|
Ok your two links are the official ones. I prefer to discuss every dirty technics of maleware/ransomware/hacking what else.
My Point is: Knowledge is the best defence. And what Tools so called "hackers" can use if everything is on the table?
But I'm pretty alone with this opinion here
Bruno
modified 19-Jan-21 21:04pm.
|
|
|
|
|
0x01AA wrote: one is not allowed to discuss about this theme. A lot of people agree with you and that bothers me a lot. The more we know about how hackers do what they do the more we can right safer code. This is a topic that should be welcomed here.
There are two kinds of people in the world: those who can extrapolate from incomplete data.
There are only 10 types of people in the world, those who understand binary and those who don't.
|
|
|
|
|
So we are on the same line I think? Or it is one more time my English...
modified 19-Jan-21 21:04pm.
|
|
|
|
|
0x01AA wrote: So we are on the same line I think?
No, I don't think so. If I understood you correctly, you do NOT think we should discuss how to write a program that cannot be ended. I think we SHOULD discuss it.
Hope that is clear.
There are two kinds of people in the world: those who can extrapolate from incomplete data.
There are only 10 types of people in the world, those who understand binary and those who don't.
|
|
|
|
|
I think it is my English. See what I wrote to Randor:
Quote: .... I prefer to discuss every dirty technics of maleware/ransomware/hacking what else ...
My Point is: Knowledge is the best defence....
But I'm pretty alone with this opinion here ...
modified 19-Jan-21 21:04pm.
|
|
|
|
|
I see it now. I think I misunderstood you. My apologies.
There are two kinds of people in the world: those who can extrapolate from incomplete data.
There are only 10 types of people in the world, those who understand binary and those who don't.
|
|
|
|
|
No Problem. If I read my first post here again -and translate it back with Google- I'm also have my doubts how I wrote it
modified 19-Jan-21 21:04pm.
|
|
|
|
|
Well, he does keep reposting the same question, and that copy certainly doesn't include much information.
But as far as I can see, that was the first copy, so it's the subsequent duplicates that should have been removed.
And your answer was very good, and should definitely be kept.
(If you've still got the information, maybe you could write it up as a tip?)
"These people looked deep within my soul and assigned me a number based on the order in which I joined."
- Homer
|
|
|
|
|
Hi,
Richard Deeming wrote: (If you've still got the information, maybe you could write it up as a tip?)
That's exactly what I had planned along with some sample drivers, simple service and a protected non-killable user-mode process. Although I think Microsoft may already has a sample ELAM driver.
Btw... there is no way that this information can be weaponized as malware... The whole point of this new system is that all three binaries would need to be dual signed with both an EV (extended validation) certificate and also by the Microsoft Dev Portal after being submitted and going through a vetting process.
Best Wishes,
-David Delaune
modified 6-Jul-17 15:35pm.
|
|
|
|
|
The question isn't a specific question. The author has stated what they want to achieve, but where's the bit they are stuck at? A "I need an app that does X" is too broad. A "How do I hide a process from the Task Manager" is a question, and a "here's a couple of things we've tried" shows they have spent some time at least trying.
As it stands it's an open ended "I have an assignment to do and I need help". Once they narrow it down and work out a more focused question it's all good.
cheers
Chris Maunder
|
|
|
|
|
Well,
I can't even think of a better way to phrase the question...
From 2000-2010 some of the highest quality engineering information you could possibly get was right here on the codeproject... and some of that came from random forum comments.
Btw, he is not asking how to hide a process... he is asking how to protect his security anti-malware process from being killed via the task manager.
Guess next time I should send him over to Stack Overflow.
Google for ELAM Driver[^]
|
|
|
|
|
Randor wrote: I can't even think of a better way to phrase the question...
How about I give it a shot.
It's a bit of a fine line between those who just want someone to hand them the codez and someone genuinely looking for another lead to follow so they can honestly do their own work and learn.
Let's so how it goes.
cheers
Chris Maunder
|
|
|
|
|
Chris,
Could you go back and read the question and show me exactly where the group of university students are asking for source code?
Thanks.
|
|
|
|
|
They don't, and nor did I say they had.
I was talking generally about broad questions.
cheers
Chris Maunder
|
|
|
|
|
Chris,
Thanks.
One final off-topic comment; From my perspective it doesn't really matter if the answer does not help or assist the person(s) asking the question. I am counting on the fact that dozens, hundreds if not thousands of other engineers will encounter similar issues and use the search feature to locate any information I have submitted.
Also... 'Thanks' (Both you and David C) for being such a great online resource for software engineers.
Best Wishes,
-David Delaune
|
|
|
|
|
Thanks to you, too, David, for helping out the dozens, hundreds if not thousands of developers who come here for help. If it wasn't for you and developers like yourself patient enough to share they'd still be wandering around in the desert of confusion.
cheers
Chris Maunder
|
|
|
|
|
I wrote a tips & tricks
- saved many times
- Submitted for approval
- got the DRAFT version
- got the "Pendig" version
Now When I look for the tips & tricks I wrote the only thing I obtain is only an early version
where my work is?
(Sorry, but this is very annoying and it is not the first time it happens!)
|
|
|
|
|
Is this the post? Are you able to access it?
Popup menu[^]
Thanks,
Sean Ewington
CodeProject
|
|
|
|
|
No!
That is a very early version.
What I think is codeproject has had a big failure and they lost everything
but they will never admit this
|
|
|
|
|
What about this one?
Popup menu[^]
If you go into Revisions and select Show Minor Revisions, and check the box that says "show auto-saved drafts" you should be able to take a peek around at all your drafts.
Thanks,
Sean Ewington
CodeProject
|
|
|
|
|
Perfect Sean
THANKS
you solved the problem.
(do you know what happen?)
|
|
|
|
|
If you let me know your precise steps and setup (OS / browser) just prior to it happening, I can try and recreate it.
Thanks,
Sean Ewington
CodeProject
|
|
|
|
|
Keep a copy offline always. Never trust Online editor(Not just Codeproject's) which fails rarely due to internet connection issues.
|
|
|
|
|
It is not a matter of the editor.
In the DB there is the correct version, but when I extract that copy for editing I get a totally different copy of the "Tips&Tricks"
and this depend on codeprojct's "process" and how they manage issues (badly, very badly
(and this is very annoying)
|
|
|
|
|
Possibly cache issue.
Regarding online editor, if something happens on browser side(client), server can't so much. That's why offline copy is always a better option.
Anyway Admins're ready to fix any issues.
|
|
|
|