Generic Trojan detected about driverautomationtool HOT 7 OPEN

I've edited my fork of the 7.2.2 code to add W11 23H2 support (the only feature of 7.2.3), until this gets sorted out.

You can copy https://github.com/ajn142attamu/DriverAutomationTool/blob/master/Current%20Branch/7.2.2/DriverAutomationTool.ps1 into C:\Program Files\MSEndpointMgr\Driver Automation Tool and then run it as admin. You may need to clear the C:\Program Files\MSEndpointMgr\Driver Automation Tool\Temp directory and rename C:\Program Files\MSEndpointMgr\Driver Automation Tool\Settings\OEMLinks.xml to ensure you pull the latest copy of OEMLinks.xml and then the latest copy of all the catalog files.

from driverautomationtool.

The virus attack vector is stemming from Repo copies and Forks. So I recommend you obtain the original files directly from Maurice Daly and not the link from ajn142attamu.

from driverautomationtool.

The virus attack vector is stemming from Repo copies and Forks. So I recommend you obtain the original files directly from Maurice Daly and not the link from ajn142attamu.

Feel free to diff the code in my repo against the original repo, GitHub makes that super easy 😄 It's only bug fixes and feature additions. Not discounting the possibility that other folks could be making malicious modifications to their forks, but that's definitely not the case with mine, and because the code under my repo is all open source, anyone can verify that for themselves 😄

from driverautomationtool.

https://www.virustotal.com/gui/file/6b3e8a777bbc567b4be33be593d563109ce9ec205ba9a5864f90d6e4ad986b1b
--> this is happening with the original file from Maurice
Currently unfortunately impossible to update the tool to 7.23 :(

from driverautomationtool.

Don't fork this GitHub project. (Always) download the files from the original source.

from driverautomationtool.

Don't fork this GitHub project. (Always) download the files from the original source.

just to avoid confusion: I did, the threat detections are with the original file from Maurice, no fork.

from driverautomationtool.

Don't fork this GitHub project. (Always) download the files from the original source.

I mean this in the politest way possible, but I will continue to fork the project and maintain the fork until the author and collaborators have as much time to dedicate to solving issues I encounter with the tool as I do, or until my org drops use of this tool. The entire project is licensed under a BSD 2 Clause license, and the source for both 7.2.2 and 7.2.3 has been published by the repo owner, forking is allowed. For a specific example of why I will continue to fork the tool, note that line 13635 of https://github.com/maurice-daly/DriverAutomationTool/blob/master/Current%20Branch/7.2.3/DriverAutomationTool.ps1 reintroduces a bug that I patched out of my fork 9 months ago (the whole reason I began forking the tool) in this commit ajn142attamu@042725c and then introduces the same bug for W11 23H2.

I can't stop using the tool to perform my job, and when I encounter a bug that impacts my ability to do my job, I'm going to fix it. I will continue to put the fixes I make on my fork. I will also continue to suggest trying my fork to folks experiencing issues that I can replicate with the upstream repo (the official files) and cannot replicate in my fork. If anyone has any concerns that my fork is malicious, they're welcome to audit all changes made in my code against the source present in the official repo, that doesn't upset me one whit. If the author or a collaborator on the tool wants to do the same and fix those bugs in the official files, that also won't concern me one whit, I'd love for the tool to be better for everyone, and I'd love to have no justification for the continued work maintaining my own fork.

from driverautomationtool.