Programming and Coding
Programming and coding tips, help and solutions...
1,882 topics in this forum
-
- 0 replies
- 3.8k views
// In My Driver.Function ViC_ZwOpenProcess(PID: DWord): THandle; stdcall; var ProcessHandle: THandle; ClientId: CLIENT_ID; ObjectAttributes: OBJECT_ATTRIBUTES; const PROCESS_ALL_ACCESS: DWord = $001F0FFF; begin Result:= 0; with ObjectAttributes do begin Length:= SizeOf(OBJECT_ATTRIBUTES); RootDirectory:= 0; ObjectName:= NIL; Attributes:= 0; SecurityDescriptor:= NIL; SecurityQualityOfService:= NIL; end; with ClientId do begin UniqueProcess:= PID; UniqueThread:= 0; end; if (ZwOpenProcess(@ProcessHandle,PROCESS_ALL_ACCESS,@ObjectAttributes,@ClientId) <> 0) then DbgPrint('ZwOpenProcess: -> Failed') else Result:= ProcessHandle; end;Fu…
-
StrongOD
by snoopy- 2 replies
- 14k views
Hey guys, Anyone having the source code to StrongOD plugin for Olly? Or can anyone tell me what Kernelmode option is doing when using the StrongOD plugin. I am in the middle of developing my own plugin that actually works on Win7 or Win8 so far most (read all) Olly plugins are failing on the new Windows versions. best regards Snoopy
-
Playing Xm Files From Resources
by yamraaj- 20 replies
- 8.7k views
The tile says it all...how can i play xm files from resource files......i have found examples with tables but not with resource invoke uFMOD_PlaySong, ?????, ???????,XM_RESOURCE
-
"About" Message - box
by hibernator- 5 replies
- 9.8k views
Hello , Please help me on how to create about message-box with , black background with falling dots and a vertical text scroller . I am just a beginner in masm
-
NSF player DLL for NES music files. 1 2
by mudlord- 26 replies
- 16.7k views
Here is a DLL I have been working on. I intended this for my keygens and patchers, but figured I make it public. Calling conventions are _cdecl, iirc. Included is a example in C. Basically, this is a Nintendo Entertainment system music playback dll, for NSF/NSFE files.Due to the emulator used, the file size is quite big, but UPX does help somewhat. The emulator emulates all extension chips used for NES audio, including Sunsoft's expansion chips, as well as the VRC6/7 and Namco N-106 chips. EDIT: Also did a SNES SPC-700 emulator DLL. Same parameters as the NSF dll, same calling convention. Uses a much more accurate (cycle-exact) emulator then the dll "SNESAPU.DLL" thats fl…
-
- 4 replies
- 3.8k views
Who can help me code demo a project "Download a file usesin' the ProcessBar" in Delphi? Thankx so much. ^^
-
Writing a RAW Packet Sniffer...
by 0xFF- 3 replies
- 4.3k views
I've listed a list (and listed them by order usage) of Winsock APIs needed in order to create a RAW packet sniffer... Needed APIs of WS2_32.dll 1. WSAStartup();2. inet_addr(); (Local Address, e.g: 192.168.123.XXX or the address you wanna capture packets from)3. socket(); ( IPPROTO_IP [Protocol] , SOCK_RAW [Type] , AF_INET [Family] )4. ntohs(); 5. bind(); 6. WSAAsyncSelect(); ( [hWnd] Handle to the class Window to receive Events, [Events] FD_READ )7. setsocketopt(); ( [LEVEL] SOL_SOCKET , [OPTION] SOL_RCVBUF )8. WSAIoctl();9. getsrvbyport();To stop capturing:1. WSAAsyncSelect();2. getsrvbyport();OnApplicationTerminate:1. WSACleanup();
-
Making fun with the IT teacher at school...
