Jump to content
Tuts 4 You

All Activity

This stream auto-updates     

  1. Today
  2. Hi guys, I was trying to create a popup menu using CreatePopupMenu function and SetMenuInfo function (MNS_DRAGDROP) to get triggered by WM_MENUDRAG message = Ok.Now on this message I can read wparam content to check out where the drag did started lik from position 1 for example.The problem now is how to check where the drag did end if I release the left mousebutton again?There is a message called WM_MENURBUTTONUP but not for the left button.Now I dont know how to find that out to catch the drag end of this operation you know.Only thing I could do is to catch WM_MENUSELECT after WM_MENUDRAG (setting a marker of drag start item index) and checking at WM_MENUSELECT which item is selected and doing any update on fly or something like that maybe.Not sure whether this is the right way. My goal is just to change the menu items by user via mouse in a visible contextmenu.Has anyone a example for that how to deal with WM_MENUDRAG (optional with visible drag style using DoDragDrop function etc)? greetz
  3. Yesterday
  4. BillsTheGod

    Modded ConfuserEx (Find the Password)

    Nice work, I re-added Ref Proxy and fixed some issue at it, changed a little bit of MathProtection, fixed sizeof's issues, stopped normal x86 converter and more, I will post another CrackMe soon, Thanks for your reply.
  5. Last week
  6. fRiESLVe

    dUP2 Skin Pack

    !!!FREE FOR USE!!!
  7. fRiESLVe

    dUP2 Skin Pack

    View File dUP2 Skin Pack Skins for dUP2 Includes: Ariana Skin - old versions DooM Skin Elsa and Tiana Skin - big and small Female Skin Submitter fRiESLVe Submitted 03/24/2019 Category diablo2oo2 Universal Patcher (dUP)  
  8. Version


    Skins for dUP2 Includes: Ariana Skin - old versions DooM Skin Elsa and Tiana Skin - big and small Female Skin
  9. datlun123dth

    [patchme] Simple Patchme For Noobs

    I got it only 1 byte ...... Patch ME.7z
  10. fRiESLVe

    Ariana Grande Skin

    View File Ariana Grande Skin Ariana Grande Skin Version 1.0 Submitter fRiESLVe Submitted 03/23/2019 Category diablo2oo2 Universal Patcher (dUP)  
  11. Version


    Ariana Grande Skin Version 1.0
  12. fRiESLVe

    How to create transparent bmp file?

    I already did it myself... but thanks for helping. someone come in handy.
  13. Xyl2k

    How to create transparent bmp file?

    fix and tools in attach. example_fix.zip RGN Tools.zip
  14. Need transparent bmp file for patcher dUP2 with rgn RGN Creator not helping! example.rar
  15. Earlier
  16. User experience is important - you need a tool that gives a steady workflow. For now it feels like something that sits alongside other options (like IlSpy and dnSpy have relative merrits) rather than a full replacement. Hopefully the open source community will indeed plug some of the gaps - it's a solid base to start from though.
  17. Hi there, With few guys we made a zoo dedicated to malware targeting ATM platforms, as far as i know nobody has made a similar public project so voila. You will find here malwares that specifically targets ATMs, and reports (notice) about them. Files of interest got harvested from kernelmode.info, but also virustotal and various other services and peoples interested about the project. I'm using binGraph, pedump, Python, bintext, for the engine on reports. Some samples exist in 'duplicate' on the wall (we also provide unpacks for few files), if it is the case: it's mentioned on the report. We have hashs who are without references (i mean not associated in a white paper or something) thoses files are regrouped on the statistics page, we tried to make the stat page interesting enough for everyone to have fun exploring the zoo from the stats. We have IoCs that others seem to don't have, e.g kaspersky report about winpot, that leaded also to funny react from ppl selling it no worry, everyone have it now. We have also a page that includes some yara rules for detecting some of these malwares, and a page with goodies, voila! Everything provided in old skool style, intro also available! CyberCrime quality http://atm.cybercrime-tracker.net/ Feedback welcome, enjoy the ride ! 💳🏧
  18. Xyl2k


    Version 1.0.0


    Small intro for a new project. nothing fancy few texts, moving background, light. it is inspired from http://www.pouet.net/prod.php?which=594 you might need VC++ Redistributable for vs2015 to be able to run it. gfx by gedankenfrei + santa
  19. Xyl2k


    View File ATMWall Small intro for a new project. nothing fancy few texts, moving background, light. it is inspired from http://www.pouet.net/prod.php?which=594 you might need VC++ Redistributable for vs2015 to be able to run it. gfx by gedankenfrei + santa Submitter Xyl2k Submitted 03/18/2019 Category Crack Intros  
  20. Yup. Vulns are hyped way too much these days...
  21. Hey everyone. I try inject Method in TypeDef, but i cant do. Maybe anybody help me? My code: try { ModuleDefMD typeModule = ModuleDefMD.Load(typeof(Encrypt).Module); var mthDef = typeModule.ResolveMethod(MDToken.ToRID(typeof(Encrypt).GetMethods().Where(x => x.Name == "EncryptOrDecrypt").First().MetadataToken)); foreach (var d in module.Types) if (d.HasMethods) { d.Methods.Add(mthDef); } foreach (MethodDef md in module.GlobalType.Methods) { if (md.Name == ".ctor") { module.GlobalType.Remove(md); break; } } } catch (Exception ex) { MessageBox.Show(ex.ToString()); }
  22. LCF-AT

