malwaredb-rs icon indicating copy to clipboard operation
malwaredb-rs copied to clipboard
verified publisher icon malwaredb

Feature: federated search/sharing

Open rjzak opened this issue 3 months ago • 2 comments

Allow instances of MalwareDB to interact with different policy options:

  • Searching other instances and get the hash only,
  • Searching other instances and get full metadata,
  • Fetch a binary from another instance.

rjzak avatar Sep 04 '25 01:09 rjzak

hey can I work on this?

prajeeta15 avatar Oct 16 '25 19:10 prajeeta15

Yes! But let's figure out a design. Initially, I'm thinking three things:

  • Config should be in the database, so if there's multiple servers for one instance, all have the same information.
  • Use a Wireguard-type config, meaning a simple key pair used for both identification and encryption to share the data.
  • The levels of sharing mentioned above: hashes, metadata, full binary.

What are your thoughts on possible implementations and use cases for this?

rjzak avatar Oct 17 '25 00:10 rjzak