Skip to content

Commit

Permalink
Tested and tagged
Browse files Browse the repository at this point in the history
  • Loading branch information
@MHaggis
MHaggis committed Sep 11, 2024
1 parent d160212 commit 091166e
Show file tree
Hide file tree
Showing 17 changed files with 17 additions and 0 deletions.
1 change: 1 addition & 0 deletions yaml/07c57c69-c8d7-40cf-8bcc-612671427044.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -164,5 +164,6 @@ KnownVulnerableSamples:
Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert High Assurance
Code Signing CA,1
Version: 1
LoadsDespiteHVCI: 'TRUE'
Tags:
- tboflhelper.sys
1 change: 1 addition & 0 deletions yaml/0f59ce3b-20ac-41ba-8010-2abc74827eb8.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -156,6 +156,7 @@ KnownVulnerableSamples:
Issuer: C=US, ST=Washington, L=Redmond, O=Microsoft Corporation, CN=Microsoft
Windows Third Party Component CA 2014
Version: 1
LoadsDespiteHVCI: 'FALSE'
- Authentihash:
MD5: d69ba595980ae05f25cf1a43195d7b1d
SHA1: e58a98dc42fb6c4817acd01c2049258f2dfdff0e
Expand Down
1 change: 1 addition & 0 deletions yaml/0f64bf7a-2ef2-45ea-af7d-4e7c87d98777.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -255,5 +255,6 @@ KnownVulnerableSamples:
- SerialNumber: 7c4ba269a79bfcba77f289aa
Issuer: C=BE, O=GlobalSign nv,sa, CN=GlobalSign CodeSigning CA , G3
Version: 1
LoadsDespiteHVCI: 'TRUE'
Tags:
- psmounterex.sys
1 change: 1 addition & 0 deletions yaml/1d2cdef1-de44-4849-80e5-e2fa288df681.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -242,6 +242,7 @@ KnownVulnerableSamples:
Issuer: C=US, ST=CA, L=Santa Clara, O=Intel Corporation, CN=Intel External Issuing
CA 7B
Version: 1
LoadsDespiteHVCI: 'FALSE'
- Authentihash:
MD5: 1789a16d20ca2b55f491ad71848166a2
SHA1: 2cbfe4ad0e1231ff3e19c19ca9311d952ce170b7
Expand Down
1 change: 1 addition & 0 deletions yaml/30e8d598-2c60-49e4-953b-a6f620da1371.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -149,5 +149,6 @@ KnownVulnerableSamples:
Issuer: C=US, O=DigiCert, Inc., CN=DigiCert Trusted G4 Code Signing RSA4096
SHA384 2021 CA1
Version: 1
LoadsDespiteHVCI: 'TRUE'
Tags:
- wsftprm.sys
1 change: 1 addition & 0 deletions yaml/3a9ea9a6-e5e3-439a-b892-1f78dd990099.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -151,5 +151,6 @@ KnownVulnerableSamples:
Issuer: C=US, ST=Washington, L=Redmond, O=Microsoft Corporation, CN=Microsoft
Windows Third Party Component CA 2012
Version: 1
LoadsDespiteHVCI: 'TRUE'
Tags:
- SeasunProtect.sys
1 change: 1 addition & 0 deletions yaml/424a387e-735e-49d1-99de-f067dcf1c3e9.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -124,5 +124,6 @@ KnownVulnerableSamples:
Issuer: C=US, ST=Washington, L=Redmond, O=Microsoft Corporation, CN=Microsoft
Windows Third Party Component CA 2014
Version: 1
LoadsDespiteHVCI: 'FALSE'
Tags:
- TSDRVX64.sys
1 change: 1 addition & 0 deletions yaml/48aeea9b-7812-4b25-9835-baaebe7dc551.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -133,5 +133,6 @@ KnownVulnerableSamples:
Issuer: C=US, ST=Washington, L=Redmond, O=Microsoft Corporation, CN=Microsoft
Windows Third Party Component CA 2014
Version: 1
LoadsDespiteHVCI: 'FALSE'
Tags:
