From e68ef387259fb7d760ca3332912bbfede3b8e0d0 Mon Sep 17 00:00:00 2001
From: Gustave Monce <gustave.monce@outlook.com>
Date: Mon, 23 Dec 2024 15:13:36 +0100
Subject: [PATCH] Backup

---
 .../BootUnllockAndRootAccessPatchScript.pds   | 100 ++--------
 Patcher/AutoPatcher/ScriptEngine.cs           |   2 +-
 WPinternals/PatchDefinitions.10240-only.xml   | 180 ++++++++++++++++++
 .../PatchDefinitions.10240-only.xml.bak       | 180 ++++++++++++++++++
 WPinternals/PatchDefinitions.modified.xml     | 176 +++++++++++++++++
 WPinternals/PatchDefinitions.modified.xml.bak | 175 +++++++++++++++++
 6 files changed, 728 insertions(+), 85 deletions(-)
 create mode 100644 WPinternals/PatchDefinitions.10240-only.xml
 create mode 100644 WPinternals/PatchDefinitions.10240-only.xml.bak
 create mode 100644 WPinternals/PatchDefinitions.modified.xml
 create mode 100644 WPinternals/PatchDefinitions.modified.xml.bak

diff --git a/Patcher/AutoPatcher/BootUnllockAndRootAccessPatchScript.pds b/Patcher/AutoPatcher/BootUnllockAndRootAccessPatchScript.pds
index fbe7935..9801ea3 100644
--- a/Patcher/AutoPatcher/BootUnllockAndRootAccessPatchScript.pds
+++ b/Patcher/AutoPatcher/BootUnllockAndRootAccessPatchScript.pds
@@ -86,56 +86,47 @@ PatchDefinition Name="RootAccess-MainOS" VersionFrom="EFIESP\Windows\System32\Bo
         JumpToExport "SeAccessCheckWithHint"
         CreateLabel "SeAccessCheckWithHint"
         
-        FindFunctionCall R0 = "ADD R0, SP, #0x7C" R1 = "MOV R1, R?"
+        FindInstructionPattern "MOV R3, R?; MOV R1, R?; BL ?" InstructionIndex = 2
         JumpToTarget
-        CreateLabel "SepFilterToDiscretionary"
+        CreateLabel "SepMandatoryIntegrityCheck"
         
-        JumpToReference R0 = "ADDS R0, R?, #0xD0"
+        JumpToReference R0 = "ADDS R0, R?, #0x118"
         FindPreviousInstruction "PUSH"
         FindPreviousInstruction "PUSH"
         CreateLabel "SeAccessCheckByType"
         
-        FindFunctionCall R0 = "ADDS R0, R?, #0xF8" R1 = "MOV R1, R?" R2 = "LDR R2, [R?,#0x28]" R3 = "MOV R3, R?"
+        FindFunctionCall R0 = "ADDS R0, R?, #0x108" R1 = "MOV R1, R?" R2 = "LDR R2, [R?,#0x40]" R3 = "MOV R3, R?"
         JumpToTarget
         CreateLabel "SepConstrainByMandatory"
     
         JumpBack // to SeAccessCheckByType
-        JumpBack // to SepFilterToDiscretionary
+        JumpBack // to SepMandatoryIntegrityCheck
         
         JumpToReference R1 = "LDR R1, [R?,#8]"
         FindPreviousInstruction "PUSH"
         CreateLabel "SepCommonAccessCheckEx"
         
-        FindFunctionCall Result = "STR R0, [SP,#0xD4]"
+        FindFunctionCall Result = "STR R0, [SP,#0x88]"
         JumpToTarget
         CreateLabel "SepAccessCheckEx"
     
         JumpBack // to SepCommonAccessCheckEx
-        JumpBack // to SepFilterToDiscretionary
+        JumpBack // to SepMandatoryIntegrityCheck
         
-        JumpToReference R0 = "ADDS R0, R?, #0x130"
+        JumpToReference R0 = "ADDS R0, R?, #0x170"
         FindPreviousInstruction "PUSH"
         FindPreviousInstruction "PUSH"
         CreateLabel "SepAccessCheckAndAuditAlarm"
         
-        FindFunctionCall R0 = "LDR R0, [R?,#0x130]" R1 = "MOV R1, R?" R2 = "LDR R2, [R?,#0x50]" R3 = "MOV R3, R?"
-        JumpToTarget
-        CreateLabel "SepConstrainByConstraintMask"
-        FindNextConditionalJump
-        JumpToTarget
-        CreateLabel "SepConstrainByConstraintMask_FunctionChunk01"
-        
-        JumpBack // to SepConstrainByConstraintMask
-        JumpBack // to SepAccessCheckAndAuditAlarm
-        JumpBack // to SepFilterToDiscretionary
-        JumpBack // to SeAccessCheckWithHint
-        
-        FindFunctionCall R0 = "ADD R0, SP, #0x88" R1 = "MOV R1, R?"
+        FindFunctionCall R0 = "ADDS R0, R?, #0x160" R1 = "MOV R1, R?"
         JumpToTarget
         CreateLabel "SepMandatoryToDiscretionary"
         JumpBack
         
-        FindFunctionCall Result = "STR R0, [SP,#0x70]"
+        JumpBack // to SepMandatoryIntegrityCheck
+        JumpBack // to SeAccessCheckWithHint
+        
+        FindFunctionCall R0 = "LDR R0, [SP, #0x84]" R1 = "MOVS R1, #0"
         JumpToTarget
         CreateLabel "SepAccessCheck"
         
@@ -196,24 +187,6 @@ PatchDefinition Name="RootAccess-MainOS" VersionFrom="EFIESP\Windows\System32\Bo
             FindNextValue 0xC0000022
             FindNextConditionalJump
             MakeJumpUnconditional
-            
-            // Patch 7:
-            FindNextValue 0xC0000022
-            FindStore
-            FindPreviousConditionalJump
-            MakeJumpUnconditional
-            
-            // Patch 8:
-            FindNextValue 0xC0000022
-            JumpToReference
-            ClearInstruction
-            JumpBack
-            
-            // Patch 9:
-            FindNextValue 0xC0000022
-            JumpToReference
-            ClearInstruction
-            JumpBack
         
         JumpToLabel "SepAccessCheckAndAuditAlarm"
         
@@ -294,14 +267,6 @@ PatchDefinition Name="RootAccess-MainOS" VersionFrom="EFIESP\Windows\System32\Bo
                 BX LR
             EndPatch
             
-        JumpToLabel "SepMandatoryToDiscretionary"
-            
-            // Patch 20:
-            PatchCode
-                MOVS R0, #0
-                BX LR
-            EndPatch
-            
         JumpToLabel "SepAccessCheckEx"
         
             // Patch 21:
@@ -451,39 +416,6 @@ PatchDefinition Name="RootAccess-MainOS" VersionFrom="EFIESP\Windows\System32\Bo
                 B TargetPatch40
             EndPatch
             
-        JumpToLabel "SepFilterToDiscretionary"
-    
-            // Patch 41:
-            PatchCode
-                MOVS R0, #0
-                BX LR
-            EndPatch
-                
-        JumpToLabel "SepConstrainByConstraintMask_FunctionChunk01"
-            
-            // Patch 42:
-            FindNextInstruction "TST"
-            FindNextInstruction "CBNZ"
-            JumpToTarget
-            CreateLabel "TargetPatch42"
-            JumpBack
-            FindPreviousInstruction "BEQ"
-            PatchCode
-                B TargetPatch42
-            EndPatch
-            
-            // Patch 43:
-            FindNextInstruction "TST"
-            FindNextInstruction "CBNZ"
-            JumpToTarget
-            CreateLabel "TargetPatch43"
-            JumpBack
-            FindPreviousInstruction "BEQ"
-            FindPreviousInstruction "BEQ" // This one is actually not necessary. Kept here for consistency.
-            PatchCode
-                B TargetPatch43
-            EndPatch
-            
         PatchChecksum
     
