Hey everyone! I'm working on a personal project where I'm simulating malware in Python, specifically creating a reverse shell by setting up a TCP connection as a client-server setup. The issue I'm encountering is that whenever I save my client file, Windows Defender automatically flags it as a potential threat (RAT) and deletes it, even before I run the code. This is making it really difficult for me to manage my project with Git. Although I have some virtual machines I could use for testing, I'd prefer not to constantly switch between them. Does anyone have any advice on how to prevent Windows Defender from interfering with my files?
2 Answers
Windows Defender does tend to make a lot of guesses when it comes to detecting threats. But you're right to ask how it determines what’s actually harmful. It’s improved a lot over time, especially in terms of malware detection for average users. If you're curious about its detection methods, there’s a ton of info out there to dig into!
You might want to try excluding certain folders from Windows Defender's scans—that often helps with files you know are safe.
Wow, thank you so much! I was finally able to get this to commit as well as compile!
I can't stand Windows either, but honestly, Defender has come a long way. Sure, it’s not perfect, but it’s decent for the average user now. Just keep your definitions updated!