Archive for the ‘Windows Development’ Category
Posted by jpluimers on 2024/10/10
A very interesting read, where it keeps me wondering how batch files like these are being generated (making them by hand feels very surreal): [Wayback/Archive] From Highly Obfuscated Batch File to XWorm and Redline – SANS Internet Storm Center
VirusTotal entry: [Wayback/Archive] VirusTotal – File – 453c017e02e6ce747d605081ad78bf210b3d0004a056d1f65dd1f21c9bf13a9a
The day after the article was written, only Kaspersky and ZoneAlarm detected it; in the past ZoneAlarm used the Kaspersky engine, but that stopped a while ago: [Wayback/Archive] ZoneAlarm Free Antivirus Review | PCMag.
The malware uses at least these technologies:
Read the rest of this entry »
Posted in Antivirus, Batch-Files, Development, Power User, PowerShell, Python, Scripting, Security, Software Development, Windows Development | Leave a Comment »
Posted by jpluimers on 2024/10/09
Note that the below methods likely will cause security warnings if a Windows machine has been properly configured, but in most cases at least one of them works.
- using cURL (Widows 10 and up)
curl --url https://speed.hetzner.de/100MB.bin --output %TEMP%\100MB.bin
- using [Wayback/Archive]
certutil | Microsoft Docs (at least Windows 7 and up; needs UAC elevation)
certutil.exe -urlcache -split -f https://speed.hetzner.de/100MB.bin %TEMP%\100MB.bin
- using PowerShell (at least Windows Vista and up)
powershell.exe -Command (New-Object System.Net.WebClient).DownloadFile('https://speed.hetzner.de/100MB.bin','%TEMP%\100MB.bin')
I think it works for all versions of curl, certutil, and PowerShell though I did not have anything older than up-to-date Windows 7 (having PowerShell version 3) and recent to test on.
Read the rest of this entry »
Posted in *nix, *nix-tools, .NET, Batch-Files, CommandLine, cURL, Development, Power User, PowerShell, PowerShell, Scripting, Software Development, Windows, Windows 10, Windows 11, Windows 7, Windows 8, Windows 8.1, Windows Development, Windows Vista | Leave a Comment »
Posted by jpluimers on 2024/09/05
Shadow IT has entered the chat
Many companies have hardly any idea how many scripts are being used by their people to get the chores of day to day work done.
Read the rest of this entry »
Posted in Batch-Files, Development, Power User, PowerShell, Python, Scripting, Software Development, Windows, Windows Development | Leave a Comment »
Posted by jpluimers on 2024/08/21
While researching how to allocate space for empty Windows files, I bumped into this: [Wayback/Archive] windows – What does SetFileValidData doing ? what is the difference with SetEndOfFile? – Stack Overflow.
Interesting but dangerous: SetFileValidData allows setting the end of the “valid” file data to a point into the file without Windows pretending the content was zero-filled.
The big important thing here (a drawback for security, a blessing for adversaries): the file will incorporate data that was on disk before it got incorporated into the file, potentially leaking deleted data.
That’s why the SetFileValidData required at least the SE_MANAGE_VOLUME_NAME privilege.
QA content and salvaged/archived related links:
Read the rest of this entry »
Posted in Development, Software Development, Windows Development | Leave a Comment »
Posted by jpluimers on 2024/08/11
Interesting take of which I was subconsciously aware for a while as well: [Wayback/Archive] Thom :linux: :kde: :systemd:: “My concerns about the future o…” – Exquisite.social
My concerns [www.osnews.com] about the future of Firefox keep becoming reality [www.osnews.com] and yet nobody who relies on Firefox – Canonical, Fedora, KDE, GNOME, etc. – seem to give a shit.
Y’all realise Mozilla is about to lose 80% of its revenue, right? And y’all do understand what this will mean for Firefox, right? Why aren’t you taking any steps or making any plans to prepare for what this will inevitably mean for the most important and crucial desktop Linux application?
I feel like Kassandra [en.wikipedia.org] over here.
It is not a Desktop Linux problem alone: it is a Firefox problem at heart which will also (and in much larger numbers) affect other platforms as it also means one less browser engine: the Gecko browser engine used by Firefox and other browsers highly depends on Mozilla funding.
Given the long lasting keyboard productivity problems in Firefox on MacOS and Windows (even without any extensions installed), I don’t think that my frequency of Firefox usage will increase beyond occasional use.
A few examples hampering power usage of Firefox:
Read the rest of this entry »
Posted in Development, Firefox, Power User, Software Development, Web Browsers, Windows Development, xCode/Mac/iPad/iPhone/iOS/cocoa | Leave a Comment »
Posted by jpluimers on 2024/06/06
From a long time go and a project that got cancelled, but maybe in the future I will need a similar thing again: back in the days not all raw key codes were readily documented or converted correctly from winuser.h to other environments (0x45 is the keyboard raw scan code value for VK_NUMLOCK of the Num Lock key).
[Wayback/Archive] delphi – What is the meaning of the bScan parameter value 0x45 in keybd_event? – Stack Overflow (thanks [Wayback/Archive] David Heffernan and [Wayback/Archive] kludg):
Read the rest of this entry »
Posted in .NET, Conference Topics, Conferences, Delphi, Development, Event, Software Development, Windows Development | Tagged: include | Leave a Comment »
Posted by jpluimers on 2024/03/28
A while back, early in the Wednesday morning after Patch Tuesday I performed regular updates of all the systems noticing some updates failed because timeouts on the Microsoft download servers.
Note I perform the manual steps on Wednesday as Patch Tuesday as it starts at 10:00 AM PST which is in the evening in Amsterdam. The automated steps are automated and kick in when Microsoft tells the Windows machines to update themselves.
See [Wayback/Archive] Security Update Guide FAQs
Microsoft schedules the release of security updates on “Patch Tuesday,” the second Tuesday of each month at 10:00 AM PST.
Depending on time zone(s)Â in which the organization operates, IT pros should plan their deployment schedules accordingly. Please note that there are some products that do not follow the Patch Tuesday schedule.
I posted a gist and a Tweet, but didn’t immediately thought of a good resolution so I postponed that until Thursday and found it:
Read the rest of this entry »
Posted in C, C++, Development, Power User, Software Development, Visual Studio and tools, Visual Studio C++, vscode Visual Studio Code, Windows, Windows Development | Leave a Comment »
Posted by jpluimers on 2024/01/14
Need to figure out what is the cause here for [Wayback/Archive] Troubleshooting Errors… | FileWave KB
General Errors
| Hex |
Decimal |
Symbol |
Description |
| … |
0x8A15003B |
-1978335173 |
APPINSTALLER_CLI_ERROR_RESTAPI_INTERNAL_ERROR |
Rest API internal error |
| … |
I got the error following the install steps at [Wayback/Archive] Download and install Google Chrome with winget
winget install -e --id Google.Chrome
Usually I don’t install through winget because it is often slow and during upgrades often fails to be silent (causing all kinds of popup Windows to appear), but Chocolatey had a history of hashing problems when installing [Wayback/Archive] Chocolatey Software | Google Chrome 130.0.6723.92.
This package always installs the latest version of Google Chrome, regardless of the version specified in the package. Google does not officially offer older versions of Chrome for download. Because of this you may get checksum mismatch between the time Google releases a new installer, and the package is automatically updated.
Yup the page contains the above warning, but often this happens a week at a time: not something I want to spend on installing a web-browser.
Error
Read the rest of this entry »
Posted in Chocolatey, Development, Scripting, Software Development, Windows, Windows Development, winget | Leave a Comment »
The Wiert Corner - irregular stream of stuff 