-
-
Notifications
You must be signed in to change notification settings - Fork 58
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
2024 new app compat/exploit prot stuff
Might fix root folder name eventually :p
- Loading branch information
1 parent
157eebb
commit 5a9a231
Showing
17 changed files
with
163 additions
and
0 deletions.
There are no files selected for viewing
7 changes: 7 additions & 0 deletions
7
new exploit prot laa appcompat/Games/Brighter Shores (AppCompatFlags).bat
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,7 @@ | ||
| :: Steam | ||
| :: https://store.steampowered.com/app/2791440/Brighter_Shores/ | ||
| :: Brighter Shores.exe | ||
|
|
||
| reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers" /v "%ProgramFiles(x86)%\Steam\steamapps\common\Brighter Shores\x64\Brighter Shores.exe" /t "REG_SZ" /d "~ DISABLEDXMAXIMIZEDWINDOWEDMODE HIGHDPIAWARE DISABLEDWM DISABLETHEMES" /f | ||
|
|
||
| :: End |
1 change: 1 addition & 0 deletions
1
new exploit prot laa appcompat/Games/Brighter Shores Steam (Exploit Prot).ps1
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1 @@ | ||
| Set-ProcessMitigation -PolicyFilePath "Exploit-Prot-XMLs\Brighter Shores Steam (Exploit Prot).xml" |
20 changes: 20 additions & 0 deletions
20
...ploit prot laa appcompat/Games/Exploit-Prot-XMLs/Brighter Shores Steam (Exploit Prot).xml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,20 @@ | ||
| <?xml version="1.0" encoding="UTF-8"?> | ||
| <MitigationPolicy> | ||
| <AppConfig Executable="C:\Program Files (x86)\Steam\steamapps\common\Brighter Shores\x64\Brighter Shores.exe"> | ||
| <DEP Enable="false" EmulateAtlThunks="false" /> | ||
| <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" /> | ||
| <StrictHandle Enable="false" /> | ||
| <SystemCalls DisableWin32kSystemCalls="false" /> | ||
| <ExtensionPoints DisableExtensionPoints="false" /> | ||
| <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" /> | ||
| <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" /> | ||
| <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" /> | ||
| <Fonts DisableNonSystemFonts="false" AuditOnly="false" /> | ||
| <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" /> | ||
| <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" /> | ||
| <SEHOP Enable="false" TelemetryOnly="false" /> | ||
| <Heap TerminateOnError="false" /> | ||
| <ChildProcess DisallowChildProcessCreation="false" /> | ||
| <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" /> | ||
| </AppConfig> | ||
| </MitigationPolicy> |
20 changes: 20 additions & 0 deletions
20
new exploit prot laa appcompat/Games/Exploit-Prot-XMLs/FlightGear 2024.2 (Exploit Prot).xml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,20 @@ | ||
| <?xml version="1.0" encoding="UTF-8"?> | ||
| <MitigationPolicy> | ||
| <AppConfig Executable="C:\Program Files\FlightGear 2024.2\bin\fgfs.exe"> | ||
| <DEP Enable="false" EmulateAtlThunks="false" /> | ||
| <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" /> | ||
| <StrictHandle Enable="false" /> | ||
| <SystemCalls DisableWin32kSystemCalls="false" /> | ||
| <ExtensionPoints DisableExtensionPoints="false" /> | ||
| <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" /> | ||
| <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" /> | ||
| <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" /> | ||
| <Fonts DisableNonSystemFonts="false" AuditOnly="false" /> | ||
| <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" /> | ||
| <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" /> | ||
| <SEHOP Enable="false" TelemetryOnly="false" /> | ||
| <Heap TerminateOnError="false" /> | ||
| <ChildProcess DisallowChildProcessCreation="false" /> | ||
| <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" /> | ||
| </AppConfig> | ||
| </MitigationPolicy> |
20 changes: 20 additions & 0 deletions
20
new exploit prot laa appcompat/Games/Exploit-Prot-XMLs/UT99 Steam (Exploit Prot).xml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,20 @@ | ||
| <?xml version="1.0" encoding="UTF-8"?> | ||
| <MitigationPolicy> | ||
| <AppConfig Executable="C:\Program Files (x86)\Steam\steamapps\common\Unreal Tournament\System\UnrealTournament.exe"> | ||
| <DEP Enable="false" EmulateAtlThunks="false" /> | ||
| <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" /> | ||
