During a reversing session of bootmgr in version 6.2.9200, I noticed a few things. After disabling almost all security in it, I tried loading more modded files during boot. WinPE was OK, but on a regular install it went straight into system repair mode. Then I tried with the good old TESTSIGNING configuration trick, just to see, and of course everything booted fine then. However, I was surprised to see that no watermark was visible, as was in previous versions, indicating to the user which mode Windows has booted into. Why not just make TESTSIGNING the default install configuration and completely hide all it's presence? That would be a great security move. Well done MS
My test system is Windows 8 Enterprise (6.2.9200) x64 checked build.
Anybody else able to confirm this?
Is there a TESTSIGNING bug?
Started by
joakim
, Sep 10 2012 10:18 PM
4 replies to this topic
#1
Posted 10 September 2012 - 10:18 PM
#2
Posted 12 September 2012 - 03:34 PM
I was doing some looking and see that Windows 8 bootloader is a little bit different than previous versions. Specifically that bootmgr.exe doesn't seem to exist. But you probably know more about it than I do.
#3
Posted 12 September 2012 - 08:16 PM
I was doing some looking and see that Windows 8 bootloader is a little bit different than previous versions. Specifically that bootmgr.exe doesn't seem to exist. But you probably know more about it than I do.
It is right in front of you, inside bootgmr. You can extract it by decompression. Either use my tools; http://reboot.pro/fi...mgr-recompiler/ , or use bmzip which is from the author, Jeff Bush, of mscompress; https://github.com/coderforlife/bmzip
#4
Posted 13 September 2012 - 02:59 PM
Ok you got me there.
But there is at least one thing new for the boot process ...
http://www.msfn.org/...ows-8-and-bgrt/
But there is at least one thing new for the boot process ...
http://www.msfn.org/...ows-8-and-bgrt/
#5
Posted 13 September 2012 - 06:36 PM
I was unaware of that one. Thanks.
1 user(s) are reading this topic
0 members, 1 guests, 0 anonymous users