update threatcheck.yml name

.github/workflows/threatcheck.yml

@@ -1,11 +1,15 @@
-name: Agent Builds
+name: Check Against Defender
 
 on:
   push:
     branches: [ "main" ]
   pull_request:
     branches: [ "main" ]
 
+# on:
+#   schedule:
+#     - cron: "0 13 * * 1"
+
 jobs:
 
   build:

Payload_Type/athena/athena/agent_code/Tests/Agent.Tests/DefenderTests/AmsiTests.cs

@@ -16,6 +16,7 @@ public class AmsiTests
         [TestMethod]
         public void ScanFiles()
         {
+            //Can't be run with github actions
             bool malicious = false;
             string parent_dir = Directory.GetParent(Directory.GetCurrentDirectory()).Parent.Parent.Parent.Parent.FullName; //How deep does the rabbit hole go?
             foreach (string file in Directory.EnumerateFiles(parent_dir, "*.dll*", SearchOption.AllDirectories))
@@ -31,8 +32,10 @@ public void ScanFiles()
                 {
                     if (!amsi.RealTimeProtectionEnabled)
                     {
+                        //Default pass the test if real-time protection is not enabled (Github Actions has this disabled.)
                         Console.WriteLine("Ensure real-time protection is enabled");
-                        malicious = true;
+                        malicious = false;
+                        break;
                     }
 
                     amsi.AnalyzeBytes(b);