ack_complete 11 days ago

Windows allows loading process-private registry hives without elevation using the RegLoadAppKey() function. This is used by Visual Studio.

https://visualstudioextensions.vlasovstudio.com/2017/06/29/c...

1
mananaysiempre 11 days ago

Yeah, several paragraphs down TFA mentions that unprivileged (and docunented) hive loading was introduced in Vista. Which checks out as far as my knowledge cutoff regarding Windows :)