DownloadCheck
DownloadCheck
1.0

0.0

DownloadCheck free download for Mac

DownloadCheck

1.0
13 May 2004

Checks for Trojan Horses in Downloads folder.

Overview

Note: DownloadCheck is no longer under development, and it is no longer available for sale.

DownloadCheck is an application that checks for Trojan horse applications in your Downloads folder. It was written in response to the MP3Concept Trojan horse release of April 2004. See John Gruber's excellent commentary on this Trojan and the controversy/hype that it generated.

It's likely that you'll never find a MP3 or other document type masquerading as an application. Most transport mechanisms on the Internet will not preserve the resource fork of the file being downloaded. Without the resource fork, the MP3Concept Trojan, and others like it, will not work. DownloadCheck is released as a deterrent for anyone who might consider writing an exploit of this type. We hope that we'll never need to use it.

Join over 500,000 subscribers.

Subscribe for our newsletter with best Mac offers from MacUpdate.

1 DownloadCheck Reviews

Rate this app:

Anonymous
14 May 2004

Most helpful

I'll give you an A for good intentions, but "an application disguised as a document" is just brushing the surface of potential trojans, and one that is as you note very difficult to actually get into a user's system. And, alas, the trojan itself would most likely show up in something like an internet-enabled disk image and never show up in the download folder. Don't run programs from untrusted sources, don't automatically launch ANY file recieved from untrusted sources, disable all the "helpful" automatic unpacking and launching you can, and open documents by dragging and dropping them into the application icon that's expecting that type. Because all these attacks are, at the heart, a con. Social engineering. Be aware, and you won't be socially engineered. Not twice, anyway. :)
Like
Version 1.0
Anonymous
14 May 2004
I'll give you an A for good intentions, but "an application disguised as a document" is just brushing the surface of potential trojans, and one that is as you note very difficult to actually get into a user's system. And, alas, the trojan itself would most likely show up in something like an internet-enabled disk image and never show up in the download folder. Don't run programs from untrusted sources, don't automatically launch ANY file recieved from untrusted sources, disable all the "helpful" automatic unpacking and launching you can, and open documents by dragging and dropping them into the application icon that's expecting that type. Because all these attacks are, at the heart, a con. Social engineering. Be aware, and you won't be socially engineered. Not twice, anyway. :)
Like
Version 1.0
2 answer(s)
Anonymous
Anonymous
14 May 2004
Amen.
Like
Version 1.0
Chieftypist
Chieftypist
14 May 2004
A small correction: internet enabled disk image will show up eventually as a folder in the user's download folder (after the items are copied from the disk image.) Since DownloadCheck looks in subfolders, it should pick it up. The main problem, as you note, is the stupidity of people. If DownloadCheck flags applications in the folder, maybe it will make people think twice about opening them. Nah...
Like
Version 1.0