Jump to content

hotnuma

Member
  • Posts

    49
  • Joined

  • Last visited

  • Days Won

    3
  • Donations

    $0.00 
  • Country

    France

Everything posted by hotnuma

  1. Or maybe like this : dir > text.txt & copy /y text.txt text1.txt & copy /y text.txt text2.txt
  2. you should do the minimal requirements, remove all references to those trolls in order to avoid any kind of advertising that they don't deserve and just ignore them in the future.
  3. From the sources : https://github.com/openssl/openssl/blob/master/crypto/rand/rand_win.c Line 64, if the macro USE_BCRYPTGENRANDOM is defined, the block from line 65 to 77 is built, using BCryptGenRandom. Otherwise, the block from 79 to 115 is built, using CryptAcquireContextW and other functions. Rebuilding OpenSSL should fix that problem but unfortunately, OpenSSL seems to use a horrid build system written in Perl and that makes it not so easy. In a perfect world, it would simply use CMake but we're not in a perfect world.
  4. The biggest problem with Linux is the poor binary compatibility. Under windows if you download this program : https://www.7-zip.org/ 7-Zip works in Windows 10 / 8 / 7 / Vista / XP / 2016 / 2012 / 2008 / 2003 / 2000 / NT. You have 20 years of binary compatibility !!! That was a huge advantage of windows. Under Linux there is absolutely no binary compatibility and you *must* install programs from the repository of your distribution, it's totally enclosed. Under windows, I use most of the time some Linux programs, gcc, Qt, QtCreator, etc... I'd rather use Linux, it would be simplest, but using XP I have that binary compatibility with a huge amount of programs. That was an advantage of windows in the past, but nowadays, Redmond guys are so stupid that they destroy everything that was good in windows. It's now buggy, bloated and it forces users to play the Russian roulette with automatic updates. That's incredible.
  5. I understand, that's how xompie do it. :-P So, I tried with xompie's kernelxp.dll this way : [DLL replacements] KERNEL32.dll=kernelxp.dll It works just fine. Thanks a lot. :-D
  6. Rose Royce - Is It Love You're After - 1979
  7. I tried ImportPatcher under XP and I can't really understand how it works. First, I've built a test.exe program which calls GetFileInformationByHandleEx and targeting _WIN32_WINNT=0x0601 I've built a mod.dll containing a dummy bla function with the same arguments that the real GetFileInformationByHandleEx Now I want to replace the missing GetFileInformationByHandleEx with the dummy bla function from mod.dll : [Patches needed] test.exe=Functions [KERNEL32.dll] GetFileInformationByHandleEx=bla * not found I tried also : GetFileInformationByHandleEx=mod.bla and different other things but I always get "not found". I'm missing something.
  8. https://jellevergeer.com/the-undocumented-istoplevelwindow-api/ https://stackoverflow.com/questions/16973995/whats-the-best-way-do-determine-if-an-hwnd-represents-a-top-level-window It seems to be something like : BOOL IsTopLevelWindow(HWND hWnd) { return (hWnd==GetAncestor(hWnd, GA_ROOT)); } https://docs.microsoft.com/en-us/windows/desktop/api/winuser/nf-winuser-getancestor
  9. How they could drop 1/4 of their users, that's crazy. That company made billionaires and that's how they treat those who made them so rich. I hope they will pay for that someday.
  10. AFAIK, KernelEx is writen in C and C++ : https://sourceforge.net/p/kernelex/code/HEAD/tree/trunk/kexcrt/ https://sourceforge.net/p/kernelex/code/HEAD/tree/trunk/core/ That guy wanted to do a KernelEx for XP which is not something very easy, but he's not able to compile a trivial C program : And now he wants to write a driver...
  11. See how they treated OpenBSD devs when they tried to port "the thing" : https://github.com/jasperla/openbsd-wip/issues/86 I think dog face and friends try to make money from open source projets and they get mad when anyone creates a fork from their stuff, because they don't get money from that fork.
  12. It took seven messages in this thread to detect the FUD spread by a company that sells "security".
  13. https://en.wikipedia.org/wiki/Vaporware I don't think there will be any kind of download.
  14. https://rg3.github.io/youtube-dl/ It requires the Python interpreter (2.6, 2.7, or 3.2+), and it is not platform specific. It's a must-have, like ffmpeg or wget. Computing is like junk food nowadays but there's still a few very good programs and if an open source software is not compatible with you OS you have a chance to build it yourself and make it compatible again.
  15. You need first to add the path of MinGW's bin directory to your PATH env variable. Then it's trivial : gcc -o tiny_impdef.exe tiny_impdef.c Then to generate a def file : tiny_impdef.exe regex2.dll Then you get the generated file :
  16. That's so true. Most malware can be detected manually. There are also some advanced spying programs like project sauron that hide themselves using advanced methods. These are harder to detect manually but are not detected by antivirus anyway.
  17. I use Python 3.4 under XP, but it should work with latest release from python.org : https://www.python.org/downloads/ ".py" files will be registered on the system and double clicking a ".py" files should run it. The samples I posted should work but you'll have to change hard coded paths of course.
  18. You can list files this way in python : https://stackoverflow.com/questions/2212643/python-recursive-folder-read A simplest example : import sys, os fromdir = "D:\\DevBuild" for root, subs, files in os.walk(fromdir): for fname in files: fpath = os.path.join(root, fname) print(fpath) That simple program prints all file paths in the specified directory. To list the content of archives, a good way maybe to use the command line version of 7zip or bsdtar. A more advanced example : import sys, os, subprocess def archlist(fpath): cmd = "C:\\Programs\\Outils\\7-Zip\\7z.exe", "l", "-ba", fpath subproc = subprocess.Popen(cmd, shell=True, stdout=subprocess.PIPE) out = subproc.communicate()[0].decode('windows-1252').strip().split('\r\n') for line in out: print(line) def dirlist(fromdir): for root, subs, files in os.walk(fromdir): for fname in files: fpath = os.path.join(root, fname) if fpath.endswith(".zip"): archlist(fpath) dirlist("D:\\DevBuild\\parse") This one runs 7z.exe from 7Zip, it redirects the output to a text buffer, and prints that buffet, so in my example, I get something like this : 2018-07-30 09:28:58 D.... 0 0 b 2018-07-30 09:28:53 ....A 0 0 b\a.txt 2018-07-30 08:38:22 ....A 266 121 b\a.zip 2018-07-30 09:29:08 D.... 0 0 b\c 2018-07-30 09:29:05 ....A 0 0 b\c\c.txt 2018-07-30 09:29:18 D.... 0 0 b\d 2018-07-30 09:29:14 ....A 0 0 b\d\d.txt The output of 7zip may not be really nice, for example it shows empty directories, a program like bsdtar gives cleaner output I think. It's possible to do the same in Qt, it would run probably faster. I really like Qt, it's fabulous, but it's harder to learn. So, that's a starting point.
  19. All these are programs, so if you can detect unusual running processes, services, drivers, and also controlling scheduled task, startup programs, browser extensions, then you should be able to detect something wrong on your system.


×
×
  • Create New...