Programming and Coding
Programming and coding tips, help and solutions...
1,876 topics in this forum
-
Rijndeal 128, 192 , 256 example
by ragdog- 5 replies
- 13.6k views
Hello I want a example about Rijndeal 128, 192 , 256 in Asm,Cpp Now have i searched many hours but without good results. I found this drizz cryptohash.lib but with differents results as this page http://www.tools4noobs.com/online_tools/encrypt/ Key=Tuts4You Text=Tuts4You Result in hex 256= 18fa02ae57bfc4d9e1414c37d2d5e49898b1c6ce59a2a10fced00a36c6492f64 192= 521b4e49d550cfa20856c254cac7a199a670af2f7aeb8829 128= 37f9ce5d255f5b4fb7c66cefe4331e97 Can your send code examples in Asm or Cpp?!? Regards, raggy
-
- 0 replies
- 4.1k views
c c++or MFC work for input's string mov of 2 VAR, then use them xor 12345678 ,anather xor 87654321,use them again of DES ,last .......... edit1,input application's hardwareID,same as: 1234-5678-abcd-efgj-ij then,edit2 get the string:345678ab cdefghij,how i shouid write the code?
-
- 3 replies
- 7.2k views
Hey everyone, its been a long time since i was last here so sorry if it is in the wrong section. I am pretty new to Lua and its not my language of choice but its the only language this program allows so i am stuck. I am trying to open a website using shellexecute in Lua but no matter what i do, i don't seem to get any results when the script runs. I have been googling for hours now and there were a few good reads but apparently i am the only one who is using shellexecute to open website or maybe no one else has this problem, there were a few examples using native os function (os.execute) but they didn't seem to work either for me, it just opened a cmd window w…
-
Start executable from memory
by wyrda- 13 replies
- 7.2k views
Hi, I'm new to this stuff so I think you can help me. Can I load into the memory an executable and start it from there? Something like this: fread("myexecutable.exe"), shellexecute_from_memory("myexecutable.exe"). Have a nice day, wyrda
-
Remove ASLR programmatically
by Readme- 3 replies
- 9.2k views
does someone of tuts4you know how to disable/remove the "dll can load" (IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE) in programming code? we know this IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE is equal to 0x40, so is it a correct way to substract 0x40 from the DllCharacteristics? so in example NTheader->OptionalHeader.DllCharacteristics = NTheader->OptionalHeader.DllCharacteristics - 0x40;
-
thread starting
by Readme- 8 replies
- 5.4k views
i created a thread using CreateThread succesfully. the problem is that the thread is not directly after creating is executed. the thread will be executed after calling Sleep(). the thread is not created in suspended mode, but with the creation flag 0 (0 = The thread runs immediately after creation.). but still the thread is not executed direclty. any suggestions? invoke CreateThread, 0, 0, addr ThreadProc, NULL, 0, addr dwThreadID invoke Sleep, 200 ; when reaching this code the thread created above should be executed first
-
NonIntrusive Debugger Library
by Nieylana- 17 replies
- 7.1k views
Hey all, It has been a long time since I posted to this forum,but I wanted to post here to this .NET library known to people who may find use of it. The name of the project is NIDebugger (for non-intrusive debugging). There are currently 2 variants, NIDebugger (x86) and NIDebugger64 (x64). The main page for the x86 project is here: http://tslater2006.github.io/NIDebugger/ Currently the x64 is experimental and can be found via the github repository: http://github.com/tslater2006/NIDebugger64 Because of the experimental state of the x64 library, I will only discuss the x86 one... One of the most simple examples of using it is shown below, ple…
-
How to change image base of exe file?
by Mr.reCoder- 6 replies
- 9.5k views
Hi all, we can change the image base of executable file while linking with /BASE option. i.e. Link /BASE:0x600000 but is there any way to change the image base after linking? we may use PE editor to change the ImageBase value! but the problem raises when building import table! 00601060 FF25 08104000 JMP DWORD PTR DS:[401008] 00601066 FF25 00104000 JMP DWORD PTR DS:[401000] jump addresses must change to their appropriate values! any idea? Regards.
-
Control flow obfuscation
by Lostin- 5 replies
- 7.6k views
Hello I was wondering how this is coded? how i can make a lot of Unconditional branches forward/backward? how this is implemented? i mean how i can control the execution flow with jumps like themida VM, or VMP. I can make this only forward but backward/forward will interference with each other. Also one more question. Do these jmps random? or it has fixed addresses? Any ideas will be appreciated.