- ADRMDRVSYS.sys
1 change: 1 addition & 0 deletions yaml/4cb95b41-43b4-4806-b536-ae5fd8c76b0e.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -216,5 +216,6 @@ KnownVulnerableSamples:
Issuer: C=US, O=DigiCert, Inc., CN=DigiCert Trusted G4 Code Signing RSA4096
SHA384 2021 CA1
Version: 1
LoadsDespiteHVCI: 'TRUE'
Tags:
- ViveRRAudio.sys
1 change: 1 addition & 0 deletions yaml/4d365dd0-34c3-492e-a2bd-c16266796ae5.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -171,6 +171,7 @@ KnownVulnerableSamples:
Issuer: C=US, ST=Washington, L=Redmond, O=Microsoft Corporation, CN=Microsoft
Windows Third Party Component CA 2014
Version: 1
LoadsDespiteHVCI: 'FALSE'
- Authentihash:
MD5: 86be5dbedcfcd517b9b602436cd985eb
SHA1: 7a9981f1bca18e2f624fe806c753a14dfd970c4e
Expand Down
1 change: 1 addition & 0 deletions yaml/5076e737-6744-4266-bef7-bceda65050d6.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -171,5 +171,6 @@ KnownVulnerableSamples:
Issuer: C=US, ST=Washington, L=Redmond, O=Microsoft Corporation, CN=Microsoft
Windows Third Party Component CA 2014
Version: 1
LoadsDespiteHVCI: 'FALSE'
Tags:
- hw.sys
1 change: 1 addition & 0 deletions yaml/8a1a4a5d-3e41-4539-80cd-0cb751f7fab3.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -173,5 +173,6 @@ KnownVulnerableSamples:
https://www.verisign.com/rpa (c)10, CN=VeriSign Class 3 Code Signing 2010
CA
Version: 1
LoadsDespiteHVCI: 'TRUE'
Tags:
- ProcObsrvesx.sys
1 change: 1 addition & 0 deletions yaml/a02ee964-a21e-4b08-9c98-a730c90bfd53.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -190,6 +190,7 @@ KnownVulnerableSamples:
Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert EV Code Signing
CA (SHA2)
Version: 1
LoadsDespiteHVCI: 'TRUE'
- Filename: LMIinfo.sys
MD5: d4f7c14e92b36c341c41ae93159407dd
SHA1: eac1b9e1848dc455ed780292f20cd6a0c38a3406
Expand Down
1 change: 1 addition & 0 deletions yaml/c44e6197-efab-49d2-8a5f-04ae4a0f0ea0.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -187,6 +187,7 @@ KnownVulnerableSamples:
Issuer: C=US, O=Symantec Corporation, OU=Symantec Trust Network, CN=Symantec
Class 3 Extended Validation Code Signing CA , G2
Version: 1
LoadsDespiteHVCI: 'TRUE'
Tags:
- jnprva.sys
- neofltr.sys
1 change: 1 addition & 0 deletions yaml/c8619f49-8e23-489b-9878-53d27533da15.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -134,5 +134,6 @@ KnownVulnerableSamples:
Issuer: C=US, ST=Washington, L=Redmond, O=Microsoft Corporation, CN=Microsoft
Windows Third Party Component CA 2014
Version: 1
LoadsDespiteHVCI: 'FALSE'
Tags:
- pxitrig64.sys
1 change: 1 addition & 0 deletions yaml/d9e9fab2-6b64-4c14-b1ec-7af1923c0773.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -34,5 +34,6 @@ KnownVulnerableSamples:
FileVersion: ''
MachineType: ''
OriginalFilename: ''
LoadsDespiteHVCI: 'TRUE'
Tags:
- AccelLid.sys
1 change: 1 addition & 0 deletions yaml/ea0e7351-b65c-4c5a-9863-83b9d5efcec3.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -196,5 +196,6 @@ KnownVulnerableSamples:
https://www.verisign.com/rpa (c)10, CN=VeriSign Class 3 Code Signing 2010
CA
Version: 1
LoadsDespiteHVCI: 'TRUE'
Tags:
- ampa.sys

0 comments on commit 091166e

Please sign in to comment.