Major Privacy v0.95.0 BETA

Discussion in 'MajorPrivacy (successor to PrivateWin10)' started by DavidXanatos, Jul 6, 2024.

  1. DavidXanatos

    DavidXanatos Developer

    Joined:
    Sep 6, 2006
    Posts:
    2,429
    Location:
    Viena
    I'm excited to announce the launch of MajorPrivacy, a successor to PrivateWin10, designed to enhance privacy for Windows 10, 11, and beyond. This new tool represents a significant leap forward in ensuring your digital security and privacy.

    MajorPrivacy, like most of my other projects, is written in C++ and uses Qt Widgets for the user interface. It includes a new driver to add the necessary kernel features to properly enforce advanced privacy presets.

    In addition to the functionality offered by PrivateWin10, MajorPrivacy includes its own rule-based software restrictions, preventing unauthorized or undesired applications from running. It also has a folder protection feature that restricts access to confidential data to authorized processes. Its kernel-based process isolation ensures that authorized processes cannot be tampered with, providing the highest level of protection from other processes and even a high level of protection from adversarial processes running with administrative or system privileges.

    Furthermore, it offers Encrypted Protected Volumes, created using the ImDisk driver and the ImBox component, which are already known from Sandboxie's encrypted sandboxes utilizing DiskCryptor's encryption implementation. When mounted, these volumes can be protected with the File/Folder protection feature to ensure that only trusted and authorized processes can access the plaintext data. This combination provides a robust layer of security for sensitive information.

    In the initial BETA release 0.95.0, a few minor features from PrivateWin10, like the filtering DNS proxy, were not included but will be added later. Furthermore, additional new features will be added, including a per-process DNS filter using a hook DLL, proxy injection, and an own firewall engine implemented by the driver, allowing for more control than possible by only leveraging the Windows firewall rules.

    The driver’s ability to control and block registry accesses is used to prevent unauthorized alterations of protection rules and other guarded registry presets.

    It is available on GitHub: https://github.com/xanasoft/MajorPrivacy/releases/tag/v0.95.0

    I have created a not so short demo video showcasing all the new features and listing a bunch of common use cases: https://youtu.be/NkVR5ktvqBc
     
  2. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    3,606
    Location:
    Location Unknown
    I was unable to run Major Privacy. When I tried, I got the following BSOD error on Win11;

    2024-07-06 16.49.30 (5).jpg

    All security software, excluding SBIE Plus, was disabled.
     
  3. pb1

    pb1 Registered Member

    Joined:
    Apr 4, 2014
    Posts:
    1,358
    Location:
    sweden
    Got blue screen. Kernelisolator. sys was the cause aacording to Windows.
     
  4. DavidXanatos

    DavidXanatos Developer

    Joined:
    Sep 6, 2006
    Posts:
    2,429
    Location:
    Viena
    Could you provide the crash dumps?
    On my host and VM's this issue did not appear.

    EDIT: I think the issue may be with HVCI try disabling it for testing
     
    Last edited: Jul 7, 2024
  5. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    3,606
    Location:
    Location Unknown
    At least for me, turning off HVCI did not work. I was still not able to run Major Privacy. I got the same BSOD and message as before. Sorry.
     
  6. stapp

    stapp Global Moderator

    Joined:
    Jan 12, 2006
    Posts:
    25,688
    Location:
    UK
    I am on Win 11. I do not have memory integrity turned on.
    I am running it inside Shadow Defender. (not really sure what to do with MPrivacy as I couldn't hear the voice properly on demo video)
    Screenshot 2024-07-07 085715.png
     
  7. DavidXanatos

    DavidXanatos Developer

    Joined:
    Sep 6, 2006
    Posts:
    2,429
    Location:
    Viena
    I managed to reproduce a issue on my laptop with HVCI, a fix will be available in the evening once it can be signed.

    @n8chavez if yours is a different problem, please provide the crash dump it can be found under C:\WIndows\Minidump

    @stapp yea my voice is not very youtube worthy unfortunately :'(
    You could try the automatically generated subtitles, they seam to be surprisingly good.

    @all
    Is there anyone winning to volunteer their voice to the cause and dub the video?
     
  8. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    3,606
    Location:
    Location Unknown
    I tried creating the .dmp file three times, always set to full dump, but it was never created so I cannot share it. I don't even have a c:\Windows\minidump directory.

    Edit - Just so I'm clear, you want me to deactivate core isolation memory integrity right? That's what I did and still couldn't launch Major Privacy.
     
