GLOBALBANFIXED wrote:What version of VBox driver you use?Where?
Ring0 - the source of inspiration
A forum for reverse engineering, OS internals and malware analysis
So i would need to use a Vbox to do this?
EP_X0FF wrote:In last dsefix (ultra4.sys) version. Ultra4.sys this is VBoxDrv .sys (ver?) ? Or another selfmade driver?GLOBALBANFIXED wrote:What version of VBox driver you use?Where?
P.S. Thanks for this app, really make life easier :twisted:
SelectHF2 wrote:So i would need to use a Vbox to do this?No.
GLOBALBANFIXED wrote:In last dsefix (ultra4.sys) version. Ultra4.sys this is VBoxDrv .sys (ver?) ? Or another selfmade driver?1.6
Ring0 - the source of inspiration
Thanks for this. Super helpful tool.
Latest version published on GitHub https://github.com/hfiref0x/DSEFix, further updates (if any) will be posted on git also.
Ring0 - the source of inspiration
EP_X0FF wrote:Latest version published on GitHub https://github.com/hfiref0x/DSEFix, further updates (if any) will be posted on git also.Thx! you are cool!
"Спасибо, ты крут!)"
Why not just use the Windows 8+ unfixed 0 day from my Infiltrate talk? With the technique I presented, you can easily disable DSE :)
aionescu wrote:Why not just use the Windows 8+ unfixed 0 day from my Infiltrate talk? With the technique I presented, you can easily disable DSE :)Well because it 0day and maybe fixed, while this driver isn't banned and used by malware for 5+ years.
Ring0 - the source of inspiration
Is this still working in Windows 10? I seem to be getting PatchGuarded a lot... :(