-
Dev-C++ 4.9.9.2
by JMC31337- 8 replies
- 10.7k views
quick ? Why the hell does my dev-c++ crash with exception c0000005 for any memcpy memset memove Rootkit?? ridiculous!
-
[WINAPI] Enumerate all services
by mrexodia- 14 replies
- 6.5k views
Hi everyone, Some time ago I put this small utility together for a friend that needed it. Turns out to be a useful piece of code. Code was found on the internet, only slightly modified and cleaned up a little. Credits to the original author of the code (sorry, couldn't find the website I found it on). This is the code: #include <stdio.h>#include <windows.h>void ErrorDescription(DWORD p_dwError){ HLOCAL hLocal=0; FormatMessage(FORMAT_MESSAGE_FROM_SYSTEM|FORMAT_MESSAGE_ALLOCATE_BUFFER, 0, p_dwError, MAKELANGID(LANG_ENGLISH, SUBLANG_ENGLISH_US), (LPTSTR)&hLocal, 0, …
-
KRNL SCAN
by JMC31337- 5 replies
- 5.6k views
using this http://downloads.securityfocus.com/vulnerabilities/exploits/48179-poc.c and this http://blog.csdn.net/whispermemory/article/details/6754144 We could create a lil KRNL Scanner w/ Dev-C++ .. Getting the Module.ImageName is tricky, and if anyone has any suggestions? Another thing, dunno if its because of the token adjustment but, this scanner finds a few more sys drivers in the krnl in comparison to a module scanner that uses strictly: ZwQuerySystemInformation( SystemModuleInformation #include <windows.h> #include <stdio.h>#include <iostream>using namespace std; #define NT_SUCCESS(Status) ((NTSTATUS)(Status) >= 0) typedef enum _SYSDBG_COM…
-
- 8 replies
- 5.6k views
Hello, I have tested a piece of malware today and after that i was surprised that each exe i load with ollydbg it hooks it's entrypoint with PUSH <address> ret the address contains also mov [entrypoint],originalbytes etc. So how is this done? is there any explanation about this?. Even if i set ollydbg to stop at system EP the hook is still there at entrypoint. Is this a usermode or kernelmode hook?
-
Help in Calculating CRC-16 For String in Delphi
by XorRanger- 2 replies
- 8.5k views
Hello, Could SomeOne Help Me Out ? Am Looking For A Unit to Calculate CRC - 16 For a String in Delphi. I Have Tried Quite a Number Of Implementations Yet They Give Me Wrong Results. I Tried Using Delphi Encryption Compendium v5.2 Yet it Kept Giving Me The Same OutPut For Different Input Strings. Please I Need This Urgently Cos am Almost Loosing My Mind Here. *** My IDE is Dephi 7.
-
hello steps c sharp with oracle db
by drcrack2010- 6 replies
- 5.2k views
here i start simple project make application for register families members names and family id numbers and diseases in villages i make excel sheet then import its data to oracle 10 g to scott user table then connected it to c sharp 2005 then made many text boxes and buttons problem i cant complet coding i dont know in coding so help me to complet project any one make me simple tut by steps how i add or remove or edit data from oracle to appear in text box in forms of c sharp and then how get this forms with its data base and make it as application to run on another computer with no need to set up another oracle pleas urgent i put all steps he…
-
- 1 reply
- 6k views
Code for removal all internal passwords (sheets/worksbook) for an excel file. Public Sub AllInternalPasswords() Const DBLSPACE As String = vbNewLine & vbNewLine Const AUTHORS As String = DBLSPACE & vbNewLine & _ "Adapted from Bob McCormick base code by " & _ "Norman Harker and JE McGimpsey" Const HEADER As String = "AllInternalPasswords User Message" Const VERSION As String = DBLSPACE & "Version 1.1.1 2003-Apr-04" Const REPBACK As String = DBLSPACE & "Please report failure " & _ "to the microsoft.public.excel.programming newsgroup." Const ALLCLEAR As String = DBLSPACE & "The …
-
SYS Driver (Dev-C++)
by JMC31337- 6 replies
- 17.5k views
with dev-c++ create a hello world .sys driver driver.cpp -------------- #include <stdio.h>#include "ddk/ntddk.h"__stdcall NTSTATUS DriverEntry(PDRIVER_OBJECT pDriverObject, PUNICODE_STRING pRegistryPath){ NTSTATUS status = STATUS_DEVICE_CONFIGURATION_ERROR; DbgPrint("enter DriverEntry,I'm Hopy!/n"); DbgPrint("Leave DriverEntry,byb :-) !/n"); return status;}C:\Documents and Settings\Owner\Desktop\Dev-Cpp>bin\gcc -o drv.sys -s -shared -Wl,--entry,_DriverEntry driver.cpp -nostartfiles -nostdlib -lntoskrnl using instdrv: E:\drv.sys (install , start) debug view shows: enter DriverEntry,I'm Hopy!/n Leave DriverEntry,byb :-) !/n now maybe with some C# using SCMana…
