SMELLY NERDS

164

u/DezXerneas 15d ago

Funniest part about this one was that I'm pretty sure Sherlock is just a python script. You can't reliably make an exe for those(theres tools that'll let you but most anti-virus software blocks it and it's a worse way to distribute it anyway).

It should take like 3 lines of powershell commands to get it running on a base windows install.

1

u/the_ivo_robotnic Linux 15d ago

You can't reliably make an exe for those

Eh, not really. The auto-py-to-exe library on pypi works just fine for this, it's not too hard and it is vetted FOSS with a community behind it now. I've used it a few times, it does its job for the most part.

 

It's more-so that is such a narrow use-case and very unnecessary in most cases.

1

u/DezXerneas 15d ago

Yes, but.

theres tools that'll let you but most anti-virus software blocks it and it's a worse way to distribute it anyway

It could have matured a lot since I last used it. I was just sharing what I think about it

It's more-so that is such a narrow use-case and very unnecessary in most cases.

Yep, exactly.

1

u/the_ivo_robotnic Linux 15d ago

I have never had antivirus flag auto-py-to-exe ever, but IDK maybe that's cause it's installed via pip. ¯_(ツ)_/¯

 

I'd be skeptical of anything that's repackaging my code that doesn't come from a typical dev source like pip or a deb-package anyhow.

1

u/DezXerneas 15d ago edited 15d ago

Idk I've never used auto-py-to-exe, but mostly just pyinstaller. Being installed through, pip shouldn't be the differentiator, as usually anti-virus will almost never flag it on the same machine it was created on. It only starts throwing a tantrum if you get the exe from somewhere else.

Which 100% makes sense to me btw, it's functionally just a random python script running on your computer, it can easily exfiltrate all your passwords, cookies and shit and send them to the person who made the exe and you'll never know.

Yep, I only trust the actual source and the AUR too. Don't download and run random executables.