A question on programmers.se got me wondering: has anybody released an open source virus? Of course I'm just wondering out of sheer curiosity of what a virus's source code might look like. A quick google search shows that there are plenty of open source antivirus programs, but I didn't see any open source viruses.
Are there any open source viruses?
13.4k views Asked by Jason Baker AtThere are 3 answers
Open source viruses are something that don't exist. There are a few reasons for this:
- Virus protectors' companies can easily block the virus if they find the source code.
- Open Source = easier to find info. Other viruses don't have websites, but if a virus was open-source, it would have to have a website. And then the protector's companies can more easily order a cease-and-desist on ISP companies.
If a virus's source code was available, I would imagine that it would have a simple core. For example, viruses usually make computers freeze, and there are easy ways to do this:
- Put a lot of flash in an application that uses up all of the CPU.
- Make an infinite loop that the CPU just can't handle.
Also, there would be methods that make computers shut down at random and frequent times.
I had the same question, and so I did some looking. Came across this interesting article:
"Why virus writers are turning to open source" 'Malware developers are going open source in an effort to make their malicious software more useful to fraudsters.' http://news.cnet.com/8301-1009_3-10356421-83.html
"Releasing Trojans as open source dates back to 1999, when the Cult of the Dead Cow group released the source code for its Trojan called Back Orifice.
"More recently, the developers of the Limbo Trojan published its source code in an effort to boost take-up following a slump in its use by fraudsters."
What do you mean by "open source"? I'm sure none of them are copyrighted and there are enough sources on the internet. You can try VX Heavens for example.
EDIT: As response to @blake305:
First, virus is a computer program that is able to "reproduce" itself. It has nothing to do with freezing computer. Here is some theory:
In the past there was something called "the scene". There were many known virus writers who wrote viruses for fun and as competition (for example, the shortest file infector), so each such virus contained a signature. Obviosly, you had to present it (and usually together with the source code) for the contest. As you can see, a classic virus have three different parts:
1) Reproduction (that's why it's virus)
2) Self-protection (usually all kind of passive "stealth" techniques, encryption, polymorphism, and so on)
3) Payload (destructive code. Usually a "state of the art" virus don't have it. Usually a distractive payload is added by others, who are not so good in writing the first two modules).
While the payload is the most simple part, it practically makes viruses illigal. The second part is very difficult to implement, so it actually became the most important challenge for virus writers. I would also recommend some articles written by Z0mbie.
Finally, most virus sources you could find on that site are just outdated, so they are useful only for "academical" purposes.