Search notes:
lxcore.sys
lxcore.sys
is the kernel-mode Ring 0 driver which implements all the functionality that a Linux appliction inside of a Pico process will see.
This driver works together with
lxss.sys
to coordinate
Linux syscalls with the NT Kernel
.
Links
Alex Ionescu:
Gaining visibility into Linux binaries on Windows: Defend and understand WSL
Index