| <StrictHandle Enable="false" /> | ||
| <SystemCalls DisableWin32kSystemCalls="false" /> | ||
| <ExtensionPoints DisableExtensionPoints="false" /> | ||
| <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" /> | ||
| <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" /> | ||
| <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" /> | ||
| <Fonts DisableNonSystemFonts="false" AuditOnly="false" /> | ||
| <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" /> | ||
| <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" /> | ||
| <SEHOP Enable="false" TelemetryOnly="false" /> | ||
| <Heap TerminateOnError="false" /> | ||
| <ChildProcess DisallowChildProcessCreation="false" /> | ||
| <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" /> | ||
| </AppConfig> | ||
| </MitigationPolicy> |
8 changes: 8 additions & 0 deletions
8
new exploit prot laa appcompat/Games/FlightGear 2024.2 (AppCompatFlags).bat
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,8 @@ | ||
| :: https://forum.flightgear.org/viewtopic.php?f=42&t=42564 | ||
| :: https://github.com/The-Fl3dd0x/flightgear/releases | ||
| :: 2024.2 | ||
| :: fgfs.exe | ||
|
|
||
| reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers" /v "%ProgramFiles%\FlightGear 2024.2\bin\fgfs.exe" /t "REG_SZ" /d "~ DISABLEDXMAXIMIZEDWINDOWEDMODE HIGHDPIAWARE DISABLEDWM DISABLETHEMES" /f | ||
|
|
||
| :: End |
1 change: 1 addition & 0 deletions
1
new exploit prot laa appcompat/Games/FlightGear 2024.2 (Exploit Prot).ps1
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1 @@ | ||
| Set-ProcessMitigation -PolicyFilePath "Exploit-Prot-XMLs\FlightGear 2024.2 (Exploit Prot).xml" |
8 changes: 8 additions & 0 deletions
8
new exploit prot laa appcompat/Games/UT99 Steam (AppCompatFlags + LAA).bat
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,8 @@ | ||
| :: Steam | ||
| :: https://store.steampowered.com/app/13240/Unreal_Tournament_Game_of_the_Year_Edition/ | ||
| :: UnrealTournament.exe | ||
|
|
||
| reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers" /v "%ProgramFiles(x86)%\Steam\steamapps\common\Unreal Tournament\System\UnrealTournament.exe" /t "REG_SZ" /d "~ DISABLEDXMAXIMIZEDWINDOWEDMODE HIGHDPIAWARE DISABLEDWM DISABLETHEMES" /f | ||
| reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\UnrealTournament.exe" /v "UseLargePages" /t "REG_DWORD" /d "1" /f | ||
|
|
||
| :: End |
1 change: 1 addition & 0 deletions
1
new exploit prot laa appcompat/Games/UT99 Steam (Exploit Prot).ps1
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1 @@ | ||
| Set-ProcessMitigation -PolicyFilePath "Exploit-Prot-XMLs\UT99 Steam (Exploit Prot).xml" |
20 changes: 20 additions & 0 deletions
20
...oit prot laa appcompat/Programs/Exploit-Prot-XMLs/Microsoft OpenJDK 11 (Exploit Prot).xml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,20 @@ | ||
| <?xml version="1.0" encoding="UTF-8"?> | ||
| <MitigationPolicy> | ||
| <AppConfig Executable="C:\Program Files\Microsoft\jdk-11.0.25.9-hotspot\bin\javaw.exe"> | ||
| <DEP Enable="false" EmulateAtlThunks="false" /> | ||
| <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" /> | ||
| <StrictHandle Enable="false" /> | ||
| <SystemCalls DisableWin32kSystemCalls="false" /> | ||
| <ExtensionPoints DisableExtensionPoints="false" /> | ||
| <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" /> | ||
| <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" /> | ||
| <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" /> | ||
| <Fonts DisableNonSystemFonts="false" AuditOnly="false" /> | ||
| <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" /> | ||
| <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" /> | ||
| <SEHOP Enable="false" TelemetryOnly="false" /> | ||
| <Heap TerminateOnError="false" /> | ||
| <ChildProcess DisallowChildProcessCreation="false" /> | ||
| <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" /> | ||
| </AppConfig> | ||
| </MitigationPolicy> |
20 changes: 20 additions & 0 deletions
20
...oit prot laa appcompat/Programs/Exploit-Prot-XMLs/Microsoft OpenJDK 17 (Exploit Prot).xml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,20 @@ | ||
| <?xml version="1.0" encoding="UTF-8"?> | ||
| <MitigationPolicy> | ||
| <AppConfig Executable="C:\Program Files\Microsoft\jdk-17.0.13.11-hotspot\bin\java.exe"> | ||
| <DEP Enable="false" EmulateAtlThunks="false" /> | ||
