Windows defender claimed they're bad because they are cracks, and doesn't mention any reason it thinks that would be a virus/trojan or something I dont want
"HackTool:Win32/crack" from games downloaded on fitgirl repacks site (the correct one)
Isn't that a matter of behavior? The crack is doing something expected from a crack and the system warns you because most wouldn't use it without being aware. If you really trust the file, add it as an exception.
Or do you want a software that can vet good cracks from bad cracks?
But you generally want that crack to do something to an executable. Do antivirus etc. tools just heuristically flag everything that looks like it modifies an executable? Lots of legitimate dev tools do that too, so it seems like it'd give a lot of false positives, but I haven't used Windows in ages so 🤷
Well, how is the system supposed to know that you want the crack to do something to that executable? The anti virus just sees something is happening and flags it. It does not see a difference.
I definitely get what you mean, I just have no idea if antivirus tools flag anything that looks like it modifies executables. My edit to the comment you're replying to may not have propagated to your instance yet, so here's what I added:
Do antivirus etc. tools just heuristically flag everything that looks like it modifies an executable? Lots of legitimate dev tools do that too, so it seems like it'd give a lot of false positives, but I haven't used Windows in ages so 🤷
Windows defender only lets you whitelist by file, folder, or process. You could whitelist a specific folder, but if you want to whitelist by category you'll have to use a different antivirus product.