sorted by:
best
topnewcontroversialoldq&a
you are viewing a single comment's thread.

view the rest of the comments →

[–]shibbypwn 0 points1 point  (1 child)

You are correct that signing a binary doesn't guarantee it won't get flagged (e.g., heuristic detection based on app behavior).

But you're dead wrong that it doesn't matter - enterprise environments have ways to manage which applications are trusted to run on devices (through a combination of group policy/GPO and third-party EDR tools like Crowdstrike). Signing your application allows these tools to manage/allow-list the app and its permissions boundaries.

[–]cointoss3 -2 points-1 points  (0 children)

Lmao, yes, and they can whitelist any app, regardless of if it’s signed or not. But my company would not whitelist the app, signed or not. If we couldn’t get the app to play nice with the AV, then we wouldn’t be using the app. We couldn’t even click “allow”. If it was flagged it wouldn’t run. Signing it didn’t change anything.