Programming and Coding
Programming and coding tips, help and solutions...
1,885 topics in this forum
-
Simulating USB hardware existance
by NewBHack- 7 replies
- 5.6k views
Can somebody please show me the method on how to make Windows "think" that a new hardware has been inserted into the usb slot - i mean simulate existance of some hardware. thnx.
-
ufmod and c#
by akusei- 5 replies
- 6.4k views
I'm trying to get ufmod to work with c#. I've followed their example and it works perfect! The problem is that if I add any images or icons to my c# app and compile those resources into the it with the build script then the application crashes every time. I think it might be because the final link with the .res file which contains the .xm overwrites the previous images resources... maybe? Anyway, I'm lost and can't think of anything else to do. Does anyone have any experience with this? Here is what I'm doing: 1. Compile my .net resources with "resgen /compile MainForm.resx" which creates MainForm.resources 2. Run build.bat MainForm.resources contains the .net app icon an…
-
Get Process List without using any APIs
by Kabamaru- 5 replies
- 6.1k views
Hi Do you have any code for retrieving the list of running processes without using any API from Windows? Thank you for your help.
-
MagicV2mEngine.lib wight out LIBC.lib
by Accede- 10 replies
- 4.3k views
Hi can some one make theMagicV2mEngine.lib how dont need LIBC.lib,i can not found the LIBC.lib. I thing this dll is needed for make the lib file. her is the downloadlink for the dll.dll
-
ufmod error
by Accede- 0 replies
- 3k views
I us ufmod code on asm(masm) it dont work for me i see two errors. As ide i us Winasm. her the errors Assembling: C:\WinAsm\projects\me2\base.asm C:\masm32\include\cryptohash.inc(48) : error A2008:syntax error : proto //if i copy the lib from the archiv to the masm32 lib folder is ar error on line 63 C:\WinAsm\projects\me2\base.asm(78) : error A2070:invalid instruction operands Make finished. 2 error(s) occured the frist error is on this line. 78 : invoke uFMOD_PlaySong, addr table, xmSize, XM_MEMORY the second error is from the file on the downloadlink. inc I us ml.exe version 8.
-
Iczelions Win32 Assembly Tutorials...
by Teddy Rogers- 1 follower
- 15 replies
- 14.4k views
Download Link: http://www.tuts4you.com/download.php?view.1200Ted.
-
Help with Implementing ECC in Delphi
by KKR_WE_RULE- 6 replies
- 5.1k views
Well guys, I went back to school as I went through the certicom ecc theories. Now, I wanna implement ECC, & I am having a lil problem. I am using delphi, & FGInt. I am using ECB as the parameter generator. But the Point G (base point of the curve), is represented as X & Y coordinate. I But in the ECDSA unit available, the G is a function parameter of TECPoint type. I saw in Crypto++ there is a function to combine the X & Y coordinates into a Point. Is there any delphi eqivalent of that ? Would be glad if any 1 points me 2 the right direction
-
tuneRip
by Tenshi- 4 replies
- 17.4k views
hi there! ive done an chiptune ripper which can detect and grab chiptunes from resource! maybe i will do another version wich will also extract chiptunes from packed files. ive included the sources(masm) so feel free to use! tuneRip.zip
-
Loggind addresses without debugger
by GoJonnyGo- 3 replies
- 5.5k views
Hi! I am thinking off a tool, which can log all addresses that are executed but not by beeing a debugger. Is this possible? If yes, how can i implement this? I thought about hook EP and then set again hook at every line but that would never work I think because of timing. The reason why this would be useful, is to counterpart custom anti debug. I think in the future will be more and more well hidden custom anti debug, which shows its results about 1000 lines later and you cant find them. So if this would work we could see the flow of the program without using a debugger or olly at least and see at which line the flow of olly and the flow of this program would be differen…
-
API Hooking (EAT)
by urbanyoung- 2 replies
- 4.3k views
Hey, I have a target executable which I need to hook some APIs for. I can't modify the IAT because the protector resolves the address and writes the call as: call 12345678, not call dword ptr ds:[xxx]. I can't place a hook within the actual API because it is checked to see if it has been modified. So, this lead me to the idea of modifying the export address table before its read, therefore the protector will resolve the call to my code and it won't be detected. I'm wondering how I'd go about implementing it, when would I need to edit the EAT? I need to do it before its read (obviously), but when is it read? Would I need to hook LoadLibrary somewhere? I'd like some tips i…
-
Basic encryption techniques
by Busted- 2 replies
- 6.5k views
Hi all, I am searching for some basic encryption techniques that I could implement into my Masm code, for example I want to encrypt a primary number that my serial is calculated off. Cheers Busted
-
Using Crypto++ with CodeGear C++ 2009
by KKR_WE_RULE- 13 replies
- 9.7k views
I am primarily a delphi coder but I know a bit of java thx to our school. Few days back, I started C++ with Codegear C++ Builder 2009.. I am not having any probs as its syntax is almost like java, but when I tried to use Crypto++ library with it, It wont compile. Can any 1 help me with this ?
-
- 4 replies
- 3.7k views
Hello all, So I've been bashing my head against a wall for a few hours on this issue and I'm not entirely sure what the problem is. When I step debug the application, it's breaking on this: CALL lstrcpyA The Error seems to be changing each time, first time it was array out of bounds, second time it was erroring with "Privileged instruction" I'm just not entirely sure what the issue is. Anyhow, here's the source. Can anyone possibly lend a helping hand here? Thanks ! #include <windows.h> #include <iostream> #include <string>using namespace std;void MyFunction(long int one); char alpha[] = "1234567890ABCDEFGHIJKLMNOPQRSTUVWXYZ"; char one[] = "STD"; char …
-
mams32 Read out
by ragdog- 2 replies
- 12.4k views
Hi I have a question to read out a offset from a jmp in masm32 without readproccessmemory 00415ED3 .- E9 28B1FEFF JMP 00401000 My routine find this offset 00415ED3 and i need for my wsprintf this offset 00401000 Can i make this with ReadFile? Thanks,
-
- 4 replies
- 3.3k views
How to locate a resource (dialog, bitmap, etc) in which dll? e.g. Internet Explorer -> tools -> internet options where is the "internet options" dialog resource? I tried process explorer, it could get which exe this dialog belongs to, sometimes the application loads lots of dll files. Thank you in advance.
-
[SCR VB6]ComPath Finder
by Mi4night- 0 replies
- 2.6k views
Okay this is a little app i've done days ago. When a friend send me an app i woundered on what dir he had his source codes and after i knew vb.net stores debugging info inside the compiled application i started a little tool that reveals the Debug/Compile path of an selected application .NET apps works fine so do vb6 and some c++ after this store debug info inside the application it's nth big but if u don't have anything else to do looking at source is fine. CompPath.rar
-
Read Data Write Data (Delphi)[Help]
by eXec0d3- 4 replies
- 7.5k views
I need to Read data from .exe file for example this is OEP (virtual address) 00000023 I've converted it to physical and now I need to check if data on this address = $55 then WriteFile(H, buf, SizeOf(buf), written, nil); How to do that? Sorry for my bad English language
-
Main Application State
by StreamLine- 2 replies
- 5.7k views
Hey guys. I am currently coding a process manager in delphi, I am researching way in which i can get the state of an application. I have experimented with NTQuerySystemInformation and found i can list process with and get there thread states which i have currently done however. how can i determining which thread is the main(parent) thread for that process. example -------->Thread #2 | (thread 0) Notepad.exe ----> Thread #1 in this stupid example thread 0 is the main application, then i could return the state of this to display to my end user. is this possible? i saw a "hack" so to speak or an ugly way of getting a application state by calling ResumeThread() Fo…
-
what is work this line
by BEHESHT- 6 replies
- 4.1k views
hello every body i have problem in understand this code: how work this code in my target : movzx eax,byte ptr [edx+eax-1]plz illustrate this work very thanks
-
- 3 replies
- 7.1k views
C:\Masm32\Bin\RC.EXE /v "aPlib.rc" Microsoft ® Windows ® Resource Compiler, Version 5.00.1823.1 - Build 1823 Copyright © Microsoft Corp. 1985-1998. All rights reserved. Using codepage 1252 as default Creating aPlib.RES RC: RCPP -CP 1252 -f C:\masm32\Belajar.Assembly\_plugin_masm\aPlib\RCa01884 -g C:\masm32\Belajar.Assembly\_plugin_masm\aPlib\RDa01884 -DRC_INVOKED -D_WIN32 -pc\:/ -E -I. -I . aPlib.rc. Writing ICON:1, lang:0x409, size 4264 Writing GROUP_ICON:1, lang:0x409, size 20. Writing BITMAP:1, lang:0x409, size 42040 C:\Masm32\Bin\ML.EXE /c /coff /Cp /nologo /I"C:\Masm32\Include" "aPlib.asm" Assembling: aPlib.asm C:\Masm32\Bin\LINK.EXE /SUBSYSTEM:WINDOWS /RELEASE /DLL…
-
meaning of instruction call $+5 in IDA Disassembly
by abhijit mohanta- 1 follower
- 3 replies
- 21.2k views
I found in IDA Disassembly an instruction CALL $+5 Can anybody tell me the meaning of this.
-
- 1 reply
- 3.5k views
Hi, I'm analyzing a licensing process of a program and I came across those functions (bellow) I found that it is using SHA-1, zlib decompression, upx for internal module, and not sure about RSA zlib and upx functions I've already recognize them, but SHA-1 and RSA (?) are still under question. Here are a part of function before the data is actually decrypted. The Functie_RoR_cu_shl8 looks like SHA-1, and the cycle is feeding the digest (?). I need to know if I understood this function correctly and if somebody recognize the Spider_Unknown_Function? If you can help me understand better this peace of code. Thanks. All those inline algorithms looks like Crypto++ library or Bo…
-
pinned
by Fenix- 2 replies
- 12.2k views
hi all i am really a newbey in this section But can someone give me a program who can Unpack a .exe Programs Thanks you: Niki Izvorski
-
Change class name onmouseover
by kuma.lk- 0 replies
- 3.3k views
I'm trying to find a way to use Javascript to find elements with a specific class, dynamically change the class onmouseover, and return the element to its original class onmouseout. Obviously there are a ton of scripts out there that have this kind of functionality, but I need something that I can put into an external javascript, without having to add anything to the markup. I've tried to hack something out, but unfortunately don't know enough about javascript to make it work. Any ideas? Thanks, _______________________________________________________________________________
-
PEDiminisher unpacker
by bigboss-62- 0 replies
- 7.6k views
Hello friends, i'm proud to bring you my unpacker for PEDiminisher v0.1 from Teraphy. Why do i say "Complete decryptor" ? - PeDiminisher Unpacker (Direct approch) from DESPERATE is failing with original PED, my unpacker is working. - Generic unpackers and PeDiminisher Unpacker (Debug approach) from DESPERATE are working with PED, but you can't remove "extra" sections from PED if "Encrypt resources" and "Exclude Icons" were checked. In default, PED creates a ".teraphy" unpacking section in packed file. In case "Encrypt resources" and "Exclude Icons" were checked, PED creates an extra section named ".icon", where it duplicates icon contents from resource to this new ".icon…
