savannah-register-public
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Savannah-register-public] [task #7372] Submission of zenit simulator

From: Frouin Jean-Michel
Subject: [Savannah-register-public] [task #7372] Submission of zenit simulator
Date: Fri, 12 Oct 2007 20:40:55 +0000
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.6) Gecko/20061201 Firefox/2.0.0.6 (Ubuntu-feisty) 
Follow-up Comment #2, task #7372 (project administration):

Zenit Simulator: Zenit Simulator is software to test unknown programs, in a
virtual Windows environment, in order to observe its behavior.

It runs the programs in a Windows environment which is a simple copy of your
current Windows version (It copies only the files important like system32,
Windows, etc...), to know the effects of the program on your system before its
installation on your hard drive.

This will enable you to avoid the viruses and programs which can harm your
system.

*Example: If a user downloads a program which they don't know it might be a
virus (even after a scan with an antivirus, because certain viruses are not
detected), it will be able to carry out the program on a ZENIT virtual disk,
to precisely know the malevolent actions of the program which it can
potentially carry out on Windows (Like the destruction of the rigid disk, a
Trojan, deleting files .....

 

Exact operation of Zenit Simulator in 5 steps: 

 

1) Zenit Simulator creates a virtual disk called ZENIT which by default makes
a virtual drive of 2GB, it is placed on the workstation like the other hard
drives.

 

2) Zenit Simulator takes a careful clone of your current Windows version,
only the Windows files useful to its operation (like system32, Windows) and
basic registry (regedit.exe) are used.

It does not copy the programs/software.

 

3) The launching and the execution of any program is carried out by an
assistant attached to Zenit Simulator. This assistant installs out the program
on the virtual disk ZENIT as if it were on your main hard drive.

 

4) Once the program is launched, Zenit Simulator relays the event to a
controller; its role is to control and to record in real time the events which
occur on the virtual disk ZENIT after and during the launching of an unknown
program.



 5) Finally Zenit Simulator compares the event with several different pieces
of information, to check whether it should remove/destroyed/to re-elect etc.
it, Zenit Simulator advises to remove this program if it is a virus.



TECHNICAL NOTE 

Zenit Simulator has 4 different modules...


    _______________________________________________________

Reply to this item at:

  <http://savannah.gnu.org/task/?7372>

_______________________________________________
  Message posté via/par Savannah
  http://savannah.gnu.org/
reply via email to
[Prev in Thread] Current Thread [Next in Thread]