False positive - writable directories

[0xElessar]

Hey,

thank you for the tool. Thank you for your hard work.

Could you explain why the tool reports writable directory, while it is not really writable by a user? I have so many false positives reporting writing possible to c:\ or c:\windows\system32 .

thanks

[AlessandroZ]

Hi @0xElessar,

It's weird because at the beginning I had lots of false positive when I read the directory options to test if it's writable, so I decided to create a tmp file to be sure the directory was writable (code). So it should not give you any false positive. I don't understand why it's happening.

I imagine, you have already tried to create a file on these directories using the same privilege level you have launched the tool.

[0xElessar]

Thank you for your response, Allessandro.

Indeed I have tried and the attempt failed. Maybe I am using outdated version or something. I am using the latest compiled .exe version, which comes from 2017. Maybe this is a problem?

[AlessandroZ]

No this update has been done long time ago (I think even that the project was online). So without debugging, I cannot help you, it never happen to me. Sorry.

[0xElessar]

Thank you.