  9. stapp

    stapp Global Moderator

    Joined:
    Jan 12, 2006
    Posts:
    25,688
    Location:
    UK
    @n8chavez
    Do you have a page file? You may need one to produce a dump file I think.
     
  10. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    3,606
    Location:
    Location Unknown
    Oh, no I don't. I have 64GB of ram here, so I don't need it.
     
  11. stapp

    stapp Global Moderator

    Joined:
    Jan 12, 2006
    Posts:
    25,688
    Location:
    UK
  12. DavidXanatos

    DavidXanatos Developer

    Joined:
    Sep 6, 2006
    Posts:
    2,429
    Location:
    Viena
    Yea just set up a small one 200mb is enough i think it wont impact performance but is nececery for the crashdump mechanism
     
  13. stapp

    stapp Global Moderator

    Joined:
    Jan 12, 2006
    Posts:
    25,688
    Location:
    UK
    Just to mention the importance of the page file for dump files (from the link above)
     
  14. DavidXanatos

    DavidXanatos Developer

    Joined:
    Sep 6, 2006
    Posts:
    2,429
    Location:
    Viena
    Please re download the release, the driver should now work with HVCI enabled
     
  15. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    3,606
    Location:
    Location Unknown
    Awesome! I was able to launch this build just fine. I'll test it when I have time.
     
  16. pb1

    pb1 Registered Member

    Joined:
    Apr 4, 2014
    Posts:
    1,358
    Location:
    sweden
    Worked now!
     
  17. stapp

    stapp Global Moderator

    Joined:
    Jan 12, 2006
    Posts:
    25,688
    Location:
    UK
    Opens without issues on Win 10 for me too.
     
  18. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    3,606
    Location:
    Location Unknown
    Okay. I have so many questions. I watched the entire video, but I think I'll need to watch it about 10 more time to even begin to understand this. But from what I can tell, at least from my perspective, Major Privacy aims to be something like Cyberlock and a Windows firewall replacement as well as a secure vault manager among other things.

    • Major Privacy has the ability of denying anything that's not blocked or allowed by the user, right? It would be nice if you could upload the hashes and something like Virus Total would tell whether something is clean or not.
    • What does Major Privacy use for it's firewall; Windows Filtering Platform or does it act as a GUI for Windows' own firewall?
    • Does Major Privacy have any soft of self-protection; process termination protection, service(s) termination protection, etc?
    • What will Major Privacy cost?
    Answers to these will at least get me started on where to look as far as feedback in concerned.

    Thanks @DavidXanatos
     
  19. DavidXanatos

    DavidXanatos Developer

    Joined:
    Sep 6, 2006
    Posts:
    2,429
    Location:
    Viena
    > Major Privacy has the ability of denying anything that's not blocked or allowed by the user, right? It would be nice if you could upload the hashes and something like Virus Total would tell whether something is clean or not.

    mmh... yea I could add a user initiated check at virus total, IIRC automated usage is excluded by their TOS

    > What does Major Privacy use for it's firewall; Windows Filtering Platform or does it act as a GUI for Windows' own firewall?

    Currently it acts as a GUI for windows firewall but that will in future be changed to use WFP directly.

    > Does Major Privacy have any soft of self-protection; process termination protection, service(s) termination protection, etc?

    It uses the driver to protect its own memory from being Read or Written, as its beta it does not protect against termination but that will be armed in a final release.
    Also it uses in the final build it will use ZwLockRegistryKey to protect the configured rules in the registry, such that even when the driver gets unloaded (only possible from the protected GUI, once final), the settings will remain protected.

    > What will Major Privacy cost?

    I did not think that far ahead to have a actual value in my mind :argh:

    But I think that the free version will allow to set tweaks and control the windows firewall, while to set process, file/folder protection rules, and mater use the own WFP driver instead of (or in addition to) the windows firewall a license will be needed.
     
    Last edited: Jul 13, 2024
  20. Mr.X

    Mr.X Registered Member

    Joined:
    Aug 10, 2013
    Posts:
    5,065
    Location:
    .
    David, are you going to include a feature alike Secure Folders?
    Do you remember we talk about it privately?
     
  21. DavidXanatos

    DavidXanatos Developer

    Joined:
    Sep 6, 2006
    Posts:
    2,429
    Location:
    Viena
    Isn't that liekjust creating a folder rule in MP already? Help me to remember how would it behave differently.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.