Y
Hacker News
new
|
ask
|
show
|
jobs
by
ryuuchin
3010 days ago
They changed it in Windows 10 (RS1 IIRC)[1].
[1]
http://www.alex-ionescu.com/?p=323
2 comments
caf
3010 days ago
The tl;dr is that they're still using the self-referential page table trick, however the PTE_BASE is now randomised at runtime with dynamic fixups.
link
amluto
3010 days ago
If an attacker can’t find it by probing the smallish number of choices using one of many MMU layout fixes, I’d be quite surprised.
link