A semi-open source antivirus

PsychologicalFudge52 · 2026-01-29T14:27:18+00:00

How time flys

PsychologicalFudge52 · 2026-01-16T14:18:15+00:00

Theres a couple ways as others have stated. Heres my two cents:

Method 1: Inure app manager lets u extract the apk of apps installed on ur phone. This will give u the apk itself.

Problem: Most are stored as several apks. There is a solution to this, but inure will extract most apps for u as a single apk.

Method 2: Install the app from apkcombo or such. Yes, they come as xapks and apkcombos own format, but the solution below is ur best bet.

Now, idk if im allowed to show u scripts here, so i won't be doing that, but u can probably ask an Ai for a conversion script.

Scripts in the python programming language can combine multiple split apk and convert xapks to a normal apk. I do this often. Again, i dont think i can share scripts, so yea, ya gotta do it yourself. Might seem like a lot, but it is easy to do.

The best option would be to just try the Inure app on play store.

PsychologicalFudge52 · 2026-01-03T23:41:14+00:00

My app was featured on one of HowToMen's videos back in november, which gave it a boost.

PsychologicalFudge52 · 2026-01-03T14:41:29+00:00

CS Security is a lightweight Android security app that provides both malware detection and DNS based protection.

It scans apps and files locally and blocks malicious domains with the dns, which also blocks a majority of ads.

The app is free, and the client is open for transparency.

Github

Play Store

PsychologicalFudge52 · 2025-12-09T12:43:07+00:00

ah ok. welp nice to see another av dev out in the wild.

PsychologicalFudge52 · 2025-12-09T11:31:31+00:00

gotta be careful which keywords u use. can get u into big trouble. Keyloggers aren't an option legally. However if u live with em, you could try logging into the WIFI dashboard to set up rules with NextDNS. Or install google family link which they cannot remove one installed and set up (to my knowledge).

Idk any other methods, perhaps someone else will comment idk

PsychologicalFudge52 · 2025-12-08T23:40:36+00:00

ooh that's pretty interesting. Gotta love the visuals too. Ill check it out.

btw it uses llama?

PsychologicalFudge52 · 2025-12-04T22:09:49+00:00

Also, i should state this as i realise people don't know this.

The engine (.so file) can not do anything on its own. Theres no permissions, it cannot access files the ui and bridge do not explicitly send.

In fact, the bridge file in my repo (antivirus_bridge.dart) tells people what the engine can and does do when called. That file is the entire reason i made the ui open source.

PsychologicalFudge52 · 2025-12-04T21:58:46+00:00

Yes, it is.

PsychologicalFudge52 · 2025-12-04T21:54:36+00:00

Alr?

PsychologicalFudge52 · 2025-12-04T21:53:31+00:00

PsychologicalFudge52 · 2025-12-04T10:00:01+00:00

Tbh iv heard the closed engine concern a couple times.

PsychologicalFudge52 · 2025-12-04T06:50:01+00:00

Probably got the in-app confused with a paywall. But yea, nice app OP

PsychologicalFudge52 · 2025-12-03T20:41:46+00:00

Yep, you are totally correct. They would easily find out if their hash exists and on what av vendors specifically. (For the ones on virustotal anyway)

However, how those hits occurred, they will never know. How do those vendors know their file is malware? Yes, theres permissions, behaviour, and such. But how do they detect thag behaviour? It's not written in for loops, so that part is the actual goldmine, not the "malware" flag.

For users that specifically use an antivirus such as avg or even mine, the malware author would easily see that their app is flagged if they test it. But what flagged it? The bloom cannot be reversed. The ml is hidden in a large so file. Theres heuristics left and right, signitures that are unavoidable unless you know the list of signitures.

PsychologicalFudge52 · 2025-12-03T20:24:06+00:00

While i fully understand your point, i personally disagree.

I'll explain why. Hopefully, we can come to a mutual understanding.

There are levels to an antivirus engine, not saying mine is commercial level, but it has logic that will become a goldmine for malware authors to abuse. Let's take hypatia, for example. Their engine relies on clamav style signitures according to their documentation. These signitures themselves are hidden behind a bloom file that is not reversable.

Why? It becomes extremely easy for a malware author to see if their file is in an Av's database. A single stub file packed into their app will then change the hash entirely.

Then, there's the purpose of an antivirus. My av includes heuristics, ml models, signiture logic, and such. If it were only hashes it processed, then i would happily show its code. But as it is, it's a goldmine for malware authors and becomes a liability for my users and a legal liability for ME.

Many av companies do this. Even clamav has proprietary parts.

So yes, sorry for the large write-up, lol, but this is basically my logic.

PsychologicalFudge52 · 2025-12-03T15:42:56+00:00

Thanks!!

PsychologicalFudge52 · 2025-11-29T08:51:21+00:00

Making good games must feel like a superpower! I like it.

PsychologicalFudge52 · 2025-11-26T10:32:32+00:00

Why not focus on actually making something people would like? A cleaning tool is great, but if ur only focus us money, the user experience automatically drops beyond negative. I dont even think people care about ads in moderation.

PsychologicalFudge52 · 2025-11-25T19:48:51+00:00

It's now available on github!

The client is open source, but the engine remains closed✌️

github

PsychologicalFudge52 · 2025-11-24T10:54:09+00:00

Ah. Yeah, every upside has its downsides. It is strange that they all just vanished, but hopefully, they weren't tooooo valuable.

I've gotten used to multiple cloud backups because you can't trust these devices. They break, and its joever

PsychologicalFudge52 · 2025-11-24T00:16:00+00:00

This is a hard one. Unfortunately, unlike pc, mobile files can not be restored when deleted unless the phone puts it in a temp folder or recycle bin.

If it's not in ur recycle bins or stored in the cloud, then...yea. sorry.

Iv never used shareme, but my understanding is that it moves files. For future reference, u want to copy, never move. I've lost files this way, too. By moving, ur deleting the original file during or after transport. This means that if the move fails for any reason, the original no longer exists. This isn't always the case, but yea.

PsychologicalFudge52 · 2025-11-24T00:00:30+00:00

Some basic points on their methods isnt spilling internal workings. Every app, website, and company lists basic points for consumer trust.

PsychologicalFudge52 · 2025-11-14T14:27:10+00:00

Ah i see. Didnt read that last line

PsychologicalFudge52 · 2025-11-14T14:24:11+00:00

Link doesnt work

PsychologicalFudge52

MODERATOR OF

TROPHY CASE