aboutsummaryrefslogtreecommitdiff
path: root/EfiGuardDxe
Commit message (Collapse)AuthorAge
* Patch nt!KiMcaDeferredRecoveryService on Windows >= 8.1Mattiwatti2020-05-07
|
* Patch nt!KiVerifyScopesExecute on Windows >= 8.1Mattiwatti2020-05-07
|
* Disable PatchGuard verification call in KiSwInterruptMattiwatti2020-05-03
| | | | KiSwInterrupt is present since Windows 10 and is the interrupt handler for int 20h. This interrupt is a spurious interrupt on older versions of Windows, and does nothing useful on Windows 10. If int 20h is issued from kernel mode, the PatchGuard verification routine KiSwInterruptDispatch is called. This leads to a bugcheck if PatchGuard has not been initialized.
* Update SeCodeIntegrityQueryInformation signatureMattiwatti2019-12-04
| | | | This makes this optional pattern scan work on the current Windows 10 20H1 preview release
* Compile as UTF-8Mattiwatti2019-12-04
|
* Update Zydis submodulev1.0.2Mattiwatti2019-10-07
|
* Disable Spectre mitigation crapMattiwatti2019-10-07
|
* Call driver unload if a non-Windows OS is being bootedMattiwatti2019-05-06
|
* Update arc.hMattiwatti2019-05-06
|
* Minor fixesMattiwatti2019-05-06
|
* Fix two dumb mistakes that were cancelling each other outMattiwatti2019-05-06
| | | | PE section names must be null terminated because they are not guaranteed to be. However they must be null terminated at 8 characters, not at the length of the string that happens to be relevant for whatever reason. This would have led to false positives when finding sections, were it not for the off-by-one error that was keeping an additional character in the buffer
* Update to VS2019Mattiwatti2019-04-08
|
* Minor fixesMattiwatti2019-03-28
|
* Initial commitv1.0Mattiwatti2019-03-25
Powered by cgit, Themed by Ted Yin.