| <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" /> | ||
| <StrictHandle Enable="false" /> | ||
| <SystemCalls DisableWin32kSystemCalls="false" /> | ||
| <ExtensionPoints DisableExtensionPoints="false" /> | ||
| <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" /> | ||
| <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" /> | ||
| <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" /> | ||
| <Fonts DisableNonSystemFonts="false" AuditOnly="false" /> | ||
| <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" /> | ||
| <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" /> | ||
| <SEHOP Enable="false" TelemetryOnly="false" /> | ||
| <Heap TerminateOnError="false" /> | ||
| <ChildProcess DisallowChildProcessCreation="false" /> | ||
| <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" /> | ||
| </AppConfig> | ||
| </MitigationPolicy> |
7 changes: 7 additions & 0 deletions
7
new exploit prot laa appcompat/Programs/Microsoft OpenJDK 11 (AppCompatFlags).bat
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,7 @@ | ||
| :: Microsoft Build of OpenJDK 11 | ||
| :: https://learn.microsoft.com/en-us/java/openjdk/download | ||
| :: javaw.exe | ||
|
|
||
| reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers" /v "%ProgramFiles%\Microsoft\jdk-11.0.25.9-hotspot\bin\javaw.exe" /t "REG_SZ" /d "~ DISABLEDXMAXIMIZEDWINDOWEDMODE HIGHDPIAWARE DISABLEDWM DISABLETHEMES" /f | ||
|
|
||
| :: End |
1 change: 1 addition & 0 deletions
1
new exploit prot laa appcompat/Programs/Microsoft OpenJDK 11 (Exploit Prot).ps1
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1 @@ | ||
| Set-ProcessMitigation -PolicyFilePath "Exploit-Prot-XMLs\Microsoft OpenJDK 11 (Exploit Prot).xml" |
7 changes: 7 additions & 0 deletions
7
new exploit prot laa appcompat/Programs/Microsoft OpenJDK 17 (AppCompatFlags).bat
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,7 @@ | ||
| :: Microsoft Build of OpenJDK 17 | ||
| :: https://learn.microsoft.com/en-us/java/openjdk/download | ||
| :: java.exe | ||
|
|
||
| reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers" /v "%ProgramFiles%\Microsoft\jdk-17.0.13.11-hotspot\bin\java.exe" /t "REG_SZ" /d "~ DISABLEDXMAXIMIZEDWINDOWEDMODE HIGHDPIAWARE DISABLEDWM DISABLETHEMES" /f | ||
|
|
||
| :: End |
1 change: 1 addition & 0 deletions
1
new exploit prot laa appcompat/Programs/Microsoft OpenJDK 17 (Exploit Prot).ps1
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1 @@ | ||
| Set-ProcessMitigation -PolicyFilePath "Exploit-Prot-XMLs\Microsoft OpenJDK 17 (Exploit Prot).xml" |
20 changes: 20 additions & 0 deletions
20
new exploit prot laa appcompat/System/Exploit-Prot-XMLs/ntoskrnl (Exploit Prot).xml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,20 @@ | ||
| <?xml version="1.0" encoding="UTF-8"?> | ||
| <MitigationPolicy> | ||
| <AppConfig Executable="C:\Windows\System32\ntoskrnl.exe"> | ||
| <DEP Enable="false" EmulateAtlThunks="false" /> | ||
| <ASLR ForceRelocateImages="false" RequireInfo="false" BottomUp="false" HighEntropy="false" /> | ||
| <StrictHandle Enable="false" /> | ||
| <SystemCalls DisableWin32kSystemCalls="false" /> | ||
| <ExtensionPoints DisableExtensionPoints="false" /> | ||
| <DynamicCode BlockDynamicCode="false" AllowThreadsToOptOut="false" /> | ||
| <ControlFlowGuard Enable="false" SuppressExports="false" StrictControlFlowGuard="false" /> | ||
| <SignedBinaries MicrosoftSignedOnly="false" AllowStoreSignedBinaries="false" EnforceModuleDependencySigning="false" /> | ||
| <Fonts DisableNonSystemFonts="false" AuditOnly="false" /> | ||
| <ImageLoad BlockRemoteImageLoads="false" BlockLowLabelImageLoads="false" /> | ||
| <Payload EnableExportAddressFilter="false" EnableImportAddressFilter="false" EnableRopStackPivot="false" EnableRopCallerCheck="false" EnableRopSimExec="false" /> | ||
| <SEHOP Enable="false" TelemetryOnly="false" /> | ||
| <Heap TerminateOnError="false" /> | ||
| <ChildProcess DisallowChildProcessCreation="false" /> | ||
| <UserShadowStack UserShadowStack="false" UserShadowStackStrictMode="false" /> | ||
| </AppConfig> | ||
| </MitigationPolicy> |
1 change: 1 addition & 0 deletions
1
new exploit prot laa appcompat/System/ntoskrnl (Exploit Prot).ps1
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1 @@ | ||
| Set-ProcessMitigation -PolicyFilePath "Exploit-Prot-XMLs\ntoskrnl (Exploit Prot).xml" |