From ed942b960de0af08b0a22aafa6835cd9d8bff6b6 Mon Sep 17 00:00:00 2001 From: Amir Rossert Date: Wed, 10 Jan 2024 12:50:35 +0200 Subject: [PATCH 1/3] Fix sentinel detection Signed-off-by: Amir Rossert --- windows_tools/antivirus/__init__.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows_tools/antivirus/__init__.py b/windows_tools/antivirus/__init__.py index 5c1a987..d84c3d5 100644 --- a/windows_tools/antivirus/__init__.py +++ b/windows_tools/antivirus/__init__.py @@ -54,7 +54,7 @@ r"trend ?micro", "malwarebytes", "vipre", - "sentinel ?one", + "sentinel ?(one|labs)", "cybereason" ] From 8a15fcc7a5d2ffcba542628f4a16c39aeb530a07 Mon Sep 17 00:00:00 2001 From: Amir Rossert Date: Wed, 10 Jan 2024 13:30:35 +0200 Subject: [PATCH 2/3] Fix lint Signed-off-by: Amir Rossert --- windows_tools/antivirus/__init__.py | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/windows_tools/antivirus/__init__.py b/windows_tools/antivirus/__init__.py index d84c3d5..69516d3 100644 --- a/windows_tools/antivirus/__init__.py +++ b/windows_tools/antivirus/__init__.py @@ -54,8 +54,8 @@ r"trend ?micro", "malwarebytes", "vipre", - "sentinel ?(one|labs)", - "cybereason" + r"sentinel ?(one|labs)", + "cybereason", ] From 763a1037b17088ab0333b37ff75318494a2f6c32 Mon Sep 17 00:00:00 2001 From: Amir Rossert Date: Wed, 10 Jan 2024 13:36:47 +0200 Subject: [PATCH 3/3] Update readme Signed-off-by: Amir Rossert --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index 687e88f..c61116f 100644 --- a/README.md +++ b/README.md @@ -67,6 +67,7 @@ These checks are more fuzzy, but allow to detect the following products: - malwarebytes - vipre - sentinel one +- cybereason On top of that list, it will detect any installed software containing "antivirus/antiviral/antimalware" in the name.