For my link archive as this is environment variable override trick to override DLL loading is not just limited to executables shipping with Windows, but also with other products (likely: virus scanners that run privileged); another alternative is running a local process serving the WebDAV protocol.
Archive for the ‘Development’ Category
Save the Environment (Variable)
Posted by jpluimers on 2024/12/05
Posted in Development, Power User, Security, Software Development, Windows, Windows 10, Windows 11, Windows Development | Tagged: DEFCON30 | Leave a Comment »
IMAGE_FILE_HEADER (winnt.h) – Win32 apps | Microsoft Learn: IMAGE_FILE_UP_SYSTEM_ONLY flag (not what you think it means)
Posted by jpluimers on 2024/12/04
Need to write a tool for this that sets/clears the ………… flag in the PE .EXE header.
Officially it is for this:
[Wayback/Archive] IMAGE_FILE_HEADER (winnt.h) – Win32 apps | Microsoft Learn
- IMAGE_FILE_UP_SYSTEM_ONLY
- 0x4000
The file should be run only on a uniprocessor computer.
In practice, this sets the affinity to 1 single CPU core (which is kind of random, and could change each time you start the executable).
This is ideal for code that is known for causing trouble executing on multiple cores, or – more importantly – to disallow core-switching for programs that give best performance when executed on a single core.
Via: [Wayback/Archive] Thread by @0gtweet on Thread Reader App – Did you ever hear about IMAGE_FILE_UP_SYSTEM_ONLY flag in NtHeader->FileHeader->Characteristics of an exe file?
Share this:
Posted in Development, Software Development, Windows Development | Leave a Comment »
Hijack Libs
Posted by jpluimers on 2024/12/04
Interesting for both red teams and blue teams: [Wayback/Archive] Hijack Libs
This project provides an curated list of DLL Hijacking candidates. A mapping between DLLs and vulnerable executables is kept and can be searched via this website. Additionally, further metadata such as resources provide more context.
Share this:
Posted in Blue team, Development, Power User, Red team, Security, Software Development, Windows Development | Leave a Comment »
Privacyverklaring | Mazda
Posted by jpluimers on 2024/12/03
Het gebruik van Bitly is netjes vermeld: [Wayback/Archive] Privacyverklaring | Mazda
Bitly: URL-verkortingsdienst en linkbeheerplatform; dienstverlener: Bitly, Inc, 139 Fifth Avenue, 5th Floor, New York, NY 10010, USA; website: https://bitly.com; privacybeleid: https://bitly.com/pages/privacy.
Dat is belangrijk, want URL-shorteners zijn een risico op bijvoorbeeld:
- De daadwerkelijke doel-URL is niet op voorhand zichtbaar of duidelijk
- De doel-URL kan achteraf worden gewijzigd, dus waar je nu op uitkomt is niet noodzakelijkerwijs waar je in de toekomst op uitkomt
- Er kan user-tracking plaatsvinden op het niveau van de URL-shortener
- Ze worden veel gebruikt om malware te verpreiden (juist ook omdat de doel-URL makkelijk aanpasbaar is)
- In veel omgevingen worden URL-shorteners om bovenstaande redenen geblokkeerd
--jeroen
Share this:
Posted in Development, GDPR/DS-GVO/AVG, LifeHacker, Power User, Privacy, Web Development | Leave a Comment »
Is it Pokémon or Big Data?
Posted by jpluimers on 2024/12/03
Fron a while ago but still relevant [Wayback/Archive] Is it Pokémon or Big Data?.
It is a cool experiment to test your own knowledge or for fun to assess recruiters or candidates (;
And it is open source too:
Share this:
Posted in Cloud, Cloud Development, Conference Topics, Conferences, Development, Event, Fun, Infrastructure, LifeHacker, PokemonGo, Power User, Software Development | Tagged: bigdata | Leave a Comment »
SCANSNAP iX100 SCANNER REPAIR MANUAL – PFU Ricoh Store
Posted by jpluimers on 2024/11/28
Ordered because all of a sudden, my scanner would only charge over USB, but not connect to any computer any more over USB (likekly because the Micro-USB connector on the mainboard was broken which is odd after just a few 100 inserts which is odd as it should last 10k+ cycles according to USB hardware – Wikipedia) [WaybackSave/Archive] SCANSNAP iX100 SCANNER REPAIR MANUAL – PFU Ricoh Store.
It costs only USB 0.00, so I hope they will send it outside of the USA.
