Change Boot Logo/Screen?

[vlex26]

Well sounds like we struck gold!

Any chance u could upload ur files and certs if possible so the rest of us can test it and work from there?

 

[vlex26]

I'm installing WIN7 SP1 beta. I'm going to check whether the security is less tight in this update. I'll post if I make any progress.

 

[joakim]

For my x86 machine, the english version 6.1.7600.16385 of bootres.dll has an md5 of a03fed2c2a186eaa7dd43900cdcfa3ab.

Now the resigned bootres.dll with and without timestamp has an md5 of 3820345d5b28e1bf5ed163a380b92016 and 9a911e6d2b2fea2cac41ffdf59839d39 repsectively. And by definition, the MS signed certificate has been invalidated.

The most interesting thing was the fact that timestamping is not required.

Note that I did not change the animation itself (because I suck at that), I just invalidated the signature and resigned the file with a non-MS certificated. That said, it should obviously work to also change the animation before you resign with your test certificate.

For certain reasons regarding this certificate, I am unfortunately not able (or willing) to distribute such a resigned file. However, when I get this going with my own created test certificate (I suck at this too), I may provide more evidence.

Last note. The Microsoft blabla below the animation, is not contained within bootres.dll. If testsigning is off or the file is not signed with a valid certificate, then the static image (you can inject into kernel) is actiavted instead. For the purpose of booting with animation, the kernel does not have to be signed.

Very last note. My system is still x86 and so I cannot say about x64 (and patchguard).

Joakim

 

[G4b1t]

thats true but then the custom logo dosent work so it reverts to vista style boot

Without knowing much of coding, may i share a thought?

If tweaking the original files in x64 fails and reverts to vista style boot, then maybe we can alter the vista style boot?

Might be a silly thought but i track the course of this thread with distress ^^

 

[marcusj0015]

i believe i said a very simular thing in my last post G4b1t


SORRY MAN I DIDNT SEE YOU QUOTE ME

SORRY MAN

I WAS HALF ASLEEP WHEN I WROTE THAT

 

[marcusj0015]

awesome progress ill get to checking all this out with the new updated methods

BTW does my idea work?

the one about perposefully breaking the bootres signature so we can use vista boot vids?

 

[joakim]

More information. I was now able to sign the file with my own certificate, after overcoming several hurdles. Most importantly, if you are using resource hacker like I do, you will not be able to sign the dll after replacing the embedded wim. The reason is simply because the value of the Certificates Directory in the pe optional header is pointing to the old location which now most likely is where your new wim is placed. Solution is to zero out that value in the pe header before attempting to sign it. Works great in terms of having loaded a heavily modified bootres.dll. Only downside for me is I don't know how to create a good and working animation..

Anybody know how to create such?

Joakim

 

[joakim]

Anyways as proof it is possible. I added a ridiculous face on the last bitmap, which is poping up a few times at the very end;

I am sure someone can do better than that!

Joakim

 

[vlex26]

I'm having a hard time believing that image as much as I hate to say it. I mean of all things to change it to y that? It could jst be done with paint but I'm going to take ur word for it but it would be great if u could post a step by step method or ur files so this may progress to completion.

 

[marcusj0015]

hey vlex how about you just chill out a little man,

we will release basically a press release of how to do all this when we have everything all together and all the loose ends tied up

how did you zero the pe header?

what tool did you use?

 

[joakim]

I can make a separate tutorial then, but it will not cover how to create the animation.

Joakim

 

[vlex26]

I apologize. Bad day yesterday. Sorry mate. I made progress with the signing the files but I stupidly didn't hang the boot animation properly so it's jst the text and no animation. But it's working.

 

[joakim]

In depth description of process found here; http://www.sevenforums.com/customization/106861-how-change-boot-animation-windows-7-a.html

 

[marcusj0015]

its completely fine man

ive had those days where i just wanna throw my compouter out a window!

 

[marcusj0015]

just checked it out its pretty awesome

we beat Microsoft ridiclous security measures

waits for Windows 7 SP1 T_T

 

[marcusj0015]

like i said in the other post this is NOT ready for release

thanks for all your contribution's, Joakim

but we need to find a programmer that can wrap all this complex stuff into a program to do this

 

[thaimin]

First, what is the x86_64 problem? That needs to be solved.

Second, I really have been meaning to work on this program however its been crunch time at work recently which means I have been busy and exhausted. I have many of the components done just need to make a GUI and put them together.

I have:

• A resource updating command line program that I can easily re-use the core class from for extracting and saving the resource into bootres.dll
• I have looked at the wimgapi.dll API for making a custom program that can do the extraction / generation of WIM files
• I have made a command-line program that takes images as frames and 'compiles' them into the special really long BMP
• The signing is still kinda lacking (I have almost-working batch scripts and made a non-functional GUI)

So maybe this weekend I will have some time to start putting this all together.

 

[joakim]

Do you know if "your" animation format will not crash the system? If you send me a sample bitmap I could easily test it (on x86).

Anyways, would be interesting to see what you've done when it's finished.

Joakim

 

[thaimin]

I am simply making a program that does the same thing as your outline, its just will (hopefully) be a very simple idiot-proof application that does all the steps of making the animation, making the WIM, integrating it into the bootres.dll, and fixing the signing.

I started working on the program and so far I have completed a basic fully-functional GUI that successfully repacks bootres.dll with a new activity.bmp using the WIM API. It needs a bit more work, but hopefully this weekend I will have finished an alpha version that does not do signing but does everything else. I'll then post it here for you guys to check out.

 

[thaimin]

I realized why this probably didn't work on x86_64. Your certificate-table clearing trick is x86 only! The PE header is a different size on x86_64.

On x86 the certificate table pointer is 0x98 bytes after the start of the header
On x86_64 it is 0xA8 (I believe, there are 16 extra bytes in the 64-bit header I think)