 PatchDefinition Name="SecureBootHack-MainOS" VersionFrom="EFIESP\Windows\System32\Boot\mobilestartup.efi"
@@ -502,13 +434,13 @@ PatchDefinition Name="SecureBootHack-MainOS" VersionFrom="EFIESP\Windows\System3
     
     PatchFile Path="Windows\System32\ci.dll"
     
-        JumpToImport "PsGetProcessSignatureLevel"
+        JumpToImport "_wcsupr"
         JumpToReference
-        CreateLabel "PsGetProcessSignatureLevelWrapper"
+        CreateLabel "_wcsuprWrapper"
         JumpToReference
         FindPreviousInstruction "PUSH.W"
         CreateLabel "CipReportAndReprieveUMCIFailure"
-        FindNextInstruction "TST.W"
+        FindInstructionPattern "MOVS R?, #1; LDR R?, [R?]; TST R?, R?" InstructionIndex = 2
         FindNextConditionalJump
         MakeJumpUnconditional "BNE" // BNE -> B, BEQ -> NOP
         PatchChecksum
diff --git a/Patcher/AutoPatcher/ScriptEngine.cs b/Patcher/AutoPatcher/ScriptEngine.cs
index 53ff8c9..909aa60 100644
--- a/Patcher/AutoPatcher/ScriptEngine.cs
+++ b/Patcher/AutoPatcher/ScriptEngine.cs
@@ -1461,7 +1461,7 @@ namespace Patcher
             }
             else
             {
-                throw new ScriptExecutionException("Could not jump to target: " + CurrentInstruction.Operand);
+                throw new ScriptExecutionException("Could not jump to target: " + CurrentInstruction.Operand + " - " + AddressString);
             }
         }
 
