MaintainTeam/Hypatia
1
0
Fork 0
mirror of https://github.com/MaintainTeam/Hypatia.git synced 2025-02-28 21:38:21 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions
A realtime malware scanner
216 commits 3 branches 83 tags 4.9 MiB
Java 94%
Shell 5.3%
Makefile 0.7%
Find a file
Tad 22cc72ab87
Fix the downloader 
With all databases enabled the ThreadPool queue is exceed (25>16).
This normally isn't an issue for other users of the pool as it will get pushed onto the main thread.
But Android prohibits network activity on the main thread, which the downloader runs from.

Increase it 32 which should be suitable for now.
Maybe consider adding a separate pool in future.

Fixes https://github.com/Divested-Mobile/Hypatia/issues/34
Fixes https://gitlab.com/divested-mobile/hypatia/-/issues/31

Signed-off-by: Tad <tad@spotco.us>
2023-05-15 23:54:59 -04:00
.idea Downgrade Apache Commons 2023-04-24 18:09:51 -04:00
app Fix the downloader 2023-05-15 23:54:59 -04:00
fastlane/metadata/android Fix the downloader 2023-05-15 23:54:59 -04:00
gradle Downgrade Apache Commons 2023-04-24 18:09:51 -04:00
graphics Many small improvements 2021-02-22 14:26:23 -05:00
scripts Add support for the Echap stalkerware database 2023-03-06 20:16:32 -05:00
.gitignore Initial commit 2017-12-13 22:44:56 -05:00
.gitlab-ci.yml CI Improvements 2021-09-24 16:04:57 -04:00
build.gradle Update dependencies 2022-08-21 19:42:41 -04:00
debugkey.pk8 CI Improvements 2021-09-24 16:04:57 -04:00
debugkey.x509.pem CI Improvements 2021-09-24 16:04:57 -04:00
gradle.properties Enable strict dependency verification 2022-08-22 12:50:51 -04:00
gradlew Update dependencies 2022-08-21 19:42:41 -04:00
gradlew.bat Update dependencies 2022-08-21 19:42:41 -04:00
LICENSE Much more scaffolding 2017-12-13 23:42:10 -05:00
README.de.md GPG signature verification for databases 2023-04-16 13:08:25 -04:00
README.es.md Created Spanish translation of README.md 2023-05-04 15:56:36 -04:00
README.fr.md Bump version for new translations 2023-05-04 16:36:14 -04:00
README.it.md Bump version 2022-04-25 23:30:12 -04:00
README.md Tweak 2023-05-15 23:52:00 -04:00
README.pl.md GPG signature verification for databases 2023-04-16 13:08:25 -04:00
settings.gradle Bump app version 2017-12-26 18:54:57 -05:00

README.md

Banner

Hypatia

Overview

Hypatia is the world's first FOSS malware scanner for Android. It is powered by ClamAV style signature databases.

Get it on F-Droid

Features

  • Near zero battery impact: you'll never notice any impact on battery at all
  • Extremely fast: it can scan small files (1MB) in <20ms, and even large files (40MB) in 1000ms.
  • Memory efficient: with the default databases enabled it uses under 120MB.
  • Regular scan: allowing selection of /system, internal storage, external storage, and installed apps
  • Realtime scanner: can detect malware in realtime on write/rename in internal storage
  • Completely offline: Internet is only used to download signature databases, files will never ever leave your device
  • Persistence: will automatically restart on boot/update
  • Tiny codebase: coming in at under 1000 sloc, it can be audited by even someone with basic programming experience
  • Minimal dependencies: the app only uses libraries when necessary
  • Signature databases can be enabled/disabled at the users demand

Technical Details

  • Signature databases are ClamAV .hdb (MD5 hashes) and .hsb (SHA-1/SHA-256) format
  • Signature databases will not be redownloaded if the file hasn't changed on the server (304 not modified)
  • Signatures are stored using HashMaps for O(1) lookup
  • Files have their MD5/SHA-1/SHA-256 hashes calculated in one pass
  • Realtime scanner is multithreaded and will use half of the device's core count for scanning multiple files asynchronously
  • Realtime scanning powered by a recursive FileObserver
  • Network connections will be made to the following: https://divested.dev/MalwareScannerSignatures/.hb.gz

Planned Updates

  • Option to scan on access
  • Option to quarantine/delete on detection
  • Scan files via share intent
  • Scan newly installed/updated apps
  • Option to let 3rd-party apps invoke scans
  • Custom database support
  • Automatic database updates
  • Automatic database generation
  • Client side database generation
  • Database sanity checks
  • Testing
  • Better GUI
  • Translations
  • Scanning entire system using root (low priority)

Goals

  • Be fast
  • Don't eat batteries
  • Use minimal permissions
  • Use libraries only when necessary

Credits

  • ClamAV for the databases (GPLv2)
  • ESET for extra databases (BSD 2-Clause)
  • Nex (@botherder) for extra databases (CC BY-SA 4.0)
  • Amnesty International for extra databases (CC BY 2.0)
  • Echap for extra databases (CC BY 4.0)
  • RecursiveFileObserver.java (GPL-3.0-or-later): Daniel Gultsch, ownCloud Inc., Bartek Przybylski
  • GPGDetachedSignatureVerifier.java (GPL-2.0-or-later): Federico Fissore, Arduino LLC
  • Petra Mirelli for the German/Spanish/Italian translations, the app banner/feature graphic, and various tweaks.
  • Jean-Luc Tibaux and Petra Mirelli for the French translations.
  • @srccrow for the Italian translations.
  • @inkhorn for the Portuguese translations.
  • @jontaix for Portuguese translations.
  • @q1011 for the Russian translations.
  • Oswald van Ginkel for the Afrikaans translations.
  • huuhaa for the Finnish translations.
  • Marcin Mikołajczak for Polish translations.
  • @Manuel-Senpai for the Spanish translations.
  • @Balthazar1234 for German translations.
  • @Sdarfeesh for the simplified Chinese translations.
  • @cardpuncher for French and the Turkish translations.
  • Icons: Google/Android/AOSP, License: Apache 2.0, https://google.github.io/material-design-icons/

Notices

  • Divested Computing Group is not affiliated with Cisco or ESET
  • Hypatia is not sponsored or endorsed by Cisco or ESET

Donate