    WinSock problem

    Hi, thanks for the links.I think my code above seems to be ok for my task to make a compare of both local QWORDs.The "ja" command I did just set to jump also to equal label if this added size is higher inside.Just to be sure so normaly its not getting higher of course.Just wanna jump if equal or higher (should not happens) etc you know.So in both cases I have to quit and leave the byte receiving loop. greetz
  23. CodeExplorer

    WinSock problem

    https://stackoverflow.com/questions/7057501/x86-assembler-floating-point-compare https://c9x.me/x86/html/file_module_x86_id_88.html This part looks weird to me, why if is bigger will jump to @EQUAL ???
  24. CyberGod

    Strings x64dbg plugin

    Sorry it's true. Previously, I set the tabs order and after updating to the last build, I drew attention to this, and after I installed the plugin, I tried to change its location and encountered this problem. Hors thx!
  25. If you look for a good reader for your pc get yourself a proxmark3 and if you just want to look into mifare 1k just get a cheap ACR122U from ebay. if you want to have fun get yourself and arduino or rpi with a pn532 module, it's capable of reading mifare 1k and i had already fun with it too, hacking few weak card systems and making portable nfc card cloner, with this module from adafruit, but there is alternatives who are cheaper. if you have a smartphone capable of nfc reading you can try android apps such as Tag NFC Cloner, work fine too. edit: related to credit card reading i don't now, but i'm sure something should exist in github.
  26. xxx22xxx

    Strings x64dbg plugin

    @CyberGod your Problem is not Problem of plugin from @hors, its bug of x64dbg , try to move other Tabs and you will see the same error!
  27. Here is a yara rule as it seem to rain samples according to mcafee /* This Yara ruleset is under the GNU-GPLv2 license (http://www.gnu.org/licenses/gpl-2.0.html) and open to any user or organization, as long as you use it under this license. */ rule CVE_2018_20250 : AceArchive UNACEV2_DLL_EXP { meta: description = "Generic rule for hostile ACE archive using CVE-2018-20250" author = "xylitol@temari.fr" date = "2019-03-17" reference = "https://research.checkpoint.com/extracting-code-execution-from-winrar/" // May only the challenge guide you strings: $string1 = "**ACE**" ascii wide $string2 = "*UNREGISTERED VERSION*" ascii wide // $hexstring1 = C:\C:\ $hexstring1 = {?? 3A 5C ?? 3A 5C} // $hexstring2 = C:\C:C:.. $hexstring2 = {?? 3A 5C ?? 3A ?? 3A 2E} condition: $string1 at 7 and $string2 at 31 and 1 of ($hexstring*) } so far it matched all my know files. ================================================================================================================================================================ ---------- MATCH: CVE_2018_20250 : AceArchive UNACEV2_DLL_EXP FILE >>>>> C:/SBOX/temp/ace/0312885f07b5a028e64c6a2a440a8584c67adf2c0986e99447328c4bede4e102 FILE >>>>> C:/SBOX/temp/ace/0a8d46694dcd3c817ca507d3004366352926bed39897aa19c605bf407841605e FILE >>>>> C:/SBOX/temp/ace/4bde9006a960da9388d3c45cbebb52ff5015e0fbe0c4d80177b480cba8abd5a0 FILE >>>>> C:/SBOX/temp/ace/642018f0cc2afa550f51516db2015d25f317be8dd8cdf736428dfc1e8d541909 FILE >>>>> C:/SBOX/temp/ace/7871204f2832681c8ead96c9d509cd5874ed38bcfc6629cbc45472b9f388e09c FILE >>>>> C:/SBOX/temp/ace/a49d55cd7ca0dab2d84308d56bf3f7d6b3903135b9eccd8924ab1b695bb18d93 FILE >>>>> C:/SBOX/temp/ace/dcda4a01ab495145ba56c47ff2fe28dbd0b1088fb5c102577a75d9988e8e7203 FILE >>>>> C:/SBOX/temp/ace/e6e5530ed748283d4f6ef3485bfbf84ae573289ad28db0815f711dc45f448bec
  28. Just to clarify as well, I'm not saying Ghidra is bad or to not use it. Sorry if what I'm saying is coming across like that, that isn't my intention or what I mean to imply. I do actually like Ghidra and I am happy to see something finally be on par with IDA's feature set. Given that Ghidra is new and has a small team of like 2? people, there is a lot of room for improvement. And the better part is that they do plan to open source it fully, which is nothing but even better for it. Something I do foresee though with it becoming open source is that people will port it to a different language because of how slow Java is in general. I'd guess we'll see a C# port at some point or eventually a C++ port depending on how decides to tackle it which I'm all for seeing happen. Overall, it is a nice tool and I'm glad to see it happen, I just hope to see it get better over time, especially with speed improvements.
  1. Load more activity
  • Create New...