Open ShadowLNC opened 3 years ago
Hey Scott,
Unfortunately the module is built on PSReflect which is not inherently malicious, but has been used with a lot of PowerShell based hacking tools. This is a situation where PSReflect is more likely to be used for nefarious purposes than legitimate purposes (like PSReflect-Functions) and as a result Defender errors on the side of caution and labels it as a virus. My recommendation depends on your use case.
I hope this helps. Please let me know if you are interested in further clarification.
I get the following when trying to install:
Windows Defender also flags "HackTool:PowerShell/PowerView" on the same file.