Visible to the public AVAMAT: AntiVirus and malware analysis tool

TitleAVAMAT: AntiVirus and malware analysis tool
Publication TypeConference Paper
Year of Publication2017
AuthorsShahegh, P., Dietz, T., Cukier, M., Algaith, A., Brozik, A., Gashi, I.
Conference Name2017 IEEE 16th International Symposium on Network Computing and Applications (NCA)
KeywordsAntiVirus products, antivirus software, antivirus-and-malware analysis tool, AV, AVAMAT, Erbium, Human Behavior, invasive software, Iron, malware analysis, malware detection capabilities, MetaDefender, Metrics, operating system platforms, operating systems (computers), OS, privacy, pubcrawl, Resiliency, security assessment, security tool, VirusTotal

We present AVAMAT: AntiVirus and Malware Analysis Tool - a tool for analysing the malware detection capabilities of AntiVirus (AV) products running on different operating system (OS) platforms. Even though similar tools are available, such as VirusTotal and MetaDefender, they have several limitations, which motivated the creation of our own tool. With AVAMAT we are able to analyse not only whether an AV detects a malware, but also at what stage of inspection does it detect it and on what OS. AVAMAT enables experimental campaigns to answer various research questions, ranging from the detection capabilities of AVs on OSs, to optimal ways in which AVs could be combined to improve malware detection capabilities.

Citation Keyshahegh_avamat:_2017