![]() Retrieves the value of the specified firmware environment variable from NVRAM. ![]() Retrieves the current hardware profile for the local computer. Retrieves the local computer's name in a specified format. Retrieves the NetBIOS or DNS name of the local computer. Retrieves the NetBIOS name of the local computer. Replaces environment-variable strings with their defined values. FunctionĬhecks whether the user has opted in for SQM data collection as part of the Customer Experience Improvement Program (CEIP).Įnumerates all system firmware tables of the specified type. The following functions are used to retrieve or set system information. It also changes the registry entries to the faked serial via a internal kernel functionįor testing purposes add: disk.EnableUUID="true" to your VMware.This does NOT counter all the ways for getting the serialnumber! I will make a writeup on that later.The offsets for the spoofer can also be changed in the main.h file.It generates a random serial with a fixed length that can be changed in the main.h file.It's more like a PoC, there are many things to optimise.The driver can be fully unloaded after changing the serialnumber. Description:įakes the serialnumber for HDDs/diskdrives from kernelmode without hooking anything. This project only uses direct memory manipulation and makes it possible to fake the serials without hooking a function or having a loaded kernel module at all times. The concept is not new but other solutions require a loaded driver at all times and a kernel hook with possible instabilities. or licensing restrictions implemented in software. The initial motivation is bypassing HWID detection methods used by intrusive software like anti-cheats, etc.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |