关闭
当前搜索:

RunningMoniker逆向结果

int __stdcall RunningMoniker(IBindCtx *pbc, wchar_t *pszFullPath, unsigned int ccFullPath, unsigned int *pcchEaten, IMoniker **ppmk) { wchar_t *v5; // esi wchar_t v6; // ax wchar_t v7; // di H......
阅读(19) 评论(0)

LoadTypeLibEx逆向正确结果

HRESULT __stdcall LoadTypeLibEx(LPCOLESTR szFile, REGKIND regkind, ITypeLib **pptlib) { wchar_t *szFileNameRef; // edi int hr; // esi int v5; // esi int v6; // eax OLECHAR *v8; // edi HRES......
阅读(4) 评论(0)

Windbg 内核态调试用户态程序然后下断点正确触发方法(亲自实现发现有效)

先开启真机内核态kernel调试!process 0 0 svchost.exe找到进程cid的地址然后进入.process /p  fffffa8032be2870一定要重新加载用户态调试符号.reload /f /user.process /i /p  fffffa8032be2870先下一个kernel32断点bp /p fffffa8032be2870 kernel32!createfil......
阅读(10) 评论(2)

LPFORMATETC用法

CLSIDFromString(L"{E80A6EC1-39FB-462A-A56C-411EE9FC1AEB}", &iid); DVTARGETDEVICE* dv = (DVTARGETDEVICE*)CoTaskMemAlloc(sizeof(DVTARGETDEVICE)); LPFORMATETC etc = (LPFORMATETC)CoTaskMemAll......
阅读(17) 评论(0)

scriptMoniker使用方法

// testflmk.cpp : 定义控制台应用程序的入口点。 // #include "stdafx.h" #include <comdef.h> int _tmain(int argc, _TCHAR* argv[]) { CoInitialize(nullptr); HRESULT hr = S_OK; IMoniker* moniker1 = NULL; IMo......
阅读(35) 评论(1)

TlbImp生成com的c#用互操作dll

TlbImp.exe F:\git\DebugFile\wow32\scrobj.dll /out:F:\git\DebugFile\wow32\scrobj.Interop.dll...
阅读(22) 评论(0)

tf工作区修复方式

tf workspaces /collection: /updateComputerName: tf workspace /delete...
阅读(26) 评论(0)

CVE-2018-0752

using NtApiDotNet; using SandboxAnalysisUtils; using System; using System.Reflection; using System.Windows.Forms; namespace PoC { static class Program { static NtToken GetProcessToken...
阅读(100) 评论(0)

CVE-2018-0751

using NtApiDotNet; using SandboxAnalysisUtils; using System; using System.Reflection; using System.Windows.Forms; namespace PoC { static class Program { static NtToken GetProcessToken...
阅读(77) 评论(0)

执行最慢的SQL语句

执行最慢的SQL语句 SELECT (total_elapsed_time / execution_count)/1000 N'平均时间ms' ,total_elapsed_time/1000 N'总花费时间ms' ,total_worker_time/1000 N'所用的CPU总时间ms' ,total_physical_reads N'物理读取总次数' ,total_logical...
阅读(118) 评论(0)

rsync windows to linux

F:\tool\dl\DeltaCopyRaw\rsync.exe  -v -rlt -z --chmod=a=rw,Da+x -u  --progress  --delete "/cygdrive/D/MyRsync/" "root@192.168.0.100::wcb" <d:\rsyncd.passwd...
阅读(23) 评论(0)

exploiting-leaked-thread-handle

Project Zero News and updates from the Project Zero team at Google ...
阅读(48) 评论(0)

rehsarper使用方式

DLN0M3YWKX-eyJsaWNlbnNlSWQiOiJETE4wTTNZV0tYIiwibGljZW5zZWVOYW1lIjoiVmllIG5ubiIsImFzc2lnbmVlTmFtZSI6IiIsImFzc2lnbmVlRW1haWwiOiIiLCJsaWNlbnNlUmVzdHJpY3Rpb24iOiJGb3IgZWR1Y2F0aW9uYWwgdXNlIG9ubHkiLCJjaGVja...
阅读(41) 评论(0)

Git: fatal: The remote end hung up unexpectedly 解决方法

git config --global http.postBuffer 524288000 # some comments below report having to double the value: git config --global http.postBuffer 1048576000...
阅读(544) 评论(1)

AVG 2017 PC TuneUp

下载地址https://www.avg.com/en-ww/download.prd-tuh...
阅读(69) 评论(1)

chrome启用跨域正确方法

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --args --disable-web-security...
阅读(48) 评论(0)

phantom.addCookie正确方法

if (!!cachedCookie) { var trim = function (c) { return c.replace(/^\s+/, "").replace(/\s+$/, "") }; var cookieArr = decodeURIComponent(cachedCookie).split(';'); console.log(dec...
阅读(87) 评论(0)

CVE-2017-0214Poc

using Microsoft.Win32.SafeHandles; using MSSITLB; using System; using System.Diagnostics; using System.IO; using System.Reflection; using System.Runtime.ConstrainedExecution; using System.Runtime.Inte...
阅读(58) 评论(0)

OLE_TYPEMGR::LookupTypeLib正确逆向结果

struct ITypeLib *__thiscall OLE_TYPEMGR::LookupTypeLib(OLE_TYPEMGR *this, wchar_t *Str1, enum tagSYSKIND a3) { OLE_TYPEMGR *that; // esi int idx2; // edi int v5; // eax ITypeLib *typelibObj; /...
阅读(67) 评论(0)

APP_DATA

#pragma pack(push, 4) struct APP_DATA {   ITypeLib *FTypeLib;   OLECHAR *FPsz;   int F2;   TLIBATTR *FTilbattr;   int F4;   int F5;   int F6;   int F7;   enum tagSYSKIND FSYSKIND1;   int F...
阅读(41) 评论(0)
122条 共7页1 2 3 4 5 ... 下一页 尾页
    个人资料
    • 访问:101795次
    • 积分:2044
    • 等级:
    • 排名:千里之外
    • 原创:101篇
    • 转载:17篇
    • 译文:2篇
    • 评论:70条
    最新评论