mirror
Changelog:
- add support of Windows 10 RS4, 1809 & 1903
- add support of Windows 10 build 18922, but seems that this build hangs on RPC interfaces enumeration
- add dumping of AlpcpLogCallbackListHead (with -alpc option)
- add dumping of CfgMgr32.dll!CM_Register_Notification registered callbacks
- add dumping of providers from mpr.dll
- add new comdline options:
- -denc - dump ntdll registered enclaves
- -dynf - dump registered dynamic functions from RtlpDynamicFunctionTable
- -dkt - dump kernel tracepoints
- -vf - dump kernel verifier tables
- -fs - dump DRIVER_OBJECTs registered with IoRegisterFsRegistrationChangeMountAware function
- lots of bugs was fixed (and added as usually)
