search

belowaverage-org / SuperGrate

💾 Get moving with Super Grate; a free & open source Windows Profile Migration & Backup Utility. Super Grate is a GUI (Graphical User Interface) that assists Microsoft's USMT (User State Migration Utility) in performing remote migrations over a network connection.
https://belowaverage.org/software/supergrate
GNU General Public License v3.0
194 stars 23 forks source link

This looks awesome, but VirusTotal flags it as Malicious #110

Closed jacobhweeks closed 8 months ago

jacobhweeks commented 8 months ago

Describe the bug VirusTotal flags the exe as Malicious.

To Reproduce Steps to reproduce the behavior:

  1. Go to VirusTotal.com and upload the .exe file
  2. See the results

Expected behavior No Malicious flags

Screenshots image

Additional context I want to use this tool because USMT is very complicated via the command line, But I (and many other security-minded professionals) can't use this in good conscience.

krisdb2009 commented 8 months ago

Unfortunately, there isn't a whole lot I can do besides acquiring a very expensive "code signing certificate." I encourage anyone to submit these builds to their AV vendors as a false positive to help alleviate this and help build a good reputation for the software.

In regard to your security team / co-workers. You can always review the source code and build the binary on your machine, I have a guide on how to do this on the documentation page for this project.

An even easier way to build this would be to fork this repository, once done, enable GitHub actions, modify a file in your newly forked repository (something like the readme.md), and GitHub should automatically start a build and drop the binary in an "artifact."

I am more than happy to answer any questions on suspicious looking source code or any other general source code questions.

jacobhweeks commented 8 months ago

The flags that I saw were indicating a directory being used that is common for malware. But that may have just been a comment.

Respectfully,

Jacob H. Weeks

On Thu, Mar 14, 2024, 11:29 PM Dylan Bickerstaff @.***> wrote:

Unfortunately, there isn't a whole lot I can do besides acquiring a very expensive "code signing certificate." I encourage anyone to submit these builds to their AV vendors as a false positive to help alleviate this and help build a good reputation for the software.

In regard to your security team / co-workers. You can always review the source code yourself and build the binary on your machine, I have a guide on how to do this on the documentation page for this project.

— Reply to this email directly, view it on GitHub https://github.com/belowaverage-org/SuperGrate/issues/110#issuecomment-1999022662, or unsubscribe https://github.com/notifications/unsubscribe-auth/ABP7HRFUE2SIWQFABSBMW7DYYKINLAVCNFSM6AAAAABEVH5LIGVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTSOJZGAZDENRWGI . You are receiving this because you authored the thread.Message ID: @.***>