There is an undocumented opcode in the MsMpEng x86 emulator that can access internal emulator commands ¯\_(ツ)_/¯ https://bugs.chromium.org/p/project-zero/issues/detail?id=1260 …
-
-
I got interested by the Mp* APIs. I also noticed just now there seems to be a distinction between untrusted and trusted .NET binaries. Hmm.
-
I *am* reversing an old version of mpengine; maybe I should switch to latest, and load the types from the old ver's private symbols.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
