The free OSR Learning Library has more than 50 articles on a wide variety of topics about writing and debugging device drivers and Minifilters. From introductory level to advanced. All the articles have been recently reviewed and updated, and are written using the clear and definitive style you've come to expect from OSR over the years.
Check out The OSR Learning Library at: https://www.osr.com/osr-learning-library/
How can we detect RELIABLY whether Core Isolation (aka Code Integrity/Memory Integrity) is enabled or not ?
What is the reliable and complete way to check.
Yes, we can detect through the registry. However, how do we make sure that every possible avenue has been checked i.e. could be enabled/disabled
through BIOS, or Group Policy or in Device Security through the Settings in UI?
Is there a PROGRAMMATIC way to
DISABLE CORE ISOLATION (aka CODE INTEGRITY / MEMORY INTEGRITY ) ?
What we are asking is that:
Are there any programmatic ways to DISABLE the Core Isolation (aka Code Integrity/Memory Integrity) ?
Using either C++, Powershell, WMI or other application programming interfaces?
|Upcoming OSR Seminars
|OSR has suspended in-person seminars due to the Covid-19 outbreak. But, don't miss your training! Attend via the internet instead!
|13-17 May 2024
|1-5 Apr 2024
|Internals & Software Drivers
|11-15 Mar 2024
|Writing WDF Drivers
|20-24 May 2024