Skip to content

Release v1.0.9
Compare
Choose a tag to compare
@tyranid tyranid released this 19 Aug 13:38
v1.0.9
5d4e9b5

Release Notes:

1.0.9

  • Made New-Win32Process more generic and added support for Win32k filter enable.
  • Added function to capture token from a process using impersonation.
  • Added basic support for Desktop and WindowStation objects using Win32u.dll exports.
  • Added file locking implementation including async.
  • Added hardlink enumeration.
  • Added NTFS stream enumeration.
  • Deprecated most of the old standalone utilities in favour of PS cmdlets.

1.0.8

  • Added cmdlets to create a kernel memory dump, system environment and licensing.
  • Additional system calls implemented.
  • Added access to secure boot policies and code integrity policies.
  • Made Win32 Process creation more generic and added cmdlet.
  • Added access check by type including SELF SID.
Assets 3
Loading