This is an automated archive.

The original was posted on /r/cybersecurity by /u/BasuraBarataBlanca on 2023-08-07 21:17:56+00:00.


In times past, I’ve used a variety of free utilities in technical capacities. Treesize free, CCleaner, AngryIP Scanner, among others. I’ve observed in sandbox environments via Wireshark that nearly every program fires off telemetry data to Microsoft, Akamai, or other cloud vendors.

Sometimes we work on equipment which has a higher sensitivity need, or we’re working in sensitive environments. If you’re looking for a specific tool benefit, while assuring that the tools is ONLY doing this one thing, what methods do you use to vet these tools? Packet capture? VirusTotal? Hex editor and code analysis?