• Increased hardening of portions of functionality previously conducted by the Windows cryptography libraries are done conducted by the Cyber Crucible kernel driver.

    • This is both general hardening, and an increase in telemetry indicating possible attacks against Windows cryptography libraries and APIs.


  • Fixed some process reports incorrectly reporting the listed certificate as “not trusted”, due to Windows certificate library functionality loss.

MD5 Hashes

service.exe = c97ce96b69c0be846af70c2359671e22 CCRRSecMon.sys (Windows7) = 475915b1881add45c6af260f82bd43b9 CCRRSecMon.sys (Windows8) = dfc09e7504b4aa73ecfb15e62f8cde86 CCRRSecMon.sys (Windows10) = 5581c7c11aa52488a1858fa728cfaf46