unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
导航
Github CVE
Github Tools
编码/解码
文件传输
Twitter Bot
Telegram Bot
Rss
黑夜模式
Promoting a Windows 2022 server to Domain Controller and DNS Server
2024-12-11 07:44:34 | 阅读: 2 |
收藏
|
Hexacorn - www.hexacorn.com
experiment
windows
slightly
edited
myself
Not installing the installers, part 4
2024-12-7 08:32:10 | 阅读: 7 |
收藏
|
Hexacorn - www.hexacorn.com
installers
ratio
rtools44
rtools43
ifcexporter
ExecCmd64 lolbin
2024-12-7 07:1:13 | 阅读: 7 |
收藏
|
Hexacorn - www.hexacorn.com
asrock
execcmd64
aproduct
polychrome
asrrgbled
1 little known secret of ShellExec_RunDLL
2024-11-30 18:40:12 | 阅读: 10 |
收藏
|
Hexacorn - www.hexacorn.com
rundll
shellexec
windows
shell32
fmask
Mapping the API mapping/code redundancy
2024-11-30 03:23:33 | 阅读: 8 |
收藏
|
Hexacorn - www.hexacorn.com
windows
kernelbase
gdi32full
edgehtml
overlapping
Windows.Storage.lol
This is a bit surprising, but the recent versions of windows.storage.dll export a number of...
2024-11-29 06:28:1 | 阅读: 4 |
收藏
|
Hexacorn - www.hexacorn.com
windows
shell32
rundll32
rundll
shellexec
Browsing the browsers
This a weird post; it doesn’t give many answers and it pretty much focuses on describing results...
2024-11-28 08:0:19 | 阅读: 5 |
收藏
|
Hexacorn - www.hexacorn.com
chrome
opera
coowon
vivaldi
msedge
Portability of old Windows programs…
Many people believe that native Windows programs are so deeply integrated with OS that there is...
2024-11-24 03:2:44 | 阅读: 5 |
收藏
|
Hexacorn - www.hexacorn.com
windows
calculator
revert
sfp
kinda
How to debug Windows service processes in the most old-school possible way…
Debugging Service Processes on Windows is a bit tricky – the old IFO / Debugger trick doesn’t wo...
2024-11-23 18:28:53 | 阅读: 3 |
收藏
|
Hexacorn - www.hexacorn.com
debugger
svc
eb
runaway
AdobeFips – Adobe Reader Lolbin
Sometimes ‘research’ means browsing the folders of the ‘installed ‘target’ and… just execut...
2024-11-17 02:12:32 | 阅读: 8 |
收藏
|
Hexacorn - www.hexacorn.com
client
adobefips
download
acrobat
machinetype
Beyond good ol’ Run key, Part 144
The Acrobat Reader is a very popular software installed on millions of computers worldwide....
2024-11-16 06:16:47 | 阅读: 8 |
收藏
|
Hexacorn - www.hexacorn.com
acrobat
acrord32
aafeat
expects
software
The different type of relocation aka Moving between countries in practice 1/n
I originally wrote this bit in 2016 and posted it on my (now no longer existing) personal blog....
2024-11-9 18:36:47 | 阅读: 3 |
收藏
|
Hexacorn - www.hexacorn.com
registering
living
bills
rent
banks
Beating the dead horse, only to inject it some more…
The windows shatter attack is so old that it’s time for someone to reinvent it. This someone...
2024-11-8 07:50:33 | 阅读: 13 |
收藏
|
Hexacorn - www.hexacorn.com
wscadminui
hwnd
foobar
Procmonning the Win11_24H2 build
This is a bunch of random notes from running Procmon on Win11_24H2 build.We all know ab...
2024-11-6 06:55:9 | 阅读: 2 |
收藏
|
Hexacorn - www.hexacorn.com
windows
phantom
syswow64
microsoft
Some notes on Windows 11 Notepad
The new win11 version of Notepad accepts a few command line options that i have not seen documen...
2024-10-27 07:53:59 | 阅读: 7 |
收藏
|
Hexacorn - www.hexacorn.com
microsoft
windows
software
Going reverse on reversing tools…
One of the oldest and most popular reversing tools is IDA Pro (usually bundled with its multiple...
2024-10-26 06:38:24 | 阅读: 8 |
收藏
|
Hexacorn - www.hexacorn.com
python
database
idapython
genflags
substantial
Installing latest Ghidra w/o installing it
Today I wanted to upgrade my Ghidra setup so I downloaded its latest version. Now, I really...
2024-10-26 06:18:32 | 阅读: 13 |
收藏
|
Hexacorn - www.hexacorn.com
ghidra
download
installers
unpack
Beyond good ol’ Run key, Part 143
This entry is a bit convoluted, but it’s still quite interesting. I have discovered it today onl...
2024-10-20 06:17:28 | 阅读: 7 |
收藏
|
Hexacorn - www.hexacorn.com
advpack
rundll32
windows
advpack.dll and IEAdvpack.dll logging capability
There is a very old hack out there that enables logging for the advpack.dll and IEAdvpack.d...
2024-10-20 05:9:47 | 阅读: 10 |
收藏
|
Hexacorn - www.hexacorn.com
advpack
registerocx
rundll32
ieadvpack
The Sweet16 – the oldbin lolbin called setup16.exe
I don’t even know how to start. I wrote about old InstallShield setup before, and today’s topic...
2024-10-13 05:17:10 | 阅读: 32 |
收藏
|
Hexacorn - www.hexacorn.com
lst
windows
setup16
syswow64
test2
Previous
0
1
2
3
4
5
6
7
Next