From a9c7b9970e27b1c4e1792f06b5627dae9bc466d7 Mon Sep 17 00:00:00 2001
From: Tommy <contact@tommytran.io>
Date: Wed, 10 Apr 2024 02:59:20 -0700
Subject: [PATCH] New link to black lotus & remove non functional registries

Signed-off-by: Tommy <contact@tommytran.io>
---
 CVE-2023-24932.md                              |  5 +++++
 .../Default Domain Policy/Registries.md        | 18 +-----------------
 2 files changed, 6 insertions(+), 17 deletions(-)
 create mode 100644 CVE-2023-24932.md

diff --git a/CVE-2023-24932.md b/CVE-2023-24932.md
new file mode 100644
index 0000000..393bff6
--- /dev/null
+++ b/CVE-2023-24932.md
@@ -0,0 +1,5 @@
+# CVE-2023-24932
+
+This needs manual configuration to mitigate.
+
+https://support.microsoft.com/en-us/topic/kb5025885-how-to-manage-the-windows-boot-manager-revocations-for-secure-boot-changes-associated-with-cve-2023-24932-41a975df-beb2-40c1-99a3-b3ff139f832d
\ No newline at end of file
diff --git a/Group Policies Objects/Default Domain Policy/Registries.md b/Group Policies Objects/Default Domain Policy/Registries.md
index af5dac8..fa42cb4 100644
--- a/Group Policies Objects/Default Domain Policy/Registries.md	
+++ b/Group Policies Objects/Default Domain Policy/Registries.md	
@@ -6,20 +6,4 @@
 
 DisableCoInstallers -> REG_DWORD -> Hexadecimal -> 1
 
-https://www.bleepingcomputer.com/news/microsoft/how-to-block-windows-plug-and-play-auto-installing-insecure-apps/
-
-## CVE-2023-24932
-
-`HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Secureboot`
-
-AvailableUpdates -> REG_DWORD -> Hexadecimal -> 30
-
-https://support.microsoft.com/en-us/topic/kb5025885-how-to-manage-the-windows-boot-manager-revocations-for-secure-boot-changes-associated-with-cve-2023-24932-41a975df-beb2-40c1-99a3-b3ff139f832d
-
-## EEA
-
-`HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Control Panel\DeviceRegion`
-
-DeviceRegion -> REG_DWORD -> Hexadecimal -> 0000005e
-
-**NOTE: Changing the region this way does not seem to work regardless of whether I use Create, Update, or Replace. You might need to change the registry by hand or use sysprep. Very annoying.**
\ No newline at end of file
+https://www.bleepingcomputer.com/news/microsoft/how-to-block-windows-plug-and-play-auto-installing-insecure-apps/
\ No newline at end of file