Application is x64-only
valinet opened this issue · 0 comments
valinet commented
The app core is portable, i.e. patches themselves are JavaScript/CSS injected in a web page. The infrastructure around the application is not portable at the moment:
- IAT patching in worker
- COM objects virtual table patching in worker
- Kernel mode driver is tested only on x64, but in theory should work on ARM64 as well
- Main problem is with the driver loader - GIGABYTE's driver is, of course, x64-only. Find an alternate driver and craft an exploit around it for ARM64. Alternatively, find another method altogether to install the worker in Outlook's program folder in a friction-less way.
Due to limited time on hand, I won't be taking on porting this to ARM64, but I support/encourage anyone willing to attempt a port. I suggest starting with a solid plan first which you can describe here.