HN Reader

I'm Peter Roberts, immigration attorney, who does work for YC and startups. AMA

243 points by proberts 1d ago 435 comments

Is current state of querying on observability data broken?

7 points by pranay01 3h ago 0 comments

SwipeJobs App – Tinder for Job Seekers

3 points by fidla 3h ago 3 comments

Ask HN: Anyone working in traditional ML/stats research instead of LLMs?

17 points by itsmekali321 19h ago 5 comments

Ask HN: Conversational AI to Learn a Language

11 points by edweis 14h ago 0 comments

Spent weeks building, not marketing

7 points by kmaticu 12h ago 4 comments

Ask HN: Is there a "YouTube" for AI coded web apps?

4 points by amichail 9h ago 5 comments

Ask HN: How are you acquiring your first hundred users?

556 points by amanchanda 4d ago 350 comments

Xray: A full-behavior-chain anti-malware system built in Go by a student

3 points by tangtian 11h ago 0 comments

Best AI editor for local models?

5 points by rocketbro 18h ago 0 comments

Ask HN: Cursor or Windsurf?

309 points by skarat 5d ago 390 comments

Ask HN: Email Provider for Main Account?

21 points by agent008t 2d ago 20 comments

Ask HN: Did anyone else see an avalanche of old email appear in Gmail?

3 points by DamnInteresting 23h ago 1 comments

Ask HN: What's your go-to message queue in 2025?

9 points by enether 2d ago 12 comments

Ask HN: Our only salesperson was working for a competitor. Advice?

10 points by betrayawayed555 1d ago 6 comments

What do people use for on-call these days?

7 points by skullum 1d ago 9 comments

Ask HN: Any good tools to pgdump multi tenant database?

3 points by polishdude20 1d ago 4 comments

Ask HN: Facing unemployment – what now?

47 points by octo888 1d ago 38 comments

Ask HN: How do you store private keys?

5 points by max_ 1d ago 12 comments

Ask HN: How do you store the knowledge gained in a day?

65 points by dennisy 4d ago 91 comments

Symbolic Logic Based LLM

5 points by sandeeptshelvan 1d ago 0 comments

Ask HN: How are you cleaning and transforming data before imports/uploads?

36 points by dataflowmapper 3d ago 33 comments

Ask HN: How would you fund a tech cooperative owned by workers and users?

8 points by prrada 2d ago 6 comments

Ask HN: Why is no one making FILE_ID.DIZ anymore?

11 points by reconnecting 2d ago 4 comments

FlyLoop – AI Agent for Scheduling Meetings and Managing Your Calendar

19 points by localbuilder 4d ago 3 comments

Ask HN: Is Slack Down?

69 points by abatilo 4d ago 29 comments

Ask HN: Will We Rethink Calendars?

6 points by kamphey 1d ago 12 comments

MLX EXtended, Array Supercharged

3 points by flreifying 2d ago 0 comments

Ask HN: Not sure about the future of tech

20 points by xblpob 4d ago 17 comments

Ask HN: What are your thoughts on LLMs and user privacy?

5 points by eniz 2d ago 8 comments

iOS app that analyzes link behavior like nutrition label, no cloud, open source

6 points by sigbyte 3d ago 2 comments

Why does macOS prefer using PDF files for icons or UI elements?

2 points by damiaozi 2d ago 2 comments

How Not to Be Overwhelmed

11 points by banrovegrie 3d ago 15 comments

Ask HN: Did GitHub UI become unbearably slow?

14 points by zaphodias 5d ago 10 comments

Xray: A full-behavior-chain anti-malware system built in Go by a student

3 tangtian 0 5/17/2025, 10:04:21 AM
Hi HN,

I'm Tang Tian, a first-year economics student from a non-CS background, currently self-learning Go, OS concepts, and cybersecurity. Over the past weeks, I built Xray, an anti-malware and behavior tracing system from scratch, entirely in Go.

Xray compares your current system with a reference ISO, monitors real-time filesystem and process activity, detects suspicious behavior, automatically eliminates threats, and outputs a full behavior graph as a .dot file (Graphviz-ready).

Highlights:

Behavior chain detection (not signature-based)

Monitors full system with fsnotify + process tracing

Compares live system to boot ISO for anomaly detection

Auto-kills malicious behaviors in real time

Outputs behavior chain in .dot format (JSON/LOG planned)

Lightweight: compiled binary is only ~3MB

Written completely from scratch by a solo student

GitHub: https://github.com/lixiasky/X-ray There’s also a screenshot folder showing how it runs, and a personal note in the README.

This is open-source with a permissive license (MIT-style). Feel free to fork and build your own version—just please keep a credit line in the README: “First version by Xia Lixia.”

I hope someone finds this useful or fun to hack on. Feedback is welcome, and thank you for reading!

Comments (0)

No comments yet