Tag: windows

Security, Servers/Services

Creating managing and examining key stores, keys and certificates

Portecle is a user friendly GUI application for creating, managing and examining key stores, keys, certificates, certificate requests, certificate revocation lists and more. Features * Create, load, save, and convert keystores. * Generate DSA and RSA key pair entries with self-signed version 1 X.509 certificates. * Import X.509 certificate files as trusted certificates. * Import …

Python

How to install PyCrypto on Windows

Python Cryptography Toolkit (pycrypto) is a collection of both secure hash functions (such as SHA256 and RIPEMD160), and various encryption algorithms (AES, DES, RSA, ElGamal, etc.). The package is structured to make adding new modules easy. > Download Microsoft Visual C++ Compiler for Python 2.7 > Run command prompt as adminsitrator > Execute: msiexec /i …

General

SDKDDKVer.h missing but WinSDK installed

This problem often occurs when you are trying to open an older vs project with Visual Studio 2015. > Goto Project Properties > VC++ Directories > Include Directories and add: C:\Program Files (x86)\Microsoft SDKs\Windows\v7.1A\Include\ > Goto Project Properties > VC++ Directories > Library Directories and add: C:\Program Files (x86)\Microsoft SDKs\Windows\v7.1A\Lib\ > Copy RC.exe and RcDll.dll …

Security

Delete shared folders from terminal

> Run a command line instance with administrative privileges > Execute the following command to list all non-hidden shared folders: net sharenet share > Execute the following command to delete a shared folder: net share shared_folder_name /deletenet share shared_folder_name /delete How to delete all default hidden shared folders: https://gist.github.com/maldevel/4f550f85d2ec147bf49e @echo off   net share /delete …

Forensics, Malware Analysis

Scan running processes for unsigned dlls

> Download Sysinternals Suite. > Run command line tool(cmd) with administrative privileges. > To scan all running processes for using unverified DLLs, execute: x:\path\to\sysinternals_suite\listdlls.exe -ux:\path\to\sysinternals_suite\listdlls.exe -u -u Only list unsigned DLLs. > To scan a specific process for using unverified DLLs, execute: x:\path\to\sysinternals_suite\listdlls.exe -u process_namex:\path\to\sysinternals_suite\listdlls.exe -u process_name or x:\path\to\sysinternals_suite\listdlls.exe -u process_idx:\path\to\sysinternals_suite\listdlls.exe -u process_id > To …

C

How to get the UTC offset in C

#include <stdio.h> #include <stdlib.h> #include <time.h>   int GetUTC(){ time_t now = time(NULL); struct tm *lcl = localtime(&now); time_t local = mktime( lcl ); struct tm *gmt = gmtime(&now); time_t utc = mktime( gmt ); return (int)(difftime(local, utc) / 3600); }   int main(void) { printf("UTC offset: %d\n", GetUTC()); return EXIT_SUCCESS; }#include <stdio.h> #include <stdlib.h> …