-
Bass Static Library for Visual Basic 6.0
by HotSky- 2 replies
- 5k views
Info 1: Bass is powerful audio Library. http://www.un4seen.com/ Info 2: This Static Library is Visual Basic 6 only. Info 3: uFMOD Visual Basic Compiler was used in this Project. Updated: Bass_SampleLoad Bass.rar
-
How to use ImpREC_DLL
by cypher- 1 reply
- 4.5k views
Hi, has anyone used the ImpRec DLL ? I added to my cpp the prototypes and code: DWORD SetModule(DWORD pid, DWORD base); void LogIATEntry(DWORD rva_iat_slot, DWORD va_api); DWORD MakeImportTable(LPTSTR dump_filename); .... ... SetModule(fdProcessInfo->dwProcessId, fdLoadedBase); included the header with error codes and link against ImpREC_DLL.lib still getting error : error LNK2019: unresolved external symbol ""unsigned long __cdecl SetModule(unsigned long,unsigned long)" (?SetModule@@YAKKK@Z)" SOLVED: add to header #ifdef __cplusplus extern "C" { #endif /*__cplusplus*/ __declspec(dllimport) DWORD SetModule(DWORD pid, DWORD base); __declspe…
-
create thread
by Yoshi- 7 replies
- 6.8k views
Im trying to invoke ZwCreateThread. But since it is a undocumented function i don't know how to do it. The 7'th arguement of the function is PINITIAL_TEB UserStack. How to initialize this structure to use it in ZwCreateThread? This is my code so far. invoke RtlInitializeContext, -1, Addr threadContext, NULL, Addr ThreadStartupRoutine, Addr userStack invoke ZwCreateThread, Addr processHandle, PROCESS_ALL_ACCESS, Addr oa, -1, Addr ClientId, Addr threadContext, Addr userStack, FALSE
-
Basic hardware question
by simple- 6 replies
- 12.9k views
Wanted to ask a question before I wasted 20 bucks trying it myself on a fun project. I have some SPI sensors I want to get info from. A friend gave me a linux eval board w/SPI sensor soldered to the eval board, and I could see the SPI device in /dev, open it up and get any info I needed from the resigters on the SPI sensor. I'd like to know if I can take a device like this - http://www.ftdichip.com/Products/ICs/FT220X.html Plug the SPI sensor into the USB stick, then plug the USB stick into a Rasberry PI or other device that accepts USB... And using the free USB drivers, open a Windows COM port or linux open() function & talk directly with the register…
-
ManagedDllInjector src C#
by CodeExplorer- 1 reply
- 7.7k views
ManagedDllInjectorKnown limitation: The target process must a window!This program has two options: 1. Inject the current assembly itself on selected process Inject button. Look on the code InjectedClass.cs and you will see the code that load an assembly: // Here load the assembly from string Assembly asm = Assembly.Load("SSA.Business.Input, Version=1.0.0.0, Culture=neutral, PublicKeyToken=a58bfd68363575ef"); if (asm==null) { MessageBox.Show("Failed to load assembly!"); } else { MessageBox.Show("Loaded ok!"); } You can add here asm = Assembly.Load("assemly string") to load more assemblies. 2…
-
How to compile unmanaged *.dll with makefile on windows
by Freefall63- 0 replies
- 3.8k views
Hey guys, I want to compile the adplug C/C++ source into a unmanaged *.dll to use it in .NET with PInvoke, but I donĀ“t get the makefile compiling to work. Could anybody please tell me how to compile that package? Thanks for your effort! adplug-2.2.1.tar.gz
-
Child process
by Danny- 1 reply
- 6.9k views
Hello Tuts4You, Danny from ARTeam here. I am stuck with creating a child process. Edit: Problem is solved, thanks huntingspace
-
[asm] problem with opening a file
by Yoshi- 10 replies
- 7.4k views
i want to open a .exe file using ZwOpenFile. No i dont want to use OpenFile or other winapi's, just ZwOpenFile. I created a simple project based upon the link down, but when i try to open calc.exe nt-status error = C0000008 == STATUS_INVALID_HANDLE. my code is almost the same as http://www.asmcommunity.net/forums/topic/?id=15345