When ordering, you have to agree with these:
- [WaybackSave/Archive] Terms of Sale
- [WaybackSave/Archive] PFU America Privacy Policy – Ricoh Scanners
When I don’t receive the manual, hopefully the translated version of this video will be of help: [WaybackSave/Archive] Reparación Scanner Fujitsu ScanSnap – Puerto De Carga Micro USB – YouTube -> Fujitsu ScanSnap Scanner Repair – Micro USB Charging Port – YouTube.
Como me pasa muchas veces esto grabe este video. Me piden que repare algo que ya intentaron reparar de la manera incorrecta.
->
As this happens to me many times, I recorded this video. I am asked to repair something that they already tried to repair incorrectly.
Queries:
- [WaybackSave/Archive] “repair” “iX100” – Sök på Google
- [WaybackSave/Archive] scansnap ix100 repair usb – Google Video Suche
--jeroen
Share this:
Posted in Development, Fujitsu ScanSnap, Hardware, Hardware Development, ix100, Power User, Scanners | Leave a Comment »
Some links on 12V ~18Ah UPS replacement batteries
Posted by jpluimers on 2024/11/27
The cells for the APC RBC7 and RBC55 UPS battery packs are all the same: 12V varying from 17Ah to 22Ah, has M5 leads for mounting the cables, and dimensions of ~76.5 * 181.5 * 167.5 mm
These cells are collectively named UB12180 but searching that term will get you prices that are not far from the APC ones, and APC wants to charge you an arm and a leg for them (around EUR 75 per cell).
Searching for the individual cell capacity will get you better offers.
Related blog posts:
Some links for finding them; maybe around Black Friday (it’s in a few days: 2024-11-29) I can really good deals:
Share this:
Posted in APC Smart-UPS, Development, Hardware Development, UPS | Tagged: 55 | Leave a Comment »
IPv4 subnet/CIDR table from OccupytheWeb on Twitter: “Network Basics for Hackers: Subnetting, Subnet Masks and CIDR Notation …”
Posted by jpluimers on 2024/11/27
I wrote about programs and scripts doing IPv4 subnet calculation, but sometimes it is easier to have a table at hand, so here is the one I found at [Wayback/Archive] OccupytheWeb on Twitter: “Network Basics for Hackers: Subnetting, Subnet Masks and CIDR Notation #networks #networkbasics #subnetting #infosec #networks4hackers #cyberwarrior #cyberwarrior #networkbasics #networkbasics subnet”
Notes:
- it is by far original, as a quick image search revealed lots of other sources, for instance the 2011 post [Wayback/Archive] Subnet Mask Quick Reference | Academic PCs Blog
- there is a much better table below adapted from Classless Inter-Domain Routing: IPv4 CIDR blocks – Wikipedia
Share this:
Posted in Development, Hardware, Internet, IPv4, Network-and-equipment, Power User, Scripting, Software Development | Tagged: cyberwarrior, infosec, networkbasics, networks, networks4hackers, subnetting | Leave a Comment »
Jeffrey | JKCTech on X: “Dit is echt 1 van de aller mooiste edge cases voor een licht sensor die ik ooit heb gezien… https://t.co/wkm8ztbHI9” / X
Posted by jpluimers on 2024/11/26
[Wayback/Archive] Jeffrey | JKCTech on X: “Dit is echt 1 van de aller mooiste edge cases voor een licht sensor die ik ooit heb gezien… “
It references a movie by Dutch humor site (often on the wrong side of humor) Dumpert:
[Wayback/Archive] DUMPERT – Ambulance naast lichtsensor flat =
which they also put on YouTube: [Wayback/Archive] Ambulance + lichtsensor = flatrave! #shorts – YouTube.
It teaches to adjust the light sensors so they don’t kick in turning the light off too soon after it gets dark.
Share this:
Posted in Development, Hardware Development | Tagged: shorts | Leave a Comment »
ValueError: invalid literal for int() with base 10: ” by tzwickl · Pull Request #768 · sivel/speedtest-cli
Posted by jpluimers on 2024/11/22
Somehow this post missed the schedule and for a long time I forgot to properly checked for “missed schedule” posts.
Back in 2021, suddenly systems with speedtest-cli threw a [Wayback/Archive] ValueError: invalid literal for int() with base 10: ” by tzwickl · Pull Request #768 · sivel/speedtest-cli after accessing the speedtest.net servers.
Around 7-8 April, 2021 the speedtest.net/speedtest-config.php XML configuration suddenly had changed the value for the XPath expression /settings/server-config/@ignoreids from being a list of integers into empty, see the archived files below.
Share this:
Posted in Development, JavaScript/ECMAScript, Python, Scripting, Software Development, XML/XSD, XPath | Tagged: 768, 769 | Leave a Comment »
The Wiert Corner - irregular stream of stuff 