Stores a tag (digital signature of sorts) of a file. Update the tag everytime a change is commited to a file. And If some malware infects the file system. Change can be detected by verifying the tag.

Assumptions:

  1. TAG generation mechanism cannot be copied by the malware due to the use of secrets unknown to the malware.

Screenshot_20250428_151119.png

Can be extended by using VCS or container based commit mechanism. Store the changes alongside the file.