Notices by James Forshaw :donor: (tiraniddo@infosec.exchange)

@GossiTheDog "Gone are the days of trying to memorize and remember file names or exact words. With improved Windows search..." we can shove AI generated garbage straight from Bing to your eyeballs with no way of disabling any of it if all you wanted was finding your own files.

@GossiTheDog I still can't quite believe _this_ was their fix.

@GossiTheDog I never managed to the get the updated version working on the ARM CoPilot laptop I bought specifically for that purpose. I don't know of any current write ups other than the puffery from MS.

I'd certainly focus on the encryption, how it ties into Windows Hello, whether there's any obvious bypasses and also whether you can still hoover up the details _if_ the user has unlocked it first (as in how hard is it to access the database once the key is available).

@GossiTheDog FFS

@GossiTheDog comical :D

@GossiTheDog as far as I know mine doesn't crash but it's still yet to capture a single snapshot. I did take a look an the enclave binaries though, first (and minimal) pass seems it's "maybe better", at least no obvious bug assuming they're using it correctly.

Awesome that MS are supported and documenting VBS enclaves properly now *apropos of nothing in particular*. https://learn.microsoft.com/en-us/windows/win32/trusted-execution/vbs-enclaves-dev-guide. Also awesome that in the example exported entry point they provide they don't seem to mention how careful you need to be with the input pointer that you don't just read/write enclave memory :)

@GossiTheDog @SteveSyfuhs well I meant I bought a *urgh* Copilot+ ARM PC for it, sorry.

@SteveSyfuhs @GossiTheDog I was able to install it on my ARM device bought almost for this exact purpose (oddly they didn't ship to Canary, I had to full reinstall the OS to move back to the Dev channel). I'll try and take a poke at it now I'm not at work, see if I can get $20k out of MS :D

@GossiTheDog from the article "a sentencing hearing was postponed for a 12-year-old boy who admitted taking part in two separate incidents of disorder in Manchester because his mother had gone on holiday to Ibiza". Hmm I wonder what could possibly be the root problem of the boys misdeeds?

Okay, so I did a quick dive into sudo in Windows and here are my initial findings. https://www.tiraniddo.dev/2024/02/sudo-on-windows-quick-rundown.html

The main take away is, writing Rust won't save you from logical bugs :)