* Samuel Henrique: > Looking at nmap changelog, it seems like this issue has been going > back and forth[0] and had stabilized after some point (I guess that's > when most AV vendors added the signature), this means that any changes > in the compilation might trigger the issue again. > > Hilko, do you have any thoughts on this?
I am just a tad bit tired of discussing (or even hearing about) this issue. So I tried a thing, instead. Piping nse-service.exe through gzip, base64, tac (in that order) results in a file that is not getting recognized by the AV swarm stupidity currently[1] enabled in VirusTotal. I'll be pushing a commit that implements some build-time obfuscation and install-time deobfuscation. Cheers, -Hilko [1] https://www.virustotal.com/gui/file/3b6124713f0af1b4a74129bc26bb1793afe8c0bf91d60ff4fe57f23562b8986d/detection