diff --git a/WPinternals/PatchDefinitions.10240-only.xml b/WPinternals/PatchDefinitions.10240-only.xml
new file mode 100644
index 0000000..6493e3d
--- /dev/null
+++ b/WPinternals/PatchDefinitions.10240-only.xml
@@ -0,0 +1,180 @@
+<?xml version="1.0" encoding="utf-8"?>
+
+<!--
+Copyright(c) 2018, Rene Lergner - @Heathcliff74xda
+
+Permission is hereby granted, free of charge, to any person obtaining a
+copy of this software and associated documentation files(the "Software"),
+to deal in the Software without restriction, including without limitation
+the rights to use, copy, modify, merge, publish, distribute, sublicense,
+and / or sell copies of the Software, and to permit persons to whom the
+Software is furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
+FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER
+DEALINGS IN THE SOFTWARE.
+-->
+
+<PatchDefinitions>
+  <PatchDefinition Name="RootAccess-MainOS">
+    <TargetVersions>
+      <TargetVersion Description="10.0.10240.16384">
+        <TargetFiles>
+          <TargetFile Path="Windows\System32\sspisrv.dll" HashOriginal="EE5866A17A24CA80A3210131E1A378032E55A00C" HashPatched="59EB4839A13E38E53DE6791C6BF0BF0A54E19333">
+            <Patches>
+              <Patch Address="0x000024AC" OriginalBytes="2DE970480DF10C0B" PatchedBytes="0121016000207047" />
+              <Patch Address="0x00000148" OriginalBytes="FE9F0000" PatchedBytes="B85A0100" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\NtlmShared.dll" HashOriginal="6BF83EEBBB3BF0886473D8D09348D4C10AC28387" HashPatched="350A9F65701C113D198F8AD4F6684C95E5A97623">
+            <Patches>
+              <Patch Address="0x00002BF8" OriginalBytes="2DE9F04F" PatchedBytes="01207047" />
+              <Patch Address="0x00000150" OriginalBytes="9BC80000" PatchedBytes="EEF60000" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\pacmanserver.dll" HashOriginal="667673B16A4C2E95C9AA71E7398D066008A9845A" HashPatched="1B04DA3FB8CC5DE9656CAD256C00CE450E23A572">
+            <Patches>
+              <Patch Address="0x000C0FB4" OriginalBytes="2DE970480DF10C0B8AF7" PatchedBytes="6FF00041016000207047" />
+              <Patch Address="0x00000150" OriginalBytes="D3671000" PatchedBytes="723B1000" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\mscoree.dll" HashOriginal="222E73E695D4016F85BBD40DA2A3524E71422D6F" HashPatched="659B23061601921F8C3DCD3A6823AE080ECD6146">
+            <Patches>
+              <Patch Address="0x00005F98" OriginalBytes="2DE9F048" PatchedBytes="00207047" />
+              <Patch Address="0x00000148" OriginalBytes="392F0100" PatchedBytes="8B640100" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\DeploymentExt.dll" HashOriginal="4490A1AECF60876F27B53BFBA471890D4E0CAA9A" HashPatched="22242F327527CA42A88F200C0EB649B58EEDFC9B">
+            <Patches>
+              <Patch Address="0x0004F922" OriginalBytes="6BB9" PatchedBytes="0DE0" />
+              <Patch Address="0x00000150" OriginalBytes="D0AA0900" PatchedBytes="72D10900" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\ntoskrnl.exe" HashOriginal="68FF93E1EAB6E263B7A65048C9385135759EF9FB" HashPatched="52C1400223D1FCA6862CDA22F145DA20F71005B7">
+            <Patches>
+              <Patch Address="0x00078EF6" OriginalBytes="6ED1" PatchedBytes="6EE0" />
+              <Patch Address="0x00079138" OriginalBytes="21B9" PatchedBytes="04E0" />
+              <Patch Address="0x00079156" OriginalBytes="29B9" PatchedBytes="05E0" />
+              <Patch Address="0x0007960C" OriginalBytes="12B9" PatchedBytes="02E0" />
+              <Patch Address="0x00079824" OriginalBytes="0BD2" PatchedBytes="0BE0" />
+              <Patch Address="0x0029EC88" OriginalBytes="E1B9" PatchedBytes="1CE0" />
+              <Patch Address="0x0029F198" OriginalBytes="09BB" PatchedBytes="21E0" />
+              <Patch Address="0x0029F21E" OriginalBytes="5BB3" PatchedBytes="2BE0" />
+              <Patch Address="0x001A4648" OriginalBytes="E3B9" PatchedBytes="00BF" />
+              <Patch Address="0x0007A548" OriginalBytes="00F01782" PatchedBytes="00F017BA" />
+              <Patch Address="0x00279EC0" OriginalBytes="0FB42DE9" PatchedBytes="01207047" />
+              <Patch Address="0x002F1174" OriginalBytes="40F0B180" PatchedBytes="AFF30080" />
+              <Patch Address="0x003B6EB4" OriginalBytes="3AF46882" PatchedBytes="3AF768BA" />
+              <Patch Address="0x003B6EE4" OriginalBytes="E8D1" PatchedBytes="00BF" />
+              <Patch Address="0x0003A3E8" OriginalBytes="2DE9FE4F" PatchedBytes="01207047" />
+              <Patch Address="0x0004AFC0" OriginalBytes="2DE90048" PatchedBytes="00207047" />
+              <Patch Address="0x001A41AA" OriginalBytes="BAF1007F" PatchedBytes="FFF776BF" />
+              <Patch Address="0x001A4268" OriginalBytes="13B1" PatchedBytes="02E0" />
+              <Patch Address="0x001A42E0" OriginalBytes="C3D1" PatchedBytes="00BF" />
+              <Patch Address="0x001A431E" OriginalBytes="A4D1" PatchedBytes="00BF" />
+              <Patch Address="0x001A43E2" OriginalBytes="7FF442AF" PatchedBytes="AFF30080" />
+              <Patch Address="0x001A4420" OriginalBytes="3FF43BAE" PatchedBytes="FFF73BBE" />
+              <Patch Address="0x001A4458" OriginalBytes="3FF41FAE" PatchedBytes="FFF71FBE" />
+              <Patch Address="0x001A409E" OriginalBytes="00F0EC81" PatchedBytes="AFF30080" />
+              <Patch Address="0x0007AD5E" OriginalBytes="40F0FB80" PatchedBytes="AFF30080" />
+              <Patch Address="0x0007AE50" OriginalBytes="40F0B580" PatchedBytes="AFF30080" />
+              <Patch Address="0x0007AE5E" OriginalBytes="68D0" PatchedBytes="00BF" />
+              <Patch Address="0x0007AD74" OriginalBytes="4DD1" PatchedBytes="00BF" />
+              <Patch Address="0x0007AE74" OriginalBytes="CDD1" PatchedBytes="00BF" />
+              <Patch Address="0x0007AEFA" OriginalBytes="3FF443AF" PatchedBytes="FFF743BF" />
+              <Patch Address="0x0007AD90" OriginalBytes="00F03C81" PatchedBytes="AFF30080" />
+              <Patch Address="0x0012DF4C" OriginalBytes="01D0" PatchedBytes="01E0" />
+              <Patch Address="0x0012DF52" OriginalBytes="BAF1007F" PatchedBytes="4CF717BF" />
+              <Patch Address="0x0012DFCA" OriginalBytes="22D0" PatchedBytes="22E0" />
+              <Patch Address="0x0012DFE8" OriginalBytes="03D1" PatchedBytes="03E0" />
+              <Patch Address="0x0012DFF6" OriginalBytes="03D0" PatchedBytes="03E0" />
+              <Patch Address="0x0011D9CC" OriginalBytes="0FD0" PatchedBytes="0BE0" />
+              <Patch Address="0x0011D962" OriginalBytes="12D0" PatchedBytes="08E0" />
+              <Patch Address="0x0004AFE4" OriginalBytes="2DE90048" PatchedBytes="00207047" />
+              <Patch Address="0x0011D8B8" OriginalBytes="11D0" PatchedBytes="09E0" />
+              <Patch Address="0x0011D916" OriginalBytes="0BD0" PatchedBytes="11E0" />
+              <Patch Address="0x00000160" OriginalBytes="5B875800" PatchedBytes="0B515900" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+        </TargetFiles>
+      </TargetVersion>
+    </TargetVersions>
+  </PatchDefinition>
+  <PatchDefinition Name="SecureBootHack-V1-EFIESP">
+    <TargetVersions>
+      <TargetVersion Description="10.0.10240.16384">
+        <TargetFiles>
+          <TargetFile Path="Windows\System32\boot\mobilestartup.efi" HashOriginal="240B7F0B6BC5CD923CBEAEE85DBBA1F240C96C3B" HashPatched="632C2C27A5791CE5A1D1F3C1A7641F057919DCE8">
+            <Patches>
+              <Patch Address="0x000285F8" OriginalBytes="2DE9F04F" PatchedBytes="00207047" />
+              <Patch Address="0x00000138" OriginalBytes="E5280C00" PatchedBytes="37570C00" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="efi\boot\bootarm.efi" HashOriginal="DC6F06F3FB84841722963AF9A9D6D370C9CE6658" HashPatched="B29975C8814BFBB97C00F2C3A6D678B8A6C05C70">
+            <Patches>
+              <Patch Address="0x00045318" OriginalBytes="2DE9F04F" PatchedBytes="00207047" />
+              <Patch Address="0x00000138" OriginalBytes="E8C10D00" PatchedBytes="3AF00D00" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+        </TargetFiles>
+      </TargetVersion>
+    </TargetVersions>
+  </PatchDefinition>
+  <PatchDefinition Name="SecureBootHack-V2-EFIESP">
+    <TargetVersions>
+      <TargetVersion Description="10.0.10240.16384">
+        <TargetFiles>
+          <TargetFile Path="Windows\System32\boot\mobilestartup.efi" HashOriginal="240B7F0B6BC5CD923CBEAEE85DBBA1F240C96C3B" HashPatched="14EE38E1229C8D770493A09A8CDC6B044A694720">
+            <Patches>
+              <Patch Address="0x000285F8" OriginalBytes="2DE9F04F" PatchedBytes="00207047" />
+              <Patch Address="0x000733D8" OriginalBytes="2DE9F048" PatchedBytes="00207047" />
+              <Patch Address="0x000AC198" OriginalBytes="4D00610073007300530074006F00720061006700650046006C00610067000000" PatchedBytes="4800650061007400680063006C00690066006600370034004D0053004D000000" />
+              <Patch Address="0x00001EBC" OriginalBytes="03D1" PatchedBytes="00BF" />
+              <Patch Address="0x00001EC2" OriginalBytes="6AF0DDFC" PatchedBytes="63F029BB" />
+              <Patch Address="0x00065514" OriginalBytes="2DE930480DF1080B9BF7B6FAADF50B7D0023039304932C4B0DF1220040F206221B8800210024ADF820309CF76DF900238DF80830012305932149204802AB009305AB06AA9DF7A6F9002805DB059B012B02D19DF8083053BB08A800F037F80446002C24DB03AA04A908A800F097F80446039D002C04DA134B9C4214D1002412E0049B0095C6F794FA0446002C0BDB01238DF8083002AB0A4908480093012303229DF7BCF9044615B12846CFF74FF820460DF50B7D9BF76CFA" PatchedBytes="0020704778462549A0EB010070B481B00446234B04EB0300224B04EB030103220023009343F2315604EB0605A8471E4904EB0105A8470646012E04D001201B4904EB0105A8471A4804EB00010968D1F8AC500EA000216A46A847009D6D68002D01D1009DAD68A847012E04D030460F4904EB0105A8470F4E04EB0605A84742F6C72604EB060001B070BC00479D5B08F90493FB408FE04AEE3B1A784B1C61060098E30A00847F0A00BD2E0800652E0800A47B0E0081D40600" />
+              <Patch Address="0x00000138" OriginalBytes="E5280C00" PatchedBytes="41FE0C00" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+        </TargetFiles>
+      </TargetVersion>
+    </TargetVersions>
+  </PatchDefinition>
+  <PatchDefinition Name="SecureBootHack-MainOS">
+    <TargetVersions>
+      <TargetVersion Description="10.0.10240.16384">
+        <TargetFiles>
+          <TargetFile Path="Windows\System32\BOOT\winload.efi" HashOriginal="50100B83CB85A0AEEBD7B70F87360513C1B7E255" HashPatched="37B955E6FFDB685CC9176BE7BBF712C02BA2CF2B">
+            <Patches>
+              <Patch Address="0x00037E1C" OriginalBytes="2DE9F04F" PatchedBytes="00207047" />
+              <Patch Address="0x00000138" OriginalBytes="7C330E00" PatchedBytes="CE610E00" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\ci.dll" HashOriginal="5738D592BDA3AB98FFB5F7C8018EA19CA2B644C3" HashPatched="4139D22AAAC3A8F66C377D0C022142E20DF60154">
+            <Patches>
+              <Patch Address="0x000244A4" OriginalBytes="14D1" PatchedBytes="14E0" />
+              <Patch Address="0x00000148" OriginalBytes="04AF0800" PatchedBytes="04BE0800" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+        </TargetFiles>
+      </TargetVersion>
+    </TargetVersions>
+  </PatchDefinition>
+</PatchDefinitions>
\ No newline at end of file
diff --git a/WPinternals/PatchDefinitions.10240-only.xml.bak b/WPinternals/PatchDefinitions.10240-only.xml.bak
new file mode 100644
index 0000000..8c101ef
--- /dev/null
+++ b/WPinternals/PatchDefinitions.10240-only.xml.bak
@@ -0,0 +1,180 @@
+<?xml version="1.0" encoding="utf-8"?>
+
+<!--
+Copyright(c) 2018, Rene Lergner - @Heathcliff74xda
+
+Permission is hereby granted, free of charge, to any person obtaining a
+copy of this software and associated documentation files(the "Software"),
+to deal in the Software without restriction, including without limitation
+the rights to use, copy, modify, merge, publish, distribute, sublicense,
+and / or sell copies of the Software, and to permit persons to whom the
+Software is furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
+FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER
+DEALINGS IN THE SOFTWARE.
+-->
+
+<PatchDefinitions>
+  <PatchDefinition Name="RootAccess-MainOS">
+    <TargetVersions>
+      <TargetVersion Description="10.0.10240.16384">
+        <TargetFiles>
+          <TargetFile Path="Windows\System32\sspisrv.dll" HashOriginal="EE5866A17A24CA80A3210131E1A378032E55A00C" HashPatched="59EB4839A13E38E53DE6791C6BF0BF0A54E19333">
+            <Patches>
+              <Patch Address="0x000024AC" OriginalBytes="2DE970480DF10C0B" PatchedBytes="0121016000207047" />
+              <Patch Address="0x00000148" OriginalBytes="FE9F0000" PatchedBytes="B85A0100" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\NtlmShared.dll" HashOriginal="6BF83EEBBB3BF0886473D8D09348D4C10AC28387" HashPatched="350A9F65701C113D198F8AD4F6684C95E5A97623">
+            <Patches>
+              <Patch Address="0x00002BF8" OriginalBytes="2DE9F04F" PatchedBytes="01207047" />
+              <Patch Address="0x00000150" OriginalBytes="9BC80000" PatchedBytes="EEF60000" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\pacmanserver.dll" HashOriginal="667673B16A4C2E95C9AA71E7398D066008A9845A" HashPatched="1B04DA3FB8CC5DE9656CAD256C00CE450E23A572">
+            <Patches>
+              <Patch Address="0x000C0FB4" OriginalBytes="2DE970480DF10C0B8AF7" PatchedBytes="6FF00041016000207047" />
+              <Patch Address="0x00000150" OriginalBytes="D3671000" PatchedBytes="723B1000" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\mscoree.dll" HashOriginal="222E73E695D4016F85BBD40DA2A3524E71422D6F" HashPatched="659B23061601921F8C3DCD3A6823AE080ECD6146">
+            <Patches>
+              <Patch Address="0x00005F98" OriginalBytes="2DE9F048" PatchedBytes="00207047" />
+              <Patch Address="0x00000148" OriginalBytes="392F0100" PatchedBytes="8B640100" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\DeploymentExt.dll" HashOriginal="4490A1AECF60876F27B53BFBA471890D4E0CAA9A" HashPatched="22242F327527CA42A88F200C0EB649B58EEDFC9B">
+            <Patches>
+              <Patch Address="0x0004F922" OriginalBytes="6BB9" PatchedBytes="0DE0" />
+              <Patch Address="0x00000150" OriginalBytes="D0AA0900" PatchedBytes="72D10900" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\ntoskrnl.exe" HashOriginal="68FF93E1EAB6E263B7A65048C9385135759EF9FB" HashPatched="52C1400223D1FCA6862CDA22F145DA20F71005B7">
+            <Patches>
+              <Patch Address="0x00078EF6" OriginalBytes="6ED1" PatchedBytes="6EE0" />
+              <Patch Address="0x00079138" OriginalBytes="21B9" PatchedBytes="04E0" />
+              <Patch Address="0x00079156" OriginalBytes="29B9" PatchedBytes="05E0" />
+              <Patch Address="0x0007960C" OriginalBytes="12B9" PatchedBytes="02E0" />
+              <Patch Address="0x00000160" OriginalBytes="5B875800" PatchedBytes="0B515900" />
+              <Patch Address="0x00079824" OriginalBytes="0BD2" PatchedBytes="0BE0" />
+              <Patch Address="0x0029EC88" OriginalBytes="E1B9" PatchedBytes="1CE0" />
+              <Patch Address="0x0029F198" OriginalBytes="09BB" PatchedBytes="21E0" />
+              <Patch Address="0x0029F21E" OriginalBytes="5BB3" PatchedBytes="2BE0" />
+              <Patch Address="0x001A4648" OriginalBytes="E3B9" PatchedBytes="00BF" />
+              <Patch Address="0x0007A548" OriginalBytes="00F01782" PatchedBytes="00F017BA" />
+              <Patch Address="0x00279EC0" OriginalBytes="0FB42DE9" PatchedBytes="01207047" />
+              <Patch Address="0x002F1174" OriginalBytes="40F0B180" PatchedBytes="AFF30080" />
+              <Patch Address="0x003B6EB4" OriginalBytes="3AF46882" PatchedBytes="3AF768BA" />
+              <Patch Address="0x003B6EE4" OriginalBytes="E8D1" PatchedBytes="00BF" />
+              <Patch Address="0x0003A3E8" OriginalBytes="2DE9FE4F" PatchedBytes="01207047" />
+              <Patch Address="0x0004AFC0" OriginalBytes="2DE90048" PatchedBytes="00207047" />
+              <Patch Address="0x001A41AA" OriginalBytes="BAF1007F" PatchedBytes="FFF776BF" />
+              <Patch Address="0x001A4268" OriginalBytes="13B1" PatchedBytes="02E0" />
+              <Patch Address="0x001A42E0" OriginalBytes="C3D1" PatchedBytes="00BF" />
+              <Patch Address="0x001A431E" OriginalBytes="A4D1" PatchedBytes="00BF" />
+              <Patch Address="0x001A43E2" OriginalBytes="7FF442AF" PatchedBytes="AFF30080" />
+              <Patch Address="0x001A4420" OriginalBytes="3FF43BAE" PatchedBytes="FFF73BBE" />
+              <Patch Address="0x001A4458" OriginalBytes="3FF41FAE" PatchedBytes="FFF71FBE" />
+              <Patch Address="0x001A409E" OriginalBytes="00F0EC81" PatchedBytes="AFF30080" />
+              <Patch Address="0x0007AD5E" OriginalBytes="40F0FB80" PatchedBytes="AFF30080" />
+              <Patch Address="0x0007AE50" OriginalBytes="40F0B580" PatchedBytes="AFF30080" />
+              <Patch Address="0x0007AE5E" OriginalBytes="68D0" PatchedBytes="00BF" />
+              <Patch Address="0x0007AD74" OriginalBytes="4DD1" PatchedBytes="00BF" />
+              <Patch Address="0x0007AE74" OriginalBytes="CDD1" PatchedBytes="00BF" />
+              <Patch Address="0x0007AEFA" OriginalBytes="3FF443AF" PatchedBytes="FFF743BF" />
+              <Patch Address="0x0007AD90" OriginalBytes="00F03C81" PatchedBytes="AFF30080" />
+              <Patch Address="0x0012DF4C" OriginalBytes="01D0" PatchedBytes="01E0" />
+              <Patch Address="0x0012DF52" OriginalBytes="BAF1007F" PatchedBytes="4CF717BF" />
+              <Patch Address="0x0012DFCA" OriginalBytes="22D0" PatchedBytes="22E0" />
+              <Patch Address="0x0012DFE8" OriginalBytes="03D1" PatchedBytes="03E0" />
+              <Patch Address="0x0012DFF6" OriginalBytes="03D0" PatchedBytes="03E0" />
+              <Patch Address="0x0011D9CC" OriginalBytes="0FD0" PatchedBytes="0BE0" />
+              <Patch Address="0x0011D962" OriginalBytes="12D0" PatchedBytes="08E0" />
+              <Patch Address="0x0004AFE4" OriginalBytes="2DE90048" PatchedBytes="00207047" />
+              <Patch Address="0x0011D8B8" OriginalBytes="11D0" PatchedBytes="09E0" />
+              <Patch Address="0x0011D916" OriginalBytes="0BD0" PatchedBytes="11E0" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+        </TargetFiles>
+      </TargetVersion>
+    </TargetVersions>
+  </PatchDefinition>
+  <PatchDefinition Name="SecureBootHack-V1-EFIESP">
+    <TargetVersions>
+      <TargetVersion Description="10.0.10240.16384">
+        <TargetFiles>
+          <TargetFile Path="Windows\System32\boot\mobilestartup.efi" HashOriginal="240B7F0B6BC5CD923CBEAEE85DBBA1F240C96C3B" HashPatched="632C2C27A5791CE5A1D1F3C1A7641F057919DCE8">
+            <Patches>
+              <Patch Address="0x000285F8" OriginalBytes="2DE9F04F" PatchedBytes="00207047" />
+              <Patch Address="0x00000138" OriginalBytes="E5280C00" PatchedBytes="37570C00" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="efi\boot\bootarm.efi" HashOriginal="DC6F06F3FB84841722963AF9A9D6D370C9CE6658" HashPatched="B29975C8814BFBB97C00F2C3A6D678B8A6C05C70">
+            <Patches>
+              <Patch Address="0x00045318" OriginalBytes="2DE9F04F" PatchedBytes="00207047" />
+              <Patch Address="0x00000138" OriginalBytes="E8C10D00" PatchedBytes="3AF00D00" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+        </TargetFiles>
+      </TargetVersion>
+    </TargetVersions>
+  </PatchDefinition>
+  <PatchDefinition Name="SecureBootHack-V2-EFIESP">
+    <TargetVersions>
+      <TargetVersion Description="10.0.10240.16384">
+        <TargetFiles>
+          <TargetFile Path="Windows\System32\boot\mobilestartup.efi" HashOriginal="240B7F0B6BC5CD923CBEAEE85DBBA1F240C96C3B" HashPatched="14EE38E1229C8D770493A09A8CDC6B044A694720">
+            <Patches>
+              <Patch Address="0x000285F8" OriginalBytes="2DE9F04F" PatchedBytes="00207047" />
+              <Patch Address="0x000733D8" OriginalBytes="2DE9F048" PatchedBytes="00207047" />
+              <Patch Address="0x000AC198" OriginalBytes="4D00610073007300530074006F00720061006700650046006C00610067000000" PatchedBytes="4800650061007400680063006C00690066006600370034004D0053004D000000" />
+              <Patch Address="0x00001EBC" OriginalBytes="03D1" PatchedBytes="00BF" />
+              <Patch Address="0x00001EC2" OriginalBytes="6AF0DDFC" PatchedBytes="63F029BB" />
+              <Patch Address="0x00065514" OriginalBytes="2DE930480DF1080B9BF7B6FAADF50B7D0023039304932C4B0DF1220040F206221B8800210024ADF820309CF76DF900238DF80830012305932149204802AB009305AB06AA9DF7A6F9002805DB059B012B02D19DF8083053BB08A800F037F80446002C24DB03AA04A908A800F097F80446039D002C04DA134B9C4214D1002412E0049B0095C6F794FA0446002C0BDB01238DF8083002AB0A4908480093012303229DF7BCF9044615B12846CFF74FF820460DF50B7D9BF76CFA" PatchedBytes="0020704778462549A0EB010070B481B00446234B04EB0300224B04EB030103220023009343F2315604EB0605A8471E4904EB0105A8470646012E04D001201B4904EB0105A8471A4804EB00010968D1F8AC500EA000216A46A847009D6D68002D01D1009DAD68A847012E04D030460F4904EB0105A8470F4E04EB0605A84742F6C72604EB060001B070BC00479D5B08F90493FB408FE04AEE3B1A784B1C61060098E30A00847F0A00BD2E0800652E0800A47B0E0081D40600" />
+              <Patch Address="0x00000138" OriginalBytes="E5280C00" PatchedBytes="41FE0C00" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+        </TargetFiles>
+      </TargetVersion>
+    </TargetVersions>
+  </PatchDefinition>
+  <PatchDefinition Name="SecureBootHack-MainOS">
+    <TargetVersions>
+      <TargetVersion Description="10.0.10240.16384">
+        <TargetFiles>
+          <TargetFile Path="Windows\System32\BOOT\winload.efi" HashOriginal="50100B83CB85A0AEEBD7B70F87360513C1B7E255" HashPatched="37B955E6FFDB685CC9176BE7BBF712C02BA2CF2B">
+            <Patches>
+              <Patch Address="0x00037E1C" OriginalBytes="2DE9F04F" PatchedBytes="00207047" />
+              <Patch Address="0x00000138" OriginalBytes="7C330E00" PatchedBytes="CE610E00" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\ci.dll" HashOriginal="5738D592BDA3AB98FFB5F7C8018EA19CA2B644C3" HashPatched="4139D22AAAC3A8F66C377D0C022142E20DF60154">
