Posted by jpluimers on 2024/12/26
On my research list [Wayback/Archive] HInvoke and avoiding PInvoke | drakoniaโs blog.
A very minimalistic approach of calling .net runtime functions or accessing properties using only hashes as identifiers. It does not leave any strings or import references since we dynamically resolve the required member from the
mscorlibassembly on runtime.
Posted in .NET, C#, Development, Encryption, Hashing, Power User, Red team, Security, Software Development | Tagged: CyberSecurity, dinvoke, hinvoke, infosec, maldev, pentest, Pentesting, redteam | Leave a Comment »
Posted by jpluimers on 2024/12/12
Simple (but fully working) code for
NPLogonNotify(). The function obtains logon data, including cleartext password.
[Wayback/Archive] PSBits/PasswordStealing/NPPSpy at master ยท gtworek/PSBits has been used in the wild since about 2022 (the code is from 2020).
The code is a ~100 line C file resulting in a DLL exporting the NPGetCaps() and NPLogonNotify() functions.
Background/related:
Posted in .NET, Blue team, C, CommandLine, Development, Power User, PowerShell, PowerShell, Red team, Scripting, Security, Software Development, Windows Development | Tagged: NPPSPY | 1 Comment »
Posted by jpluimers on 2024/11/19
A while ago, within a week time, I got reminded of a project I did some 15 years ago involving low-latency audio using the .NET platform on Windows XP Embedded.
For that I used the BASS.NET wrapper classes and P/Invoke methods around the Un4seen BASS Audio Library.
Back in those days there was not much documentation about this, but now there is more.
Some starting points are:
BASS.NET is a .Net wrapper for the BASS Audio Library and all it’s Add-Ons – available @ http://www.un4seen.com. The Bass.Net.dll release version is installed in the specified ‘install-directory’ and will be registered to the .NET Framework as a standard component (if you left all the installation options checked). Note, that there are various Bass.Net assemblies available (side-by-side): one targeting the .Net v4.8 Full Framework and one targeting the .Net v6.0 Core Framework.
The native BASS libraries (e.g. bass.dll) are NOT included and need to be downloaded seperately – so make sure to download the BASS library and the needed add-on libraries and place them to your project executable directory (e.g. place the bass.dll to .\bin\Debug).
โฆ
followed by an elaborate list of the Bass.net namespaces.
Via:
Maart 2021
Momenteel repeteer ik wekelijks met mijn muziekverenigingen realtime via internet. We kunnen echt samen muziek maken en dat is heerlijk!
Om succesvol samen te kunnen spelen via internet begruiken we 2 programmaโs:
- Zoom โ dit gebruiken we voor het beeld, de video.
- Jamulus โ dit gebruiken we voor het geluid, de audio.
Op deze pagina vindt u een handleiding die ik schreef voor de installatie en het instellen van deze 2 programma’s.
Let op:ย Er is een aparte handleiding voor Windows en een aparte handleiding voor MacOS.
Verder kun je via deze pagina de installatieprogramma’s downloaden die nodig zijn om Jamulus en ASIO4ALL te installeren.
Dit is Open Source software die je ook kunt downloaden van www.jamulus.io enย www.asio4all.org.
Related:
โฆ
Among other things, this makes it possible to emulate a typical Windows application that opens an audio device in shared mode. This means other applications can use the same audio devices at the same time, with the Windows audio engine mixing the various audio streams. Other universal ASIO drivers do not offer this functionality as they always open audio devices in exclusive mode.
โฆ
--jeroen
Posted in .NET, Audio, Conference Topics, Conferences, Development, Event, LifeHacker, Media, Power User, Software Development, Windows Development | Leave a Comment »
Posted by jpluimers on 2024/10/15
A while ago I downloaded some internal tooling that required vcredist140.dll (and related DLLs).
From the name you cannot see if that is a 32-bit (x86) or 64-bit (x64) dependency so you often have to trial and error to figure out which one you need.
I adopted some winget package install command-lines with package IDs current at the time of writing this blog post; similar should be available at the time of publication:
Posted in .NET, C++, Development, Software Development, Visual Studio 2015, Visual Studio 2017, Visual Studio 2019, Visual Studio 2022, Visual Studio and tools, Visual Studio C++ | Leave a Comment »
Posted by jpluimers on 2024/10/09
Note that the below methods likely will cause security warnings if a Windows machine has been properly configured, but in most cases at least one of them works.
curl --url https://speed.hetzner.de/100MB.bin --output %TEMP%\100MB.bin
certutil | Microsoft Docs (at least Windows 7 and up; needs UAC elevation)certutil.exe -urlcache -split -f https://speed.hetzner.de/100MB.bin %TEMP%\100MB.bin
powershell.exe -Command (New-Object System.Net.WebClient).DownloadFile('https://speed.hetzner.de/100MB.bin','%TEMP%\100MB.bin')
I think it works for all versions of curl, certutil, and PowerShell though I did not have anything older than up-to-date Windows 7 (having PowerShell version 3) and recent to test on.
Posted in *nix, *nix-tools, .NET, Batch-Files, CommandLine, cURL, Development, Power User, PowerShell, PowerShell, Scripting, Software Development, Windows, Windows 10, Windows 11, Windows 7, Windows 8, Windows 8.1, Windows Development, Windows Vista | Leave a Comment »
Posted by jpluimers on 2024/09/19
Who needs AI (:
[Wayback/Archive] GitHub Profile Roast ๐ฅ๐ฅ๐ฅ
Sourcecode at [Wayback/Archive] GitHub – codenoid/github-roast: Spicy GitHub Roast ๐ฅ
Via [Wayback/Archive] Dennis Schubert: “okay, I finally found a good uโฆ” – Mastodon
okay, I finally found a good use for an LLM. no, really.
github-roast.pages.dev
this thing is brutal
In addition, I learned about [Wayback/Archive] lokal.so ยท GitHub: Supercharged HTTP/TCP/UDP Tunneling Software
Posted in AI and ML; Artificial Intelligence & Machine Learning, C#, C++, Development, JavaScript/ECMAScript, LLM, PHP, Python, Ruby, Rust, Scripting, Software Development | Leave a Comment »
Posted by jpluimers on 2024/09/19
Reminder to check-out of the 2015 issue mentioned in the tweets below has been had any progress.
At the time of tweeting, choco has no notion of [Wayback/Archive] status.chocolatey.org which would be very helpful to point to in case of errors on time-outs on chocolatey server calls especially if it could interrogate and inform of maintenance windows and outages when things fail on the client side.
Posted in .NET, Chocolatey, CommandLine, Development, PowerShell, PowerShell, Scripting, Software Development, Windows | Leave a Comment »
Posted by jpluimers on 2024/08/21
This is cool: [Wayback/Archive] aspnet-contrib/AspNet.Security.OAuth.Providers: OAuth 2.0 social authentication providers for ASP.NET Core.
Based on ideas atย [Wayback/Archive] TerribleDev/OwinOAuthProviders: OAuth providers for Owin.
Viaย [Wayback/Archive] David Fowler ๐ง๐ง๐บ๐ธ on Twitter: “Since weโre on the auth topic, thereโs a repository maintained by @martin_costello and @kevin_chalet for interacting with pretty much every oauth provider on the planet github.com/aspnet-contrib/AspNet.Security.OAuth.Providersโฆ #dotnet #aspnetcore”.
OAuth 2.0 providers covered at the time of writing are in the [Wayback/Archive] AspNet.Security.OAuth.Providers/README.md: Providers at dev ยท aspnet-contrib/AspNet.Security.OAuth.Providers.
–jeroen
Posted in .NET, .NET Core, Authentication, C#, Development, OAuth, Power User, Security, Software Development | Leave a Comment »
Posted by jpluimers on 2024/07/25
Reminder to check out this [Wayback/Archive] David Fowler on Twitter: “Playing around with using static interface methods and the new IParsable to make generic callsites for HTTP APIs. Before .NET 7 there was no way to write generic code that did {Type}.TryParse/{Type}.Parse. The type system didn’t have a way to describe these contracts. #dotnet” (and OCR the images):
Posted in .NET, .NET Core, C#, C# 11, Development, Software Development | Leave a Comment »
Posted by jpluimers on 2024/07/04
For my link archive:
In todays cross-platform world, it pays if your tooling can send logging to syslog.
Though originating from the CP/M and SunOS background, I have done most of my professional development work in Windows back-ends and front-ends, so here are some links relevant to that:
BSD SYSLOG protocol
Used RFC: RFC-3164
--jeroen
Posted in .NET, C#, Delphi, Development, DVCS - Distributed Version Control, git, Software Development, Source Code Management, Subversion/SVN | 2 Comments »
The Wiert Corner - irregular stream of stuff 