Associate Professor Rosario Giustolisi has been kind to make an analysis of data transmitted by the WISEflow Device Monitor (version 2.5.0), focusing on data sent from a local device to the servers.
The application does not appear to contain any obvious harmful scripts, either in the installer or in the executable. The application does not appear to send any relevant additional data beyond what is publicly stated.
What does the application send?
Registration Information
When the application starts, it sends some basic information about the computer, such as:
• Operating system (e.g. Windows Debian Linux)
• The make and model of your computer (e.g., Lenovo)
• A unique ID for the system
• Participant ID and exam flow ID
Screenshots and process list
The application periodically sends a message to the server to say, " Still running."
Periodically, the application takes a screenshot of what's happening on your computer.
It also sends a list of apps that are running—both those that can be viewed (like Firefox or Terminal) and those that are running in the background (like audio control or network tools).
Conclusion
The application does not contain any obviously harmful components. No additional data is sent beyond what is publicly documented. External libraries seem legitimate, but it's recommended to minimize dependencies.
The analysis was performed on the Linux distribution of the device monitor.