+            <Patches>
+              <Patch Address="0x000244A4" OriginalBytes="14D1" PatchedBytes="14E0" />
+              <Patch Address="0x00000148" OriginalBytes="04AF0800" PatchedBytes="04BE0800" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+        </TargetFiles>
+      </TargetVersion>
+    </TargetVersions>
+  </PatchDefinition>
+</PatchDefinitions>
\ No newline at end of file
diff --git a/WPinternals/PatchDefinitions.modified.xml b/WPinternals/PatchDefinitions.modified.xml
new file mode 100644
index 0000000..b8ced04
--- /dev/null
+++ b/WPinternals/PatchDefinitions.modified.xml
@@ -0,0 +1,176 @@
+<?xml version="1.0" encoding="utf-8"?>
+
+<!--
+Copyright(c) 2018, Rene Lergner - @Heathcliff74xda
+
+Permission is hereby granted, free of charge, to any person obtaining a
+copy of this software and associated documentation files(the "Software"),
+to deal in the Software without restriction, including without limitation
+the rights to use, copy, modify, merge, publish, distribute, sublicense,
+and / or sell copies of the Software, and to permit persons to whom the
+Software is furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
+FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER
+DEALINGS IN THE SOFTWARE.
+-->
+
+<PatchDefinitions>
+  <PatchDefinition Name="RootAccess-MainOS">
+    <TargetVersions>
+      <TargetVersion Description="10.0.10240.16384">
+        <TargetFiles>
+          <TargetFile Path="Windows\System32\sspisrv.dll" HashOriginal="EE5866A17A24CA80A3210131E1A378032E55A00C" HashPatched="59EB4839A13E38E53DE6791C6BF0BF0A54E19333">
+            <Patches>
+              <Patch Address="0x000024AC" OriginalBytes="2DE970480DF10C0B" PatchedBytes="0121016000207047" />
+              <Patch Address="0x00000148" OriginalBytes="FE9F0000" PatchedBytes="B85A0100" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\NtlmShared.dll" HashOriginal="6BF83EEBBB3BF0886473D8D09348D4C10AC28387" HashPatched="350A9F65701C113D198F8AD4F6684C95E5A97623">
+            <Patches>
+              <Patch Address="0x00002BF8" OriginalBytes="2DE9F04F" PatchedBytes="01207047" />
+              <Patch Address="0x00000150" OriginalBytes="9BC80000" PatchedBytes="EEF60000" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\pacmanserver.dll" HashOriginal="667673B16A4C2E95C9AA71E7398D066008A9845A" HashPatched="1B04DA3FB8CC5DE9656CAD256C00CE450E23A572">
+            <Patches>
+              <Patch Address="0x000C0FB4" OriginalBytes="2DE970480DF10C0B8AF7" PatchedBytes="6FF00041016000207047" />
+              <Patch Address="0x00000150" OriginalBytes="D3671000" PatchedBytes="723B1000" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\mscoree.dll" HashOriginal="222E73E695D4016F85BBD40DA2A3524E71422D6F" HashPatched="659B23061601921F8C3DCD3A6823AE080ECD6146">
+            <Patches>
+              <Patch Address="0x00005F98" OriginalBytes="2DE9F048" PatchedBytes="00207047" />
+              <Patch Address="0x00000148" OriginalBytes="392F0100" PatchedBytes="8B640100" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\DeploymentExt.dll" HashOriginal="4490A1AECF60876F27B53BFBA471890D4E0CAA9A" HashPatched="22242F327527CA42A88F200C0EB649B58EEDFC9B">
+            <Patches>
+              <Patch Address="0x0004F922" OriginalBytes="6BB9" PatchedBytes="0DE0" />
+              <Patch Address="0x00000150" OriginalBytes="D0AA0900" PatchedBytes="72D10900" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\ntoskrnl.exe" HashOriginal="68FF93E1EAB6E263B7A65048C9385135759EF9FB" HashPatched="06659CDC4B4CCB7ABEF9AC178FCAE89AF506DDDF">
+            <Patches>
+              <Patch Address="0x00078EF6" OriginalBytes="6ED1" PatchedBytes="6EE0" />
+              <Patch Address="0x00079138" OriginalBytes="21B9" PatchedBytes="04E0" />
+              <Patch Address="0x00079156" OriginalBytes="29B9" PatchedBytes="05E0" />
+              <Patch Address="0x0007960C" OriginalBytes="12B9" PatchedBytes="02E0" />
+              <Patch Address="0x000797C0" OriginalBytes="18D0" PatchedBytes="71E0" />
+              <Patch Address="0x0007A53E" OriginalBytes="02B1" PatchedBytes="00E0" />
+              <Patch Address="0x0029F132" OriginalBytes="36B1" PatchedBytes="06E0" />
+              <Patch Address="0x0029F1B6" OriginalBytes="FB62" PatchedBytes="32E0" />
+              <Patch Address="0x0029F23A" OriginalBytes="DFF8DC87" PatchedBytes="4FF00002" />
+              <Patch Address="0x001A4648" OriginalBytes="E3B9" PatchedBytes="00BF" />
+              <Patch Address="0x0007A548" OriginalBytes="00F01782" PatchedBytes="00F017BA" />
+              <Patch Address="0x00279EC0" OriginalBytes="0FB42DE9" PatchedBytes="01207047" />
+              <Patch Address="0x0013CAFC" OriginalBytes="C0F0CA80" PatchedBytes="00F0CAB8" />
+              <Patch Address="0x0013CB00" OriginalBytes="04F1440A" PatchedBytes="AFF30080" />
+              <Patch Address="0x002F1174" OriginalBytes="40F0B180" PatchedBytes="AFF30080" />
+              <Patch Address="0x0003A3E8" OriginalBytes="2DE9FE4F" PatchedBytes="01207047" />
+              <Patch Address="0x001A41AA" OriginalBytes="BAF1" PatchedBytes="76E7" />
+              <Patch Address="0x001A4268" OriginalBytes="13B1" PatchedBytes="02E0" />
+              <Patch Address="0x001A42E0" OriginalBytes="C3D1" PatchedBytes="00BF" />
+              <Patch Address="0x001A431E" OriginalBytes="A4D1" PatchedBytes="00BF" />
+              <Patch Address="0x001A43E2" OriginalBytes="7FF442AF" PatchedBytes="AFF30080" />
+              <Patch Address="0x001A4420" OriginalBytes="3FF43BAE" PatchedBytes="FFF73BBE" />
+              <Patch Address="0x001A4458" OriginalBytes="3FF41FAE" PatchedBytes="FFF71FBE" />
+              <Patch Address="0x001A409E" OriginalBytes="00F0EC81" PatchedBytes="AFF30080" />
+              <Patch Address="0x0007AD5E" OriginalBytes="40F0FB80" PatchedBytes="AFF30080" />
+              <Patch Address="0x003F5468" OriginalBytes="07DA" PatchedBytes="00BF" />
+              <Patch Address="0x003F5472" OriginalBytes="14B1" PatchedBytes="00BF" />
+              <Patch Address="0x003F94D2" OriginalBytes="0D48" PatchedBytes="00BF" />
+              <Patch Address="0x001A40A2" OriginalBytes="DFF80044" PatchedBytes="AFF30080" />
+              <Patch Address="0x001A459A" OriginalBytes="0021" PatchedBytes="00BF" />
+              <Patch Address="0x001A4216" OriginalBytes="9E4D" PatchedBytes="00BF" />
+              <Patch Address="0x001A411A" OriginalBytes="0029F7D0" PatchedBytes="00F003B8" />
+              <Patch Address="0x0003A3D4" OriginalBytes="C4DB" PatchedBytes="C4E7" />
+              <Patch Address="0x000333EC" OriginalBytes="E7D0" PatchedBytes="E7E7" />
+              <Patch Address="0x0011D9CC" OriginalBytes="0FD0" PatchedBytes="0BE0" />
+              <Patch Address="0x0011D962" OriginalBytes="12D0" PatchedBytes="08E0" />
+              <Patch Address="0x00000160" OriginalBytes="5B875800" PatchedBytes="ECEB5800" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+        </TargetFiles>
+      </TargetVersion>
+    </TargetVersions>
+  </PatchDefinition>
+  <PatchDefinition Name="SecureBootHack-V1-EFIESP">
+    <TargetVersions>
+      <TargetVersion Description="10.0.10240.16384">
+        <TargetFiles>
+          <TargetFile Path="Windows\System32\boot\mobilestartup.efi" HashOriginal="240B7F0B6BC5CD923CBEAEE85DBBA1F240C96C3B" HashPatched="632C2C27A5791CE5A1D1F3C1A7641F057919DCE8">
