root directory (e.g. where the Readme.md resides) and add the variables with their values, e.g. KEY=VALUE.
The .env file will not be checked in into git and can be used to store the sensitive environment variables on your local machine.
PHP SDK for Verdict-as-a-Service API. Scan files for malware and other threats using the VaaS API in PHP.
For usage examples see the tests folder or the WordPress example in the examples folder.
An SDK to easily utilize G DATA VaaS.
Verdict-as-a-Service (VaaS) is a service that provides a platform for scanning files for malware and other threats. It allows easy integration in your application. With a few lines of code, you can start scanning files for malware.
It gives you as a developer a functions to talk to G DATA VaaS. It wraps away the complexity of the API into 4 basic functions.
If you calculate the sha256 for a file, you can request that sha256 against G DATA VaaS. It’s the fastest way to get a verdict from our service.
You can also request multiple sha256 with a single function call.
You can also ask for a file itself. You will still get the benefit of a fast verdict via Sha256 because the SDK will do that for you first. But additionally, if we don’t know the file, the file will get uploaded and (automatically) analyzed by us.
You can also request multiple files with a single function call.
npm install gdata-vaas
import Vaas from “gdata-vaas”;
Required extensions:
Extend settings.json with:
{
“editor.formatOnSave”: true,
“[javascript]”: {
“editor.defaultFormatter”: “esbenp.prettier-vscode”
},
“[typescript]”: {
“editor.defaultFormatter”: “esbenp.prettier-vscode”
}
}
shadow-rs is a Windows kernel rootkit written in Rust, demonstrating advanced techniques for kernel manipulation…
Extract and execute a PE embedded within a PNG file using an LNK file. The…
Embark on the journey of becoming a certified Red Team professional with our definitive guide.…
This repository contains proof of concept exploits for CVE-2024-5836 and CVE-2024-6778, which are vulnerabilities within…
This took me like 4 days (+2 days for an update), but I got it…
MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection. Its foundation is…