by mrexodia- 22 replies
- 11.6k views
Hello everyone, I was really bored and had a stupid idea: why not make a program that steals passwords from the users who use it? Before you continue reading you should know that we have about 32 computers at school who all run windows XP and require the user to log-in. The profile data is retrieved from a server and the teacher watches you (not going to sites like failblog.com) with a program called UltraVNC. To continue with this uber-lifeless post: I had the idea to make a program that looks exactly like the windows logon screen which steals passwords by storing them in a mysql database (freemysql.net). The funny thing is that the teacher behind his pc will see a login…
-
MSVC08 & code optimizing
by deepzero- 3 replies
- 4.1k views
hi, i am writing a function in c++ (msvc2008 pro), which has to be "portable" (ie. no calls to other functions or APIs) and fast. At one point i am using something like while(tlen++ < total) *str++ = leChar;which works fine, but msvc choses to "optimize" it to a crt-memset call. :/ I generally noticed msvc is very keen on replacing code with crt calls to memset, even my custom memset-function, which uses an inlined REPMOV (and serves the sole purpose of making me independant from the crt...). Is there anyway i can turn off this specific optimization feature? I tried all sorts of linker switches; none of which worked properly.
-
- 10 replies
- 4.2k views
Hello. This is in relation to a patch I'm working on. The description is based on IDA's output. There is a word area in data section called 'Time'. It's used like so: mov eax, Time What I want is a short way to assign a value to 'Time' before the above is executed. The data to use, I can make available through another register. If I try something like: mov Time, ebx it works when I run the program under IDA, but of course fails when run on its own. How can I avoid the relocation problem and do the assignment in as few bytes as possible, say 5? (No more room in the surrounding area). The above is for 32-bit but if you also have a 64-bit way that would be great. Thanks in a…
-
[Question] Statically linking TitanEngine?
by mrexodia- 1 follower
- 11 replies
- 8.3k views
Hello everyone, I'm currently coding a project that uses TitanEngine, but because of portability issues I want to link everything statically... The problem is that the guide provided here doesn't really work At first I tried compiling the original DLL version, to test if the code was correct. It wasn't (1>.\TitanEngine.rc(10) : fatal error RC1015: cannot open include file 'afxres.h'.) and I "fixed" it by replacing "afxres.h" by "windows.h"... After that another error popped up because the author forgot to do: "#define IDC_STATIC -1". I defined it and the DLL compiles (and runs) without errors... Then I changed the output type to .lib (Static Library), compiled wi…
-
help, change registers
by Kurama- 0 replies
- 4.5k views
guys, i need create a dll, for breakpoint a adress and change the EAX register, how i can do it? i searched, but i cant find
-
any one please
by drcrack2010- 4 replies
- 5.8k views
can any one share me visual basic2010 here please?
-
Name Patcher Template [ASM]
by tim619- 10 replies
- 18.1k views
Hey guys, I'm searching for nice Name Patcher source code in asm. When anybody have sources i would be very happy if this person could share Ty
-
- 11 replies
- 5.8k views
Hi everyone, Instead of writing IDC script with IDApro, i would like to integrate what IDApro can do into a simple c++ interface using TitanEngine. TitanEngine is a good tool with detailed SDK which can perform disassembling, PE modification, hooking etc. I would like to know how i can retrieve all the addresses of user-defined functions in a C++ .exe program using TitanEngine. If i am to create a dummy c++ file with 3 functions: void func1(), void func2(), void func3(), which API can i use to retireve the 3 functions after disassembling with TitanEngine? IDAPRO has flirt signature and name view which automate the analyzing of all user-defined functions... Is there a byt…
-
- 3 replies
- 3.6k views
Ummm... i wrote a simple callback project in Delphi just to see how it looks like inside Olly when it goes inside a callback, does it look like this ? (btw, it's not a normal CALL) The "Arg 1" is what i'm talking about... here's the source code: unit Unit1; interface uses System.SysUtils, System.Types, System.UITypes, System.Classes, System.Variants, FMX.Types, FMX.Controls, FMX.Forms, FMX.Dialogs; type TForm1 = class(TForm) Button1: TButton; procedure Button1Click(Sender: TObject); private procedure myCallback (s: string); public { Public declarations } end; type TCallbackFunction = procedure (s: string) of object; var Form1: TForm1; implementation {$R *.fmx} pro…
-
Very Nice Asm Tut 1 2
by C0dEStRiP- 25 replies
- 27.6k views
-
Bruteforce function.
