Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
Skip to content
/ nohv Public

Kernel driver for detecting Intel VT-x hypervisors.

License

Notifications You must be signed in to change notification settings

jonomango/nohv

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

43 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

nohv

nohv is a kernel driver for detecting Intel VT-x hypervisors. It is useful for benchmarking your hypervisor against common vm-detections.

Usage

To clone the repo:

git clone --recursive https://github.com/jonomango/nohv.git

nohv is a Windows driver built with MSVC. It requires Visual Studio and the WDK for compilation.

Once compiled, nohv.sys must be loaded with SEH support. This means that you can't manual map the driver (unless you're a wizard) since it'll crash the moment an exception is thrown. I recommend restarting Windows while holding SHIFT and disabling Driver Signature Enforcement, then load the driver normally (OSR Loader if you're lazy) and hope you don't BSOD 😃.

Remarks

This is a fairly old project of mine and it's missing a lot of common detections (such as NMI checks). Also this WILL bluescreen you if your hypervisor sucks. Make sure to test this BEFORE loading your hypervisor, as well as after.