+            <Patches>
+              <Patch Address="0x000285F8" OriginalBytes="2DE9F04F" PatchedBytes="00207047" />
+              <Patch Address="0x00000138" OriginalBytes="E5280C00" PatchedBytes="37570C00" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="efi\boot\bootarm.efi" HashOriginal="DC6F06F3FB84841722963AF9A9D6D370C9CE6658" HashPatched="B29975C8814BFBB97C00F2C3A6D678B8A6C05C70">
+            <Patches>
+              <Patch Address="0x00045318" OriginalBytes="2DE9F04F" PatchedBytes="00207047" />
+              <Patch Address="0x00000138" OriginalBytes="E8C10D00" PatchedBytes="3AF00D00" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+        </TargetFiles>
+      </TargetVersion>
+    </TargetVersions>
+  </PatchDefinition>
+  <PatchDefinition Name="SecureBootHack-V2-EFIESP">
+    <TargetVersions>
+      <TargetVersion Description="10.0.10240.16384">
+        <TargetFiles>
+          <TargetFile Path="Windows\System32\boot\mobilestartup.efi" HashOriginal="240B7F0B6BC5CD923CBEAEE85DBBA1F240C96C3B" HashPatched="64F4566444117039DAE75F5E28344CBCD86F13C5">
+            <Patches>
+              <Patch Address="0x000285F8" OriginalBytes="2DE9F04F" PatchedBytes="00207047" />
+              <Patch Address="0x000733D8" OriginalBytes="2DE9F048" PatchedBytes="00207047" />
+              <Patch Address="0x00065514" OriginalBytes="2DE93048" PatchedBytes="00207047" />
+              <Patch Address="0x000AC198" OriginalBytes="4D00610073007300530074006F00720061006700650046006C0061006700" PatchedBytes="4800650061007400680063006C00690066006600370034004D0053004D00" />
+              <Patch Address="0x00002B52" OriginalBytes="02D0" PatchedBytes="00BF" />
+              <Patch Address="0x00001EC2" OriginalBytes="6AF0DDFC" PatchedBytes="63F029BB" />
+              <Patch Address="0x00065518" OriginalBytes="0DF1080B9BF7B6FAADF50B7D0023039304932C4B0DF1220040F206221B8800210024ADF820309CF76DF900238DF80830012305932149204802AB009305AB06AA9DF7A6F9002805DB059B012B02D19DF8083053BB08A800F037F80446002C24DB03AA04A908A800F097F80446039D002C04DA134B9C4214D1002412E0049B0095C6F794FA0446002C0BDB01238DF8083002AB0A4908480093012303229DF7BCF9044615B12846CFF74FF820460DF50B7D9BF76CFA" PatchedBytes="78462549A0EB010070B481B00446234B04EB0300224B04EB030103220023009343F2315604EB0605A8471E4904EB0105A8470646012E04D001201B4904EB0105A8471A4804EB00010968D1F8AC500EA000216A46A847009D6D68002D01D1009DAD68A847012E04D030460F4904EB0105A8470F4E04EB0605A84742F6C72604EB060001B070BC00479D5B08F90493FB408FE04AEE3B1A784B1C61060098E30A00847F0A00BD2E0800652E0800A47B0E0081D40600" />
+              <Patch Address="0x00000138" OriginalBytes="E5280C00" PatchedBytes="42FF0C00" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+        </TargetFiles>
+      </TargetVersion>
+    </TargetVersions>
+  </PatchDefinition>
+  <PatchDefinition Name="SecureBootHack-MainOS">
+    <TargetVersions>
+      <TargetVersion Description="10.0.10240.16384">
+        <TargetFiles>
+          <TargetFile Path="Windows\System32\BOOT\winload.efi" HashOriginal="50100B83CB85A0AEEBD7B70F87360513C1B7E255" HashPatched="37B955E6FFDB685CC9176BE7BBF712C02BA2CF2B">
+            <Patches>
+              <Patch Address="0x00037E1C" OriginalBytes="2DE9F04F" PatchedBytes="00207047" />
+              <Patch Address="0x00000138" OriginalBytes="7C330E00" PatchedBytes="CE610E00" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\ci.dll" HashOriginal="5738D592BDA3AB98FFB5F7C8018EA19CA2B644C3" HashPatched="4139D22AAAC3A8F66C377D0C022142E20DF60154">
+            <Patches>
+              <Patch Address="0x000244A4" OriginalBytes="14D1" PatchedBytes="14E0" />
+              <Patch Address="0x00000148" OriginalBytes="04AF0800" PatchedBytes="04BE0800" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+        </TargetFiles>
+      </TargetVersion>
+    </TargetVersions>
+  </PatchDefinition>
+</PatchDefinitions>
\ No newline at end of file
diff --git a/WPinternals/PatchDefinitions.modified.xml.bak b/WPinternals/PatchDefinitions.modified.xml.bak
new file mode 100644
index 0000000..dbbc41f
--- /dev/null
+++ b/WPinternals/PatchDefinitions.modified.xml.bak
@@ -0,0 +1,175 @@
+<?xml version="1.0" encoding="utf-8"?>
+
+<!--
+Copyright(c) 2018, Rene Lergner - @Heathcliff74xda
+
+Permission is hereby granted, free of charge, to any person obtaining a
+copy of this software and associated documentation files(the "Software"),
+to deal in the Software without restriction, including without limitation
+the rights to use, copy, modify, merge, publish, distribute, sublicense,
+and / or sell copies of the Software, and to permit persons to whom the
+Software is furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
+FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER
+DEALINGS IN THE SOFTWARE.
+-->
+
+<PatchDefinitions>
+  <PatchDefinition Name="RootAccess-MainOS">
+    <TargetVersions>
+      <TargetVersion Description="10.0.10240.16384">
+        <TargetFiles>
+          <TargetFile Path="Windows\System32\sspisrv.dll" HashOriginal="EE5866A17A24CA80A3210131E1A378032E55A00C" HashPatched="59EB4839A13E38E53DE6791C6BF0BF0A54E19333">
+            <Patches>
+              <Patch Address="0x000024AC" OriginalBytes="2DE970480DF10C0B" PatchedBytes="0121016000207047" />
+              <Patch Address="0x00000148" OriginalBytes="FE9F0000" PatchedBytes="B85A0100" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\NtlmShared.dll" HashOriginal="6BF83EEBBB3BF0886473D8D09348D4C10AC28387" HashPatched="350A9F65701C113D198F8AD4F6684C95E5A97623">
+            <Patches>
+              <Patch Address="0x00002BF8" OriginalBytes="2DE9F04F" PatchedBytes="01207047" />
+              <Patch Address="0x00000150" OriginalBytes="9BC80000" PatchedBytes="EEF60000" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\pacmanserver.dll" HashOriginal="667673B16A4C2E95C9AA71E7398D066008A9845A" HashPatched="1B04DA3FB8CC5DE9656CAD256C00CE450E23A572">
+            <Patches>
+              <Patch Address="0x000C0FB4" OriginalBytes="2DE970480DF10C0B8AF7" PatchedBytes="6FF00041016000207047" />
+              <Patch Address="0x00000150" OriginalBytes="D3671000" PatchedBytes="723B1000" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\mscoree.dll" HashOriginal="222E73E695D4016F85BBD40DA2A3524E71422D6F" HashPatched="659B23061601921F8C3DCD3A6823AE080ECD6146">
+            <Patches>
+              <Patch Address="0x00005F98" OriginalBytes="2DE9F048" PatchedBytes="00207047" />
+              <Patch Address="0x00000148" OriginalBytes="392F0100" PatchedBytes="8B640100" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\DeploymentExt.dll" HashOriginal="4490A1AECF60876F27B53BFBA471890D4E0CAA9A" HashPatched="22242F327527CA42A88F200C0EB649B58EEDFC9B">
+            <Patches>
+              <Patch Address="0x0004F922" OriginalBytes="6BB9" PatchedBytes="0DE0" />
+              <Patch Address="0x00000150" OriginalBytes="D0AA0900" PatchedBytes="72D10900" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\ntoskrnl.exe" HashOriginal="68FF93E1EAB6E263B7A65048C9385135759EF9FB" HashPatched="A1F674BE7990C66BBDFA89814B463F713B39C0A7">
+            <Patches>
+              <Patch Address="0x00078EF6" OriginalBytes="6ED1" PatchedBytes="6EE0" />
+              <Patch Address="0x00079138" OriginalBytes="21B9" PatchedBytes="04E0" />
+              <Patch Address="0x00079156" OriginalBytes="29B9" PatchedBytes="05E0" />
