Virus about privesccheck HOT 2 CLOSED

Hello and thank you for letting me know. :)

I can reproduce the issue on my own machine. Funny enough though, only the ZIP file seems to trigger the alert. If I copy the extracted folder into a location that is monitored by Defender, nothing happens.
Anyway, with this project, I was expecting people to download only the final PrivescCheck.ps1 file, which is specially built (thanks to the Build.ps1 script) to partially evade AV and EDR.

So, in the end, I don't see what I can do more. I mean, most offensive security tools tend to be detected by AV and EDR so this kind of behavior is to be expected I guess. If people don't download it because they actually think it's a virus/trojan or whatever, I don't really care. The code is completely open source so they can make their own opinion about it without trusting my word if I say 'don't worry, it's safe'. ;)

from privesccheck.

Hello and thank you for letting me know. :)

I can reproduce the issue on my own machine. Funny enough though, only the ZIP file seems to trigger the alert. If I copy the extracted folder into a location that is monitored by Defender, nothing happens. Anyway, with this project, I was expecting people to download only the final PrivescCheck.ps1 file, which is specially built (thanks to the Build.ps1 script) to partially evade AV and EDR.

So, in the end, I don't see what I can do more. I mean, most offensive security tools tend to be detected by AV and EDR so this kind of behavior is to be expected I guess. If people don't download it because they actually think it's a virus/trojan or whatever, I don't really care. The code is completely open source so they can make their own opinion about it without trusting my word if I say 'don't worry, it's safe'. ;)

Thanks for your fast answer. Yeah was totally my bad i thought we need to download all the Repository. For me you can now close this Issue, and thanks for your good explaination! Sorry about the missunderstand.

from privesccheck.