OpenSBI

From SpybotWiki
Revision as of 15:56, 30 May 2008 by CCRDude (talk | contribs) (added RegAlyzer and RunAlyzer)
Jump to: navigation, search

OpenSBI is our initiative to make Spybot - Search & Destroy a more open platform for malware fighting. There are five major components that define OpenSBI:

  1. Spybot - Search & Destroy 1.6 - this release fully supports OpenSBI files as an additional source of detections.
  2. FileAlyzer 1.6 OpenSBI Edition - our file analysis tool now offers dozens of functions to create detection patterns for files. RegAlyzer and RunAlyzer also have 1.6 OpenSBI Editions with support for creating OpenSBI code.
  3. OpenSBI Edit Lite - a full text editor for OpenSBI files, including syntax highlighting, import of InCtrl5 and HijackThis logs, and context sensitive help.
  4. This Wiki - a documentation wiki with hundreds of pages explaining the usage of the OpenSBI file format.
  5. The Community - integrated into our support forums is a system that allows you to share your OpenSBI files with other Spybot-S&D users, and comment theirs.

Some advantages we created this for are

  1. Diversity - everyone can create detection templates for any software, without depending on a central authority to acknowledge its threat.
  2. Neutrality - we cannot be bought to remove detections from our database, but if you do not believe us, you can simply publish your own rules against some malware.
  3. Continuity - OpenSBI ensures that you'll get updates as long as someone is interested in updating the database (which does not mean we intend to do less work in adding new detections).