_
_
https://github.com/cube0x0/SyscallPack/blob/main/SyscallPack/unhook-BOF.c#L27 https://github.com/cube0x0/SyscallPack/blob/main/SyscallPack/unhook-BOF.c#L185
https://github.com/guervild/BOFs/blob/dev/CredPrompt/credprompt.c#L86
As #638 mentioned, I wonder why this optimization hasn't been implemented for the past 6 years?
1. ```c LPWSTR lpwStream = (LPWSTR)DS_STREAM_RENAME; fRename.FileNameLength = sizeof(lpwStream); ``` sizeof(lpwStream) is always 8 bytes on 64-bit OS 2. ```c FILE_RENAME_INFO fRename; RtlCopyMemory(fRename.FileName, lpwStream, sizeof(lpwStream)); ``` The FILE_RENAME_INFO.FileName buffer need...
Running a non-signed program which call `CreateProcess` returns error ```c++ PROCESS_INFORMATION pi = { 0 }; STARTUPINFOW si = { 0 }; WCHAR cmd[] = L"cmd.exe"; if (!CreateProcessW(NULL, cmd, NULL,...
+ Fix #9 , see #26 + Fix error type in `urlopen` headers parameter
In parseSocks5 function: ```python nmethods, methods = (sock.recv(1), sock.recv(1)) ```` The methods field's length is variable. In some socks5 client, an error will be throwed. Such as curl #9 Should...
后台的challenge概览处404,该功能还没有完成吗