Results 1 to 7 of 7

Thread: behavorial profiles

Hybrid View

Previous Post Previous Post   Next Post Next Post
  1. #1
    Junior Member
    Join Date
    Dec 2007
    Posts
    18

    Default behavorial profiles

    i was just wondering if its possibel to write behavorial profiles in open bsi like copy File to %system32% or monitor the keyboard and store logs on %C:%

  2. #2
    Member of Team Spybot PepiMK's Avatar
    Join Date
    Oct 2005
    Location
    Planet Earth
    Posts
    3,601

    Default

    Translated question: can I write a keylogger using OpenSBI?

    Answer: no, you can't, it's technically impossible and its Terms of Use prohibit it to be used for writing malware as well..
    Just remember, love is life, and hate is living death.
    Treat your life for what it's worth, and live for every breath
    (Black Sabbath: A National Acrobat)

  3. #3
    Junior Member
    Join Date
    Dec 2007
    Posts
    18

    Default you got me all wrong

    what i was asking was if you could use open bsi to make spybot react to a program conducting the action?

  4. #4
    Junior Member
    Join Date
    Dec 2007
    Posts
    18

    Default you got me all wrong

    what i was asking was if you could use open bsi to make spybot react a program that would conduct a keylogger action?

  5. #5
    Junior Member
    Join Date
    Jan 2012
    Posts
    1

    Default

    When spybot would actually make a software that will allow keylogger would be possible to open bsi

  6. #6
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,955

    Default

    Hello bradfordstew410,
    Quote Originally Posted by bradfordstew410 View Post
    When spybot would actually make a software that will allow keylogger would be possible to open bsi
    Could you rephrase the question please.
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

  7. #7
    Member of Team Spybot PepiMK's Avatar
    Join Date
    Oct 2005
    Location
    Planet Earth
    Posts
    3,601

    Default

    I think this is about detecting such behaviour?

    Keyloggers usually use some very specific API calls that makes it easy to detect them, and that route, OpenSBI can easily detect them as a file.

    OpenSBI can currently only react to files (and other stuff on disk or accessible by various system APIs), meaning to the source and outcomes of behaviour. Which is usually faster and less intrusive on the whole system.

    Monitoring the behaviour itself would be something very live protection related. Spybot 2.0 and 2.1 can /will be able to monitor more in the regard.

    Our current RootAlyzer reacts to behaviours as well (e.g. hiding files, a standard rootkit action), but is not user-extensible right now.
    Just remember, love is life, and hate is living death.
    Treat your life for what it's worth, and live for every breath
    (Black Sabbath: A National Acrobat)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •