Programming and Coding
Programming and coding tips, help and solutions...
1,882 topics in this forum
-
- 0 replies
- 2.8k views
ProfilerCallback.cpp // This is the function that will invoke the managed code through COM interop on another thread// this function creates the CCW object// [in] this pointer DWORD WINAPI CreateManagedStub(LPVOID lpParam) { _ManagedStub * pIManagedStub = NULL; HRESULT hr = CoCreateInstance(CLSID_ManagedStub, NULL, CLSCTX_INPROC_SERVER, IID__ManagedStub, (void **)&pIManagedStub); if (FAILED(hr)) { printf("Fail to CoCreateInstance on ManagedStub class 0x%x\n", hr); return 1; } if (pIManagedStub == NULL) { printf("pIManagedStub is null 0x%x\n", hr); return 1; } // we have the managed instance now. (…
-
h4sh3m Generic Patcher Generator
by h4sh3m- 11 replies
- 6.4k views
I coded this Patcher Generator in Delphi. if you found any bug Please send me. Download N-Joy My Friends.
-
Unpacking yoda 1.0-1.3 Exe
by Sevy- 1 follower
- 6 replies
- 8.2k views
Hi all, New here, but noticed some people here know their stuff(well close to all of them). I was hoping to find some help here. I am trying to unpack a exe which is crypted with yoda 1.3. After some searching i found CPS_UnYoda_v1.0b This did something, but not extract it. Though PEid says its yoda 1.x now instead of 1.3 But unpacking it has not worked yet, i also found Quick_Unpack_2.2.Tool But this was in russian language or something. So i have no idea if this can do it, or what error it actually gives when i try. Thanks Any helps is much appreciated.
-
C to Delphi
by iLuvCoding92- 2 replies
- 9.9k views
I am having problems converting this coding form C to Delphi. />http://forum.tuts4you.com/index.php?showtopic=16209&view=findpost&p=81108 char* szMemDump = (char*)malloc(mbi.RegionSize+1);malloc is ok. But I don't what's with all the "char*". if( memcmp( (void*)(szMemDump+x), (void*)szBytes, strlen( szBytes ) ) == 0 )I just cannot sum both szMemDump and x together?
-
Developing a CIL Parser
by sirp- 0 replies
- 3.8k views
The analysis of .NET libraries in [1] suggests the development of a tool for automatic contract extraction from .NET classes. The article observes that preconditions tend to be hidden under explicit exception cases. A tool leveraging this observation has been developed as part of this diploma thesis and is documented in this report. Although the chosen approach is limited to elementary cases, the application of the tool to classes ArrayList, Stack and Queue of the .NET framework [16] reveals that, in these classes, half or more of all explicit exception cases can be addressed and the corresponding preconditions are extracted by the current implementation. The report inclu…
-
(c++) simpe output
by deepzero- 4 replies
- 11k views
hi, this program is supposed to output the pids & names of all running processes: PROCESSENTRY32 pe32; HANDLE procsnap = CreateToolhelp32Snapshot( TH32CS_SNAPPROCESS, 0 ); pe32.dwSize = sizeof(PROCESSENTRY32); Process32First(procsnap, &pe32); while(Process32Next(procsnap, &pe32)) { printf( "PID: %d [%s]\n", pe32.th32ProcessID, pe32.szExeFile); } However, only the first char of the process name is printed. The PROCESSENTRY32 structure can be found here: />http://msdn.microsoft.com/en-us/library/ms684839%28v=VS.85%29.aspx
-
[Delphi] Help in scanning bytes in process
by iLuvCoding92- 4 replies
- 12.5k views
Fixed. Please close thread. Thanks.
-
NASM - USB ERROR
by JMC31337- 0 replies
- 9k views
Windows XP with all the updates and yet this nasm code will work fine and end its routine just fine UNLESS a USB is plugged in.. in which case it crashes ntvdm ;nasm -f bin -o ebpp.com ebpp.asm push ebp mov ebp,esp push ds push es push ebx push esi push edi add ebp,0000FFFFh mov ah, 0x0e mov al, '!' int 0x10 mov ah,00 int 0x16 ;lss esp,[0000] pop edi pop esi pop ebx pop es pop ds lss esp,[0000] pop ebp retf if ya can tell me why it crashes that'd be cool and if ya try to debug it with TD it'll crash ntvdm too
-
test al,al ? isn t that weird
by uusser- 8 replies
- 29.7k views
hello everyone i have a litle question (i know that s stupid) but plz help me to understand it, well suppose that we have this code call func.00404521 test al,al jnz 00404747in which the call well change the al register so the question is why did we use test instruction on the al register(with itself) even if we know that the result will always be the same (example of that in reversing) so test al,al will always have the same result why did we used and thanks
-
[Delphi] Variables in statement
by iLuvCoding92- 1 reply
- 7k views
How to I create a variable in the statement(between the begin and end;) instead of before the statement? I don't want to waste a lot unused array. I want the program to be able to change the no. of array during runtime.
-
Win32 GUI apps in VS2008
by deepzero- 9 replies
- 11.1k views
Hi, This is something that`s been bugging me for a long time. I downloaded "Microsoft Visual C++ Express Edition", which works just fine for creating native console apps and .NET GUI apps. I cant figure out how to create a native GUI app, though. Choosing "Win32->Win32 project" is not a Win32 Form Project. Nor can i find how to create MFC projets... help?
-
coding disassembler with hde32 library
by abhijit mohanta- 1 reply
- 8.3k views
I am trying to code disassembler using hde32 libary following is the part of code ReadFile(hFile,&lpBuffer,16,&noOfBytes,NULL); void *code = (void*)pbFileEP;//pbFileEP is entry point unsigned int len = hde32_disasm(code,&hs) can anybody suggest how to proceed further.
-
MFMPlayer library troubles
by F0X- 9 replies
- 6.6k views
I'm having some troubles with the mfmplayer library, seems the .lib file is no good. Writing a keygen template in assembler, when I link I get this: And all I do is, include mfmplayer.inc (which works fine ) then I include the library with includelib mfmplayer.lib and I get those 100 errors... without the lib its alright so it is something with the .lib file. Anyone a clue what could be happening? In an other project I have it works fine so I do not get what's going on here. Note: This is even before I add some code, just linking the library gives problems.
-
Unpecompact 2 + Source Code... 1 2
by Teddy Rogers- 26 replies
- 33.7k views
UnPeCompact 2 version 1.0 + Source Code by Mad Mickael... Ted. Unpecomp2.zip
-
Win32 GUI - Message on Text Change
by Unbekannt1- 5 replies
- 7.3k views
I have tried searching and downloaded various sources but I did not find one where the "key" in a Keygen is generated when the input is changed. Most of them require you to press a button. Can anyone tell me the correct Message I could use to retrieve a text change in a textbox/edit control? I already tried WM_KEYDOWN etc but they did not work. Thanks in advance!
-
Mono.Cecil Patch
by high6- 2 replies
- 15.6k views
Open "Mono.Cecil.Cil/CodeWriter.cs" Find "ComputeMaxStack" Add this line above it "if (!CodeWriter.FixedMaxStack)" Add field to the CodeWriter class "public static bool FixedMaxStack = false;" CodeWriter.FixedMaxStack = true; Reason for this patch is because otherwise Cecil will attempt to recompute the MaxStacks. It does not work on obfuscated code. For example ldc_i4 0 ldc_i4 0 ldc_i4 0 ldc_i4 0 br lb2 lb1: ret lb2: ldc_i4 0 ldc_i4 0 ldc_i4 0 ldc_i4 0 br lb1Cecil will compute it as 5 when it really is 8. Causing a stack overflow (InvalidProgramException) when it runs.
-
[C++] Example_Loader
by Zer0Flag- 2 replies
- 10.6k views
Hello, I made a little loader for a reverseME from Lena151. In this case a Patch would be better but I made this for my own practice and I hope someone can use this souce to learn In the attachement you can finde the loader.exe and the reverseMe. #include <Windows.h>#define WIN32_LEAN_AND_MEAN #define VC_EXTRALEANint WINAPI WinMain(HINSTANCE hInstance, HINSTANCE hPrevInstance, LPSTR lpCmdLine, int nCmdShow) {/* CPU Disasm Address Hex dump Command Comments 0040107B EB 1D JMP SHORT reverseMe.0040109A 0040107D . 6A 00 PUSH 0 ; Type = MB_OK|MB_DEFBUTTON1|MB_APPLMO…
-
ASP.NET: ASM to IL compiler
by sirp- 1 reply
- 7.5k views
Lately we have been swamped with Bill Gate's new .NET vision. Once again even respectable people are crying out that C++ and assembler programmers will become extinct dinosaurs. My reaction to that is: "It's not fair!" Why are they always picking on assembler programmers? We don't do a lot of harm! Just because we like to have total freedom and like to be close to our hardware doesn't make us bad people. Go pick on someone else (like LISP programmers. I don't like them). Frankly, I was getting a little tired of this whole discussion, so I decided to do something about it - by bringing x86 assembler programming into the .NET age. Well, at least to allow ASP.NET pages to be…
-
- 0 replies
- 3.2k views
Wrote a little app .. it first gets all OpCode Types through System.Reflection.Emit and then puts em in a DataGrid have fun ! MSILOpcodes.rar
-
learning C# by example
by CodeExplorer- 2 replies
- 6.1k views
learning C# by example />http://www.fincher.org/tips/Languages/csharp.shtml />http://www.java2s.com/Code/CSharp/CatalogCSharp.htm />http://en.csharp-online.net/Manipulating_Strings_in_CSharp%E2%80%94Extracting_Part_of_the_String />http://csharpindepth.com/Downloads.aspx
-
- 0 replies
- 4.6k views
BlackMagic -- Managed Memory Manipulation This is a class library to make process, thread, and memory manipulation a bit easier from a managed application. It takes care of most of the Win32 imports and a lot of the methods and tricks for you, making memory reading, writing, injection, execution, and DLL injection a snap, among a bit else. It uses ManagedFasm for JIT assembly, as well. Take a look through the code, the included examble, and the documentation. Most everything should be pretty easy and intuitive to use. If you have any questions, comments, or suggestions, please do not hesitate to post. Attached are the source, the documetation, and the binary class library…
-
How To Set Condition BreakPoint ?
by Sh4DoVV- 1 reply
- 6.2k views
Hi Friends How To Set Condition BreakPoint Like OllyDBG With A Debug_Loader That Coded By ASM ? Thanks
-
- 5 replies
- 7.1k views
Hello people i am using miracl and i was trying to implement a *SECURE*`elliptic curve standard. So my parameters should be valid. The curve details is: : type binary over 2^n : curve name: SECT-193R2 curve parameters: a: 0163F35A5137C2CE3EA6ED8667190B0BC43ECD69977702709B b: 00C9BB9E8927D4D64C377E2AB2856A5B16E3EFB7F61D4316AE n: 010000000000000000000000015AAB561B005413CCD4EE99D5 q: 02000000000000000000000000000000000000000000008001 Base point: x: 00D9B67D192E0367C803F39E1A7E82CA14A651350AAE617E8F y: 01CE94335607C304AC29E7DEFBD9CA01F596F927224CDECF6C The problem resides in the public point (x,y) are not getting accepted by miracl as members of the current curve …
-
modify the instructions in ollydbg
by tianna0370- 6 replies
- 7.5k views
Hello: I am developing a plugin for Ollydbg now, but I am struggled to modify the assembly code by Ollydbg API. For example, in the main windows, there is an instruction "PUSH EAX". I'd like to change it to "PUSH EBX". I have tried two APIs: Assemble() and Writememory(), but didn't success. Am I right? Could anyone write a piece of sample code for me? thanks a lot in advance. Fan
-
Service is runnig
by ragdog- 2 replies
- 3k views
Hi Can i get the status of a service (if closed or if running) Thanks