Try out the early alpha of Process Isolation in Chrome 138. chrome://flags/#enable-process-isolation-ui then chrome://settings/system for the switch. Read known issues https://issues.chromium.org/issues?q=hotlistid:8036290%20status:open and report bugs! Especially interested in App-Compat bugs.
Post
Replies:
2
Boosts:
1
@wfh Nice work dude! I assume this locks down the ABE bypasses that work via injecting into the broker and hijacking the COM session?
Does it also apply to Chrome processes launched via CreateProcess suspended for process hollowing purposes?
@malwaretech yes it prevents that, and hollowing, and debugging. But the security properties are not yet fully hardened so right now I'm really looking for any feedback on App-Compat issues. Try it out!
