Enable virtualization-based protection of code integrity
https://docs.microsoft.com/en-us/windows/device-security/enable-virtualization-based-protection-of-code-integrity [docs.microsoft.com]
2017-12-01 23:01
Virtualization-based protection of code integrity (herein referred to as HVCI) is a powerful system mitigation, which leverages hardware virtualization and the Windows Hyper-V hypervisor to protect Windows kernel-mode processes against the injection and execution of malicious or unverified code. Code integrity validation is performed in a secure environment that is resistant to attack from malicious software, and page permissions for kernel mode are set and maintained by the Hyper-V hypervisor.
source: grugq