# Echo-X1-MalwareDetector

**Repository Path**: lin-jingqin/echo-x1-malware-detector

## Basic Information

- **Project Name**: Echo-X1-MalwareDetector
- **Description**: Echo-X1-MalwareDetector：专注于恶意软件检测的开源项目，采用多种主流算法，提供基本恶意软件检测引擎框架
- **Primary Language**: C
- **License**: GPL-2.0
- **Default Branch**: master
- **Homepage**: None
- **GVP Project**: No

## Statistics

- **Stars**: 1
- **Forks**: 0
- **Created**: 2025-04-15
- **Last Updated**: 2025-05-15

## Categories & Tags

**Categories**: Uncategorized

**Tags**: 安全, 网络安全, Secure, 恶意代码检测, MalwareDetect

## README

#  **Echo-X1-MalwareDetector** 

#### 介绍 Introduce
Echo-X1-MalwareDetector 是一个专注于恶意软件检测的开源项目，提供轻量级、可扩展的检测引擎框架。

Echo-X1-MalwareDetector is an open-source project dedicated to malware detection, providing a lightweight and scalable detection engine framework.

![输入图片说明](https://foruda.gitee.com/images/1744763700683478900/c3e09bff_14802982.png)

![输入图片说明](https://foruda.gitee.com/images/1744763719519103802/80b3c90b_14802982.png)

![输入图片说明](https://foruda.gitee.com/images/1744763731805621682/ae6eb1d8_14802982.png)

 **核心功能：** 
- 文本多维度检测 ：基于十六进制特征码匹配、SHA-256哈希比对、文件熵值分析、API行为评分、数字签名验证等技术。
- 文本模块化设计 ：预留扩展接口，支持后续开发优化
- 文本轻量级存储 ：使用 SQLite 作为特征库，便于快速查询与更新。
- Multi dimensional text detection: based on hexadecimal feature code matching, SHA-256 hash comparison, file entropy analysis, API behavior scoring, digital signature verification and other technologies.
- Text modular design: reserve extension interfaces to support subsequent development optimization
- Lightweight text storage: using SQLite as a feature library for quick querying and updating.

#### 软件架构
软件架构说明
graph TD  
    A[用户输入文件路径] --> B[CoreDetectionEngine.exe]  
    B -->|调用检测模块| C[SHA-256匹配]  
    B -->|调用检测模块| D[数字签名匹配]  
    B -->|调用检测模块| E[熵值计算]  
    B -->|调用检测模块| F[特征码匹配]  
    B -->|调用检测模块| G[导入表计算] 
    B -->|输出结果| H[检测报告]   
#### Software Architecture
Software Architecture Description
graph TD  
A [User input file path] -->B [CoreDetectionEngine. exe]

B -->| Call detection module | C [SHA-256 matching]

B -->| Call detection module | D [Digital signature matching]

B -->| Call detection module | E [Entropy calculation]

B -->| Call detection module | F [Feature code matching]

B -->| Call detection module | G [Import table calculation]

B -->| Output result | H [Test report]

#### 安装教程

1.  `git clone https://github.com/your-repo/Echo-X1-MalwareDetector.git  `
2.  分别编译除Databses外的所有模块
3.  将编译后的可执行文件与 databases/ 目录内文件拷贝至同一目录。

#### Installation tutorial

1.  `git clone  https://github.com/your-repo/Echo-X1-MalwareDetector.git   `
2. Compile all modules except Databses separately
3. Copy the compiled executable file to the same directory as the files in the databases/directory.

#### 使用说明

1.  输入待分析文件路径即可根据数据库信息获取文件报告

#### Instructions for use

1. Enter the path of the file to be analyzed to obtain the file report based on database information

#### 参与贡献

1.  Fork 本仓库
2.  新建分支
3.  提交代码
4.  新建 Pull Request

#### Participate and contribute

1. Fork's own warehouse
2. Create a new branch
3. Submit code
4. Create a new Pull Request