RootIQ - A smart root certificate scanner and manager for Windows

I agree. So then the question is, "Is this software needed?"

I personally don't see the need.

While I understand the reason for the forum policy, the link I provided did not meet the justification for the policy as that policy is described here.

My link simply illustrated that it was incorrect to state that only Windows Defender tagged RootIQ as potentially malicious. I was not "praising or bashing" the anti-virus scanner involved.

That said, I note in that policy post the following,

I agree 100% and is the point I was trying to make. Singling out Windows Defender and criticizing Microsoft for a false positive that was quickly corrected is misjudging the product and serves no real value.

 

@svenfaw please 32bit x86 version

 

New beta available: build 1883.

First post has been updated to clarify the purpose of RootIQ, and how it is quite different from tools such as sigcheck or certmgr.

 

IIUC behavior monitoring is mostly based on seeing what system calls, system APIs program uses. Reading file from some path is based on API, so AV can see that. After reading file into process memory program doesn't have to rely on API to process its content. While I imagine AVs do indeed check some sections of process related to program instructions (were they overwritten by another program? were there injections by other programs?) I don't think they stop every other process in the system after every assembler instruction to see what happened with data read from files.

 

Just trying Build 1883, and note this difference:

 

And the fact the "system" is trusting 243 "unknown" roots is supposed to reassure users?

How is that helpful?

 

I forgot to advise that it popped for me the very first time, but I ignored it. Still, all is good, because I ignored it again with build 1883.

 

Not for me to deduce. I just report what I see.

 

And you are right. But again, how is a "normal" user supposed to interpret that? I don't know. It just makes me question how valuable this program is to the normal user.

 

There was a display bug causing an incorrect number of unknown roots to be shown in the summary.
The latest build (1884) should fix it.

 

Just like the first time that I ran this, SecureAplus popped:



Anyhow, this is what I get with build 1884:

 

I'm happy to announce that RootIQ is no longer in beta. First stable version is 1.02 (build 1887), and is free for home use and evaluation purposes.

A Pro (paid) version will be available soon, with several additional features.

 

Went all the way, testing that is...

 

You don't need all those root certificates
October 17, 2020
https://hexatomium.github.io/2020/10/17/001.html

 

@svenfaw

Downloads all result in a 0 (zero) byte zipped folder.