Programming and Coding
Programming and coding tips, help and solutions...
1,876 topics in this forum
-
Looking for Python RE framework
by 8bec- 5 replies
- 5.8k views
Hi together, I'm looking for a framework I can use with python, beeing able to disassemble, debug, analyze, etc. I've already tried TitanEngine by reversinglabs, but had a lot of errors and found no help. So I think it's kinda dead. So is there a framework to use with python, that is still improved and with a active community? Thanks, 8bec
-
- 1 reply
- 5.5k views
more info And Ref: http://gdtr.wordpres...izer-by-oreans/ Sources: https://github.com/pakt/decv Typical decompilation output: http://pastebin.com/etzbaUhB Regards
-
Need Help Asm in Delphi
by X-88- 9 replies
- 5.5k views
unit Unit1; interface uses Windows, Messages, SysUtils, Variants, Classes, Graphics, Controls, Forms, Dialogs, StdCtrls, ExtCtrls; type TForm1 = class(TForm) E1: TEdit; E2: TEdit; Button1: TButton; RG: TRadioGroup; Label1: TLabel; Label2: TLabel; E3: TEdit; Label3: TLabel; procedure Button1Click(Sender: TObject); private { Private declarations } public { Public declarations } end; var Form1: TForm1; implementation {$R *.dfm} procedure TForm1.Button1Click(Sender: TObject); var Inp1 , Inp2, Res : Integer; begin Inp1 := StrToInt(E1.Text); Inp2 := StrToInt(E2.Text); case RG.ItemIndex of 0 : begin asm Mov…
-
- 1 follower
- 13 replies
- 16.8k views
this is a tool with source(vc++ 2010) for deobfuscate smartassembly last version http://www.mediafire.com/?m6mlrdj3xp56af7 This originally posted Here I can not deobfuscate any file and get error please test if this can deobfuscate.
-
Calculate Memory
by ragdog- 2 replies
- 16.4k views
Hi @All I coding a new toy this scan a Memory from Process I use GetSystemInfo and VirtualQueryEx to calc the Memory Now is the question how can i calc the Primary Memory and Entire Memory example Winhex? Regards, ragdog
-
[SOLVED] [C++, WinApi] Transparent EditBox
by mrexodia- 8 replies
- 10.1k views
Hey everyone, Today I've wasted quite a lot of hours with trying to make a transparent edit box, which operates properly. I managed to create this transparent background, but when I typ is stuff or remove stuff it goes all bad (on windows xp only) I use this code to make the edit transparent: case WM_CTLCOLOREDIT: { RECT rect_edit= {0}; RECT rect_window= {0}; GetWindowRect(hwndDlg, &rect_window); //Window placement GetWindowRect((HWND)lParam, &rect_edit); //Control placement SetBkMode((HDC) wParam, TRANSPARENT); //Transparent control SetTextColor((HDC) wParam, RGB(255, 255, 255)); //White text //Set the brush origin (relative placement) SetBrushOrg…
-
Licensing Software
by Lek_Plepi- 0 replies
- 7.6k views
Hello Does anyone know how can i license this form? Project1.rar
-
Code Snippet to convert
by yano65bis- 11 replies
- 5.1k views
-
- 4 replies
- 4.6k views
Hi. I was working on a timer program recently, and I stored the entire contents of the source code on my flashdisk. Unfortunately, While i was using another 'foreign" computer, the antivirus or something nuked my source code silently, and it was only after copying several large files on/off the disk that I noticed my source was missing. I tried data recovery (Recuva/etc) but none of them even detected the files. So all I have left is the release version binary I tried TMG Ripper studio with no success at getting the ripped code to work, but I think that there should be some way of getting at least some working code back ..... The program was made in MASM32 with u…
-
maybe you can help me
by X-88- 18 replies
- 7.9k views
does anyone have a tutorial for making protection a software verification using php, vbscript or java script?. e.g: matching serial online. The same thing is there in this forum? maybe should I know?
-
- 7 replies
- 12.1k views
Summary: Read 32- and 64-bit PE files (PE, PE+) for Windows, work similar with both formats Rebuild 32- and 64-bit PE files Work with directories and headers Convert addresses Read and write PE sections Read and write imports Read and write exports Read and write relocations Read and write resources Read and write TLS Read and write image config Read and write basic .NET information Read bound imports Read exception directory (PE+ only) Read debug directory and extended debug information Calculate entropy Change file alignment Change base address Work with DOS Stub and Rich overlay High-level resource reading: bitmaps, icons, cursors, version info, string and message tabl…
-
Looking for a light weight debugging engine API
by genuine_- 4 replies
- 4.1k views
Hey guys, Im looking to see if there is a light weight C/C++ debugging engine api for Windows out there? Something capable of handling BP's and such, nothing fancy, this is for a small PoC tool im working on and was wondering before i decided if i needed to just write a small debugging engine on my own. I am only aware of TitanEngine which has such an interface, but TitanEngine is abit much for this purpose. Thank you.