by Mondo- 6 replies
- 6.3k views
Hi, Does anyone know of a fast brute force algorithm they are willing to share? I'm looking for something preferably written in C or x86 assembler. My aim is to brute force a 40-bit key. I tried using the brute force function given in a tutorial titled "the art of password brute forcing". It counts predictably up to FF FE FE FF 00, it then displays FF FE FF 00 00 as the next key in the sequence instead of the expected FF FE FE FF 01. The document I am referring to can be found here :Link I can't seem to find why it behaves this way. I though I would share it in case someone can see how to fix it. Thanks for any help, Mondo. edit : It would help if I sh…
-
[PE Edit] add new code/data section
by Stasis- 4 replies
- 6.9k views
Hi guys, i am trying to add new code or data section to an existing PE file. for eg: calc.exe from windows7 I am doing this for education research. I discovered PELIB opensource library but it is not updated and there's a limit to what it can do. I have no problem adding section for c++ console applications but it doesnt add new section for calc.exe due to limited header size. I was wondering if anyone have any other open source and useful PE editor or PE maker... i need the library and not the tools. something i can code with. PE EDITOR 1.7 - yoda CFF explorer Both are great tools but i need the library to perform my own calls. help please. Thanks in advance.
-
RNG in keygen
by chickenbutt- 2 replies
- 5.7k views
I'm looking for an example keygen in any language that has RNG used in a functional part of the key.
-
Problem To animate olly debugee from thread function
by Zool@nder- 3 replies
- 3.7k views
Hey every one, I'm experiencing a coding problem with ollydbg. When i call an animation function from main plugin thread, it works. (of course it will work ). and here is a piece of correctly working code: void ODBG_Pluginaction(int Origin, int Action, void* pItem) { if(Origin == PM_DISASM) { switch(Action) { case 0: Go(Getcputhreadid(), 0, STEP_OVER, false, true); break; } } } but if i call the same function from a thread it doesn't work (and here's a non working code): DWORD WINAPI ThreadFunc(LPVOID dd) { Go(Getcputhreadid(), 0, STEP_OVER, false, true); return TRUE; }void ODBG_Pluginaction(int Origin, int Action, void* pItem) { DWORD …
-
- 0 replies
- 3.3k views
--
-
Need To Find All Functions That Deal With CD-DVD Rom 1 2
by Mr.reCoder- 34 replies
- 14k views
Hi. Coders and also Reversers... I am coding a kernel hook for cd-dvd system driver for monitoring that device. I need all functions that deal and work with this device... I have (and know some) functions but maybe incomplete... functions like: deviceiocontrol , getdrivetype , ... Regards...
-
how to identify the protection method ?
by newcommer- 8 replies
- 7k views
Hi, After reading and playing lots of pages and tools ( I am sure this is nothing ) ) as a newbie I am very confused ! I have .net dll trying to delete the time limit but even could not start doing it, because every new report I see a new protection system which seems to me logical that my ddl has it !! So; Is there any doc that systematically deals , helps to understand which protection methods are used in the dll ? Also if these systems resembles to can you guide to a way ? As far as I can see ; StrongName + obfuscate + string / all encoding is present. Thanks,
-
- 1 reply
- 3.9k views
Hello ! I want to fully understand Windows API hooking and everything about ring0, ring1(never heard about), ring2(never heard about), ring3 and also any ring it could be. I wish a book for API hooking or a video or something to help me to fully understand these concepts. Thank you very much ! LE: Forgot to say, I want to know everything about API detouring and any other kind of API intercepting also.