Select debug/testsigning in the boot menu or edit options and append /debug /testsigning continue boot
Show this thread
Allright, here is how to enable testsigning / kerneldebug while keeping secure boot happy. In administrator prompt enter the following(not powershell): bcdedit /set {bootmgr} displaybootmenu 1 bcdedit /set optionsedit 1 bcdedit /bootems 1 bcdedit /ems 1 reboot
-
-
-
Ive done it on systems with already enabled secure boot, but ive also had secure boot on/off since. You can even remove the EMS settings after one boot with it on. It seems to work on all windows version...
Show this thread -
I do not have systems with bitlocker enabled - but it would be interesting to try and apply the settings to a bcd hive on a bitlocker protected and locked pc. Then boot up with kernel debugging enabled over network. I would not be surpriced if you now can launch a shell by windbg
Show this thread
End of conversation
New conversation -
-
-
Everytime you tweet an msrc case gets created
-
I better name this one before other do like last time. I name it: THE DWIZZLE, you dwizzle the bitlocker to get the data and dwizzle the bootprocess so you can debug secure kernel.
- Show replies
New conversation -
-
-
Will this show up in the TPM event log (WBCL specifically) on attestation thou ?
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Do you have a blog? I would love to read more of your research.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.