From 6aa320a0fc4ad59f94fb0cb950d8b5fb93bc762d Mon Sep 17 00:00:00 2001 From: _xeroxz Date: Fri, 9 Oct 2020 00:23:33 +0000 Subject: [PATCH 1/5] Update README.md --- README.md | 57 ------------------------------------------------------- 1 file changed, 57 deletions(-) diff --git a/README.md b/README.md index 4e752bb..8d19cca 100644 --- a/README.md +++ b/README.md @@ -14,60 +14,3 @@ # Voyager - A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel) Voyager is a project designed to offer module injection and vmexit hooking for both AMD & Intel versions of Hyper-V. This project works on all versions of Windows 10-x64 (2004-1511). -The project is currently split into two individual projects, one for Intel and another for AMD. - -# Versions & Support - -:o: -> unknown/not tested. -:heavy_check_mark: -> tested & working. -:x: -> tested & not working. - -| Winver | AMD | Intel | VM | Bare Metal | -|--------|---------|-------|----|-------| -| 2004 | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | -| 1909 | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | -| 1903 | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | -| 1809 | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | -| 1807 | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :o: | -| 1803 | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :o: | -| 1709 | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :o: | -| 1703 | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :o: | -| 1607 | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :o: | -| 1511 | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :o: | - - -# Usage - -Currently the project is configured in such a way where you replace bootmgfw.efi on your EFI partition with Voyager. This requires secure boot to be disabled. If by any chance -Voyager crashes/something goes wrong simply reboot your computer since bootmgfw.efi is restored instantly. If there are any issues please let me know! - -Ensure voyager is renamed to `bootmgfw.efi` and `payload.dll` are all in the same folder as `launch.bat`. Simply run `launch.bat` as admin. Once it has executed, your pc will reboot. - -```batch -@echo off -net session >nul 2>&1 -if %errorLevel% == 0 ( - :: mount the efi partition to X: drive... - mountvol X: /S - - :: bootmgfw is a system file so we are going to strip those attributes away... - attrib -s -h X:\EFI\Microsoft\Boot\bootmgfw.efi - - :: backup bootmgfw.efi (this is needed for voyager to work since voyager restores bootmgfw.efi) - move X:\EFI\Microsoft\Boot\bootmgfw.efi X:\EFI\Microsoft\Boot\bootmgfw.efi.backup - - :: copy payload and bootmgfw.efi to EFI partition... - xcopy %~dp0bootmgfw.efi X:\EFI\Microsoft\Boot\ - xcopy %~dp0payload.dll X:\EFI\Microsoft\Boot\ - - echo press enter to reboot... - pause - - :: enable hyper-v and reboot now... - BCDEDIT /Set {current} hypervisorlaunchtype auto - shutdown /r /t 0 -) else ( - echo Failure: Please run as admin. - pause -) -``` \ No newline at end of file From c1928d47ed13355d9857262252725518254dc008 Mon Sep 17 00:00:00 2001 From: _xeroxz Date: Fri, 9 Oct 2020 00:24:23 +0000 Subject: [PATCH 2/5] Update README.md --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index 8d19cca..0dd1236 100644 --- a/README.md +++ b/README.md @@ -10,6 +10,7 @@ ### Credit * [cr4sh](https://blog.cr4.sh/) - cr4sh has done something like this a few years back. A link to it can be found [here](https://github.com/Cr4sh/s6_pcie_microblaze/tree/master/python/payloads/DmaBackdoorHv). +* [btbd](https://github.com/btbd) - offering suggestions and providing input... also stole utils.c/utils.h :thumbsup: # Voyager - A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel) From 6a814041a12e4008cc9a6901cbac37eecb2a0297 Mon Sep 17 00:00:00 2001 From: _xeroxz Date: Fri, 9 Oct 2020 00:47:21 +0000 Subject: [PATCH 3/5] Update README.md --- README.md | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/README.md b/README.md index 0dd1236..e50db92 100644 --- a/README.md +++ b/README.md @@ -15,3 +15,7 @@ # Voyager - A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel) Voyager is a project designed to offer module injection and vmexit hooking for both AMD & Intel versions of Hyper-V. This project works on all versions of Windows 10-x64 (2004-1511). + +# Usage + +Please enable hyper-v in "turn windows features on or off". Then run launch.bat as admin, this will mount the EFI partition and move some files around then reboot you. From d7dab1f674248569d883a11a924c523c31260c3e Mon Sep 17 00:00:00 2001 From: _xeroxz Date: Fri, 9 Oct 2020 00:48:35 +0000 Subject: [PATCH 4/5] Update README.md --- README.md | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/README.md b/README.md index e50db92..a574ee5 100644 --- a/README.md +++ b/README.md @@ -19,3 +19,7 @@ Voyager is a project designed to offer module injection and vmexit hooking for b # Usage Please enable hyper-v in "turn windows features on or off". Then run launch.bat as admin, this will mount the EFI partition and move some files around then reboot you. + +
+ +
\ No newline at end of file From 54f7260a37c70271b0c0c4d463c2cc026fa9e11f Mon Sep 17 00:00:00 2001 From: _xeroxz Date: Fri, 9 Oct 2020 01:10:47 +0000 Subject: [PATCH 5/5] Update README.md --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index a574ee5..f531524 100644 --- a/README.md +++ b/README.md @@ -19,6 +19,7 @@ Voyager is a project designed to offer module injection and vmexit hooking for b # Usage Please enable hyper-v in "turn windows features on or off". Then run launch.bat as admin, this will mount the EFI partition and move some files around then reboot you. +Voyager is designed to recover from a crash. The first thing Voyager will do when executed is restore bootmgfw on disk. If any complications occur during boot you can simply reboot.