I'm excited to announce the launch of MajorPrivacy, a successor to PrivateWin10, designed to enhance privacy for Windows 10, 11, and beyond. This new tool represents a significant leap forward in ensuring your digital security and privacy. MajorPrivacy, like most of my other projects, is written in C++ and uses Qt Widgets for the user interface. It includes a new driver to add the necessary kernel features to properly enforce advanced privacy presets. In addition to the functionality offered by PrivateWin10, MajorPrivacy includes its own rule-based software restrictions, preventing unauthorized or undesired applications from running. It also has a folder protection feature that restricts access to confidential data to authorized processes. Its kernel-based process isolation ensures that authorized processes cannot be tampered with, providing the highest level of protection from other processes and even a high level of protection from adversarial processes running with administrative or system privileges. Furthermore, it offers Encrypted Protected Volumes, created using the ImDisk driver and the ImBox component, which are already known from Sandboxie's encrypted sandboxes utilizing DiskCryptor's encryption implementation. When mounted, these volumes can be protected with the File/Folder protection feature to ensure that only trusted and authorized processes can access the plaintext data. This combination provides a robust layer of security for sensitive information. In the initial BETA release 0.95.0, a few minor features from PrivateWin10, like the filtering DNS proxy, were not included but will be added later. Furthermore, additional new features will be added, including a per-process DNS filter using a hook DLL, proxy injection, and an own firewall engine implemented by the driver, allowing for more control than possible by only leveraging the Windows firewall rules. The driver’s ability to control and block registry accesses is used to prevent unauthorized alterations of protection rules and other guarded registry presets. It is available on GitHub: https://github.com/xanasoft/MajorPrivacy/releases/tag/v0.95.0 I have created a not so short demo video showcasing all the new features and listing a bunch of common use cases: https://youtu.be/NkVR5ktvqBc
I was unable to run Major Privacy. When I tried, I got the following BSOD error on Win11; All security software, excluding SBIE Plus, was disabled.
Could you provide the crash dumps? On my host and VM's this issue did not appear. EDIT: I think the issue may be with HVCI try disabling it for testing
At least for me, turning off HVCI did not work. I was still not able to run Major Privacy. I got the same BSOD and message as before. Sorry.
I am on Win 11. I do not have memory integrity turned on. I am running it inside Shadow Defender. (not really sure what to do with MPrivacy as I couldn't hear the voice properly on demo video)
I managed to reproduce a issue on my laptop with HVCI, a fix will be available in the evening once it can be signed. @n8chavez if yours is a different problem, please provide the crash dump it can be found under C:\WIndows\Minidump @stapp yea my voice is not very youtube worthy unfortunately You could try the automatically generated subtitles, they seam to be surprisingly good. @all Is there anyone winning to volunteer their voice to the cause and dub the video?
I tried creating the .dmp file three times, always set to full dump, but it was never created so I cannot share it. I don't even have a c:\Windows\minidump directory. Edit - Just so I'm clear, you want me to deactivate core isolation memory integrity right? That's what I did and still couldn't launch Major Privacy.
Yea just set up a small one 200mb is enough i think it wont impact performance but is nececery for the crashdump mechanism
Okay. I have so many questions. I watched the entire video, but I think I'll need to watch it about 10 more time to even begin to understand this. But from what I can tell, at least from my perspective, Major Privacy aims to be something like Cyberlock and a Windows firewall replacement as well as a secure vault manager among other things. Major Privacy has the ability of denying anything that's not blocked or allowed by the user, right? It would be nice if you could upload the hashes and something like Virus Total would tell whether something is clean or not. What does Major Privacy use for it's firewall; Windows Filtering Platform or does it act as a GUI for Windows' own firewall? Does Major Privacy have any soft of self-protection; process termination protection, service(s) termination protection, etc? What will Major Privacy cost? Answers to these will at least get me started on where to look as far as feedback in concerned. Thanks @DavidXanatos
> Major Privacy has the ability of denying anything that's not blocked or allowed by the user, right? It would be nice if you could upload the hashes and something like Virus Total would tell whether something is clean or not. mmh... yea I could add a user initiated check at virus total, IIRC automated usage is excluded by their TOS > What does Major Privacy use for it's firewall; Windows Filtering Platform or does it act as a GUI for Windows' own firewall? Currently it acts as a GUI for windows firewall but that will in future be changed to use WFP directly. > Does Major Privacy have any soft of self-protection; process termination protection, service(s) termination protection, etc? It uses the driver to protect its own memory from being Read or Written, as its beta it does not protect against termination but that will be armed in a final release. Also it uses in the final build it will use ZwLockRegistryKey to protect the configured rules in the registry, such that even when the driver gets unloaded (only possible from the protected GUI, once final), the settings will remain protected. > What will Major Privacy cost? I did not think that far ahead to have a actual value in my mind But I think that the free version will allow to set tweaks and control the windows firewall, while to set process, file/folder protection rules, and mater use the own WFP driver instead of (or in addition to) the windows firewall a license will be needed.
David, are you going to include a feature alike Secure Folders? Do you remember we talk about it privately?
Isn't that liekjust creating a folder rule in MP already? Help me to remember how would it behave differently.