+              <Patch Address="0x0007960C" OriginalBytes="12B9" PatchedBytes="02E0" />
+              <Patch Address="0x000797C0" OriginalBytes="18D0" PatchedBytes="71E0" />
+              <Patch Address="0x0007A53E" OriginalBytes="02B1" PatchedBytes="00E0" />
+              <Patch Address="0x0029F132" OriginalBytes="36B1" PatchedBytes="06E0" />
+              <Patch Address="0x0029F1B6" OriginalBytes="FB62" PatchedBytes="32E0" />
+              <Patch Address="0x0029F23A" OriginalBytes="DFF8DC87" PatchedBytes="4FF00002" />
+              <Patch Address="0x001A4648" OriginalBytes="E3B9" PatchedBytes="00BF" />
+              <Patch Address="0x0007A548" OriginalBytes="00F01782" PatchedBytes="00F017BA" />
+              <Patch Address="0x00279EC0" OriginalBytes="0FB42DE9" PatchedBytes="01207047" />
+              <Patch Address="0x0013CAFC" OriginalBytes="C0F0CA80" PatchedBytes="00F0CAB8" />
+              <Patch Address="0x0013CB00" OriginalBytes="04F1440A" PatchedBytes="AFF30080" />
+              <Patch Address="0x002F1174" OriginalBytes="40F0B180" PatchedBytes="AFF30080" />
+              <Patch Address="0x0003A3E8" OriginalBytes="2DE9FE4F" PatchedBytes="01207047" />
+              <Patch Address="0x001A41AA" OriginalBytes="BAF1" PatchedBytes="76E7" />
+              <Patch Address="0x001A4268" OriginalBytes="13B1" PatchedBytes="02E0" />
+              <Patch Address="0x001A42E0" OriginalBytes="C3D1" PatchedBytes="00BF" />
+              <Patch Address="0x001A431E" OriginalBytes="A4D1" PatchedBytes="00BF" />
+              <Patch Address="0x001A43E2" OriginalBytes="7FF442AF" PatchedBytes="AFF30080" />
+              <Patch Address="0x001A4420" OriginalBytes="3FF43BAE" PatchedBytes="FFF73BBE" />
+              <Patch Address="0x001A4458" OriginalBytes="3FF41FAE" PatchedBytes="FFF71FBE" />
+              <Patch Address="0x001A409E" OriginalBytes="00F0EC81" PatchedBytes="AFF30080" />
+              <Patch Address="0x0007AD5E" OriginalBytes="40F0FB80" PatchedBytes="AFF30080" />
+              <Patch Address="0x003F5468" OriginalBytes="07DA" PatchedBytes="00BF" />
+              <Patch Address="0x003F5472" OriginalBytes="14B1" PatchedBytes="00BF" />
+              <Patch Address="0x003F94D2" OriginalBytes="0D48" PatchedBytes="00BF" />
+              <Patch Address="0x001A40A2" OriginalBytes="DFF80044" PatchedBytes="AFF30080" />
+              <Patch Address="0x001A459A" OriginalBytes="0021" PatchedBytes="00BF" />
+              <Patch Address="0x001A4216" OriginalBytes="9E4D" PatchedBytes="00BF" />
+              <Patch Address="0x001A411A" OriginalBytes="0029F7D0" PatchedBytes="00F003B8" />
+              <Patch Address="0x0003A3D4" OriginalBytes="C4DB" PatchedBytes="C4E7" />
+              <Patch Address="0x000333EC" OriginalBytes="E7D0" PatchedBytes="E7E7" />
+              <Patch Address="0x0011D9CC" OriginalBytes="0FD0" PatchedBytes="0BE0" />
+              <Patch Address="0x0011D962" OriginalBytes="12D0" PatchedBytes="08E0" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+        </TargetFiles>
+      </TargetVersion>
+    </TargetVersions>
+  </PatchDefinition>
+  <PatchDefinition Name="SecureBootHack-V1-EFIESP">
+    <TargetVersions>
+      <TargetVersion Description="10.0.10240.16384">
+        <TargetFiles>
+          <TargetFile Path="Windows\System32\boot\mobilestartup.efi" HashOriginal="240B7F0B6BC5CD923CBEAEE85DBBA1F240C96C3B" HashPatched="5E01F435D874DCB36AEDADD70E40D5B73537D811">
+            <Patches>
+              <Patch Address="0x000285F8" OriginalBytes="2DE9F04F" PatchedBytes="00207047" />
+              <Patch Address="0x00065514" OriginalBytes="2DE93048" PatchedBytes="00207047" />
+              <Patch Address="0x00000138" OriginalBytes="E5280C00" PatchedBytes="498D0C00" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="efi\boot\bootarm.efi" HashOriginal="DC6F06F3FB84841722963AF9A9D6D370C9CE6658" HashPatched="B29975C8814BFBB97C00F2C3A6D678B8A6C05C70">
+            <Patches>
+              <Patch Address="0x00045318" OriginalBytes="2DE9F04F" PatchedBytes="00207047" />
+              <Patch Address="0x00000138" OriginalBytes="E8C10D00" PatchedBytes="3AF00D00" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+        </TargetFiles>
+      </TargetVersion>
+    </TargetVersions>
+  </PatchDefinition>
+  <PatchDefinition Name="SecureBootHack-V2-EFIESP">
+    <TargetVersions>
+      <TargetVersion Description="10.0.10240.16384">
+        <TargetFiles>
+          <TargetFile Path="Windows\System32\boot\mobilestartup.efi" HashOriginal="240B7F0B6BC5CD923CBEAEE85DBBA1F240C96C3B" HashPatched="3B66B93B3DDB8794D6F9D63E461F026404161ACE">
+            <Patches>
+              <Patch Address="0x000285F8" OriginalBytes="2DE9F04F" PatchedBytes="00207047" />
+              <Patch Address="0x00065514" OriginalBytes="2DE93048" PatchedBytes="00207047" />
+              <Patch Address="0x000AC198" OriginalBytes="4D00610073007300530074006F00720061006700650046006C0061006700" PatchedBytes="4800650061007400680063006C00690066006600370034004D0053004D00" />
+              <Patch Address="0x00002B52" OriginalBytes="02D0" PatchedBytes="02E0" />
+              <Patch Address="0x00001EC2" OriginalBytes="6AF0DDFC" PatchedBytes="63F029BB" />
+              <Patch Address="0x00065518" OriginalBytes="0DF1080B9BF7B6FAADF50B7D0023039304932C4B0DF1220040F206221B8800210024ADF820309CF76DF900238DF80830012305932149204802AB009305AB06AA9DF7A6F9002805DB059B012B02D19DF8083053BB08A800F037F80446002C24DB03AA04A908A800F097F80446039D002C04DA134B9C4214D1002412E0049B0095C6F794FA0446002C0BDB01238DF8083002AB0A4908480093012303229DF7BCF9044615B12846CFF74FF820460DF50B7D9BF76CFA" PatchedBytes="78462549A0EB010070B481B00446234B04EB0300224B04EB030103220023009343F2315604EB0605A8471E4904EB0105A8470646012E04D001201B4904EB0105A8471A4804EB00010968D1F8AC500EA000216A46A847009D6D68002D01D1009DAD68A847012E04D030460F4904EB0105A8470F4E04EB0605A84742F6C72604EB060001B070BC00479D5B08F90493FB408FE04AEE3B1A784B1C61060098E30A00847F0A00BD2E0800652E0800A47B0E0081D40600" />
+              <Patch Address="0x00000138" OriginalBytes="E5280C00" PatchedBytes="F2EA0C00" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+        </TargetFiles>
+      </TargetVersion>
+    </TargetVersions>
+  </PatchDefinition>
+  <PatchDefinition Name="SecureBootHack-MainOS">
+    <TargetVersions>
+      <TargetVersion Description="10.0.10240.16384">
+        <TargetFiles>
+          <TargetFile Path="Windows\System32\BOOT\winload.efi" HashOriginal="50100B83CB85A0AEEBD7B70F87360513C1B7E255" HashPatched="37B955E6FFDB685CC9176BE7BBF712C02BA2CF2B">
+            <Patches>
+              <Patch Address="0x00037E1C" OriginalBytes="2DE9F04F" PatchedBytes="00207047" />
+              <Patch Address="0x00000138" OriginalBytes="7C330E00" PatchedBytes="CE610E00" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+          <TargetFile Path="Windows\System32\ci.dll" HashOriginal="5738D592BDA3AB98FFB5F7C8018EA19CA2B644C3" HashPatched="4139D22AAAC3A8F66C377D0C022142E20DF60154">
+            <Patches>
+              <Patch Address="0x000244A4" OriginalBytes="14D1" PatchedBytes="14E0" />
+              <Patch Address="0x00000148" OriginalBytes="04AF0800" PatchedBytes="04BE0800" />
+            </Patches>
+            <Obsolete />
+          </TargetFile>
+        </TargetFiles>
+      </TargetVersion>
+    </TargetVersions>
+  </PatchDefinition>
+</PatchDefinitions>
\ No newline at end of file