-
Hiding window state from itself
by brain- 1 reply
- 6.4k views
I'm running multiple instances of a gui application at once to dump a list each application maintains in form of a ListControl. I would like the windows to stay minimized but unfortunately they stop updating the ListControl then. I thought if the application doesn't know it's minimized it should keep behaving like it's not. After a bit of research i found that basically the only way to determine if a window is minimized is calling IsIconic or handle WM_SYSCOMMAND and remember till the window is restored. But the application does neither. Then i thought maybe the list is only updated internally (which is the only thing that matters, I don't have to see it) when WM_PAINT me…
-
Hexidecimal to Decimal
by zorke- 5 replies
- 6.6k views
Hi Recently i've started a project which requires displaying output as a decimal number in ASCII characters. I've done the Hex value - to - ascii char thing but conversion of the number ... say - 2012 from hex (which is 0x07dc) to a decimal number displayed on the screen (2012) is a bit more difficult. Example : eax == 07dc i want to display in a messagebox the decimal value of eax. how do i make it decimal? Thanks
-
hooking NtQueryInformationProcess
by snoopy- 8 replies
- 9k views
Hey guys, Small question, I've read the anti-debug reference from Peter Ferrie which goes into detail about tons of anti-debug tricks. Now what I am facing is the following. I am searching for a good way to hook NtQueryInformationProcess. Atm: ;------------------------------------------------------- ;Original instruction 6 bytes long: ;ntdll!NtQueryInformationProcess: ;774efa78 b816000000 mov eax,16h ;774efa7d 33c9 xor ecx,ecx ;------------------------------------------------------- NtQueryInformationProcessHook: mov eax,16h xor ecx,ecx pushfd cmp B[esp+0Ch],07h ;ProcesDebugPort 0x7 jne >CheckProcesDebugFlags mov B[esp+0Ch],00h CheckProcesDebugFlags: cmp B[es…
-
- 11 replies
- 9.5k views
hi programmer Delphi and C + + i need help converting from C + + to Pascal, because I am not free to call functions in C + + Builder are too sensitive. I hope you would help me. thx b4 Code /* SunVox engine is distributed under the following BSD-style license: Copyright © 2002 - 2010, Alex Zolotov <nightradio@gmail.com> All rights reserved. Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met: * Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer. * Redistributions in binary form must reproduc…
-
mkfpack unpacker
by bigboss-62- 4 replies
- 15.2k views
Yohoo hord of fans... I'm proud to bring you my mkfpack unpacker. I haven' seen dedicated unpacker for this one, only genetic unpackers that supports it. Nothing special to say, except that unpacked file may contains an extra section containing ICON, GROUP_ICON, VERSION and MANIFEST. I have also included unpacker source code and packer source code in masm for those who are interested... See you soon ... Laurent aka BIGBOSS from COPs mkfpack.zip CPS!UnMkfPack.zip
-
Coding a packer stub in C++
by rendari- 11 replies
- 19k views
Hello all, While I've created packers for Windows before, they've all been in assembler. Right now I'm thinking of how to code a packer stub for windows in C++, and am stuck. Has anyone done this before and have any tips? Have any articles been written about this? I have a couple of ideas on how to do this, but they're all really nasty. One involves building the stub as a DLL, and appending it to the exe as a new section. Set Import Table in PE header to point to the import table of the appended DLL. Also you will need to manually fix all the relocations in the DLLs code section. This might work, but I imagine there would be nasty problems. Option 2 is to have an assemble…
-
MASM - Already patched-check (SnR function)
by DeadAndGone- 15 replies
- 5.8k views
removed
-
AHX Player Library
by Ufo-Pu55y- 6 replies
- 8.3k views
Hi, here's another lib, where I've kinda simplified the interface and build a static lib of a well known player code. Static lib and some example code in c and asm: PlayAhx.7z All credits for the library to Bartman/Abyss cheers
-
- 5 replies
- 4.4k views
I have an idea for an app, but ultimately I would like to make it possible for people to add functionality to it by means of plugins. It would be like Olly in that respect, except not quite that ambitious. What I would like is for people to be able to add this functionality non-language specific, ie. Iif someone wants to use Delphi or .NET, but I want to program the skeleton in C++, that should be allowed. I have done a lot of thinking about this but I wanted to get another's optinion on the best way to structure the framework before I took the plunge and started coding. I would imagine that provding an API is probably the best bet, but I wanted to make sure I didn't miss…
-
- 3 replies
- 4.1k views
movzx ecx,byte ptr [ebp+8] mov eax,055555556h imul ecx I can understand what those instructions are doing. For instance if ecx takes the letter 'x', the registers would contain the following: EAX: 0x50 ECX: 0x78 EDX: 0x28 Because 55555556 x 78 = 28000050, the high part goes to EAX and the low part goes to EDX. What I cant understand is how do I replicate this using C or C++, I tried to make a function that multiplies some hex number with 55555556 and keep the high/low byte on another variable. But RE that program doesn't produces the same results as those assembly instructions. Can anyone explain me how to translate those instructions into some HLL? Thank in adva…
-
- 5 replies
- 5.6k views
Anyone knows how BoxedApp does their packing of .NET PE into PE32 executables? I tried creating process from a PE32 stub exe and then mapping .NET PE into suspended process but it doesn't work - gives ".NET runtime not found error". It works only when the referenced stub is a .NET PE itself. />http://www.security.org.sg/code/loadexe.html My objective is to hide the existence of a .NET PE exe within a PE32 exe and yet able to run and load the Common runtime langauge (.net environment). Thanks for any advice.
-
Decrypting issue
by Sina- 2 replies
- 12.7k views
Hello, I'm goin to write a decoder for a unknown encryption but i have .SO(loaders) that used for that... as far as i know docoders uses the a lib(eg.: ioncube_loader_win_5.2.dll) and as i said i have libs ".SO" anyone could help me???
-
Vertical Scrolling Text help [Delphi]
by data_sniper- 2 replies
- 5.3k views
I want just to know how i can move text on a window like Text in the end of movies Its Scrolling Text but not Horizental .. i want to Create a Scrolling Text Vertical Tnx 4 helping Me
