How Do Tipsters Discover Previously Unknown Registry Keys?

I've been wondering how folks go about discovering new registry keys in Windows 11 (or 10) like, for example, the Strart_ShowClassicMode key: how did the first person who found that, find it? It's not in the registry already so did they get a tip from someone at Microsoft?

I have tried using Process Monitor, which logs all queries for Registry keys, to see if the system is querying for any interesting keys that don't exist by default, but I'm not finding anything. It doesn't even show Start_ShowClassicMode as something Windows 11 looks for, unless you have already created the key. What's the trick that the pros use to find out about these secret keys?

Hello geekinchief, welcome to Eleven Forums.

all it takes is someone at Microsoft to create the keys for the purpose of software development, then for someone else to publish the results. Microsoft used to publish a book called Windows Registry Guide by Jerry Honeycutt on Microsoft Press. That book is not maintained and updated. Microsoft dose not like people playing with the registry directly, as it is so error prone - better to use Group Policy, but Group Policy does not cover everything.

MS documents everything so if you do not have access to it, it is only a matter of time till it leaks.
If you are part of Business or Developers, you will get access to it ASAP, otherwise you have to wait.
I watch for the latest security baseline where tweaks are posted or alternatively something like admx.

I have just updated my tweaks for the Edge 92 to automatically use HTTPS, new policies are on top.

Interesting as I was wondering the very same thing and these tweaks appear almost as soon as the OS goes live. The information must be out there somewhere... and we are very pleased it is

Hi there
How do hackers get into systems, CIA agents break into Russian systems / vice versa. People start probably by debugging and memory dumping everything and probably looking at 1000's of registry keys looking to see what they do or where they are used etc etc. Probaly takes them hours and hours too at cost of a lot of oher more exciting things in life to do. !!

It's not impossible but a lot of work.

I'm not sure there's one of those yellow "Idiots Guide" to hacking around but who knows what's available on the "Dark Web".

The real answer is probably echoed by "Those in the know" following the famous Hollywood line -- If I told you --I'd have to kill you.

Cheers
jimbo

geekinchief said:

I've been wondering how folks go about discovering new registry keys in Windows 11 (or 10) like, for example, the Strart_ShowClassicMode key: how did the first person who found that, find it? It's not in the registry already so did they get a tip from someone at Microsoft?

I have tried using Process Monitor, which logs all queries for Registry keys, to see if the system is querying for any interesting keys that don't exist by default, but I'm not finding anything. It doesn't even show Start_ShowClassicMode as something Windows 11 looks for, unless you have already created the key. What's the trick that the pros use to find out about these secret keys?

Click to expand...

You might be interested in the life and works of Mark Russinovich, a brilliant computer genius who discovered and revealed so much about the inner workings of Windows, that Microsoft bought his company and gave him an excellent position within the company, currently CTO of Microsoft Azure: Mark Russinovich - Wikipedia