pfSense » pfSense Packages

1) Remove Google Safe Browsing feature as it's deprecated/outdated,
see https://blog.clamav.net/2020/06/the-future-of-clamav-safebrowsing.html:

ClamAV has provided a signature database using Google's Safebrowsing API to provide advanced protection against emails with links to
suspicious websites.

As of Nov. 11, 2019, we have stopped updating the Safebrowsing signature database because Google announced changes to their
Safebrowsing API terms of service.

2) Add 3rd party signatures support:
- InterServer.net http://rbluri.interserver.net/usage.php (free);
- URLhaus https://urlhaus.abuse.ch/api/#clamav (free);
- SecuriteInfo.com https://www.securiteinfo.com/services/anti-spam-anti-virus/improve-detection-rate-of-zero-day-malwares-for-clamav.shtml?lg=en (free, registration needed);
- MalwarePatrol.com https://www.malwarepatrol.net/non-commercial/ (free, registration needed);

see also https://github.com/extremeshok/clamav-unofficial-sigs

3) "Block PUA" checkbox (Possibly Unwanted Applications https://www.clamav.net/documents/potentially-unwanted-applications-pua);
4) Scan mode - All (default), Web (embeded malware and phishing) or Executables/Installers (useful to block PUA);