update

I have added a donation button on the right side of the screen, please if you feel that the blog has helped you and you can put some money for donation to Bug-Code the team will be very grateful, whatever the amount you want to donate it will make a difference.

Regards,
Bug-Code Team

Smilar pages

Quick IP-changer

If you are using multiple connections (like to get internet. networks..etc) you may find it boring that each time you have to change settings using GUI, MS "netsh" has the answers(not advertising for it!)..see the following examples (change the "Local Area Connection" to your connection name, and substitute the xxx with the ip number accordingly!):

netsh int ip set address name="Local Area Connection" source=static addr=xxx.xxx.xxx.xxx mask=xxx.xxx.xxx.xxx gateway=xxx.xxx.xxx.xxx gwmetric=1

And if you want to change the dns ip address:

netsh int ip set dnsserver name="Local Area Connection" static xxx.xxx.xxx.xxx primary

Just put the command lines you are willing to use in a ".bat" file and run it each time you going to change connection (Note: Vista users should run the script with Admin privilege on)

Smilar pages

Search Engine Plugin

Firefox was one of the first browsers to have this neat feature of incorporating a textbox in which u enter search terms to look for instead of visiting the search engine site and typing ur keywords in the site's search area, this feature saves alot of inconvenience and little time...

The basis for this feature is that there is a folder in firefox called "searchplugins" which contains a plethora of xml files which dictate which search form is selected and how keywords are submitted, and whether suggestions for keywords should appear in case user was writing into search plugin's textbox.
Below is an example of a typical xml search plugin file,

<SearchPlugin xmlns="http://www.mozilla.org/2006/browser/search/">
<ShortName>BlahBlah search</ShortName>
<Description>BlahBlah Search Engine Plugin</Description>
<InputEncoding>UTF-8</InputEncoding>
<Image width="16" height="16">data:image/x-icon;base64,R0lGODlhEAAQAJECAP8AAAAAAP///wAAACH5BAEAAAIALAAAAAAQABAAAAIplI+py+0NogQuyBDEnEd2kHkfFWUamEzmpZSfmaIHPHrRguUm/fT+UwAAOw==</Image>
<Url type="text/html" method="GET" template="http://search.balhblah.com/search">
<Param name="p" value="{searchTerms}"/>
<Param name="ei" value="UTF-8"/>
<MozParam name="fr" condition="pref" pref="Blah-fr" />
</Url>
<SearchForm>http://search.blahblah.com/</SearchForm>
</SearchPlugin>

As u can see the First line (<SearchPlugin...>)is a tag for the file, the 2nd line (<ShortName>)is the name u c inside the search box when its empty and is not selected for writing, and when u click on the list of search plugins available for ur browser.
<Description> tag is the description info about the plugin that is usually seen when the plugin is inspected further by browser.
<InputEncoding> tag tells the plugin how to treat the keywords enterd, UTF-8 is the most widely used encoding, however, some plugins might use others, so choose according to ur search keywords and language.
the next part (<Image ..../Image>) tells the browser which image should appear next to the search box, and wat kind of image, in addition to its dimensions, in this case (which is the most widely used method) tje image is 16x16 pixels and is of PNG type icon, the next few lines represent image data encoded in the mentioned base64 format.
the following tag (<Url.../Url>) states how to treat the keywords entered and whether or not to show suggestions related to keywords entered, in the previous example no suggestions will be presented as focus is mainly on how to submit search request.
The Last line (<SearchForm>) states which form to submit the written keywords to for the search engine to process.
A number of situations can arise in day to day use of browsers, for example u might like ur search plugin to search images section of search engine instead of web or vice versa, and u might want to remove the suggestions feature or u might want to decrease the amount of info ur search plugin submits to the search engine and limit it to the keywords only....
To change search of google from web search to image search change the template to http://www.images.google.com" and save it into a different name so as to keep both, remember to change the Short name at least, so that u would be able to tell which is which when u search!

<Url type="text/html" method="GET" template="http://www.google.com/search">
<Param name="q" value="{searchTerms}"/>
</Url>

One last issue can arise, the icon, in order to change the icon u have either to modify the existing icon, in which case u have to decode the base 64 encryption and revert it to the icon and then modify it and re-encode it, then paste it into the search plugin...or most commonly, create, or obtain the image from other sources, ie, web pages, when encode it to base 64 format, by using many of the availabe programs in the web, for example B64Dcode to encode ur image, open the b64 file, copy the base 64 encryted data and paste it over the template search plugin data, but make sure that ur source is a 16x16 PNG icon....

have fun!

Smilar pages

Win32 PE :adding entry to import table

I was having hard time trying to add specific dll with certain function to an executable PE file until I reached two great tuts about this subject
here and here
The first thing we have to have extra space in that PE file, for me I am accustomed with adding new section using some article from Sunshine( the same site of the latter link) but the problem was the conflict that I faced while investigating assembled file using masm32 compared toother executable files, the difference was easy, but hard to find for a novice coder like me, in the articles(above) pointed that OriginalFirstThunk and FirstThunk in the ImportDirectory may be put same,but they are not similar in masm32 assembled files, and the other thing regarding masm32 is that creates JMP table, so when call user32!MessageBoxA, it actually redirect that into JMP user32!MessageBoxA.
The other thing I sought in whole this die hard one day of trial and error of coding, is that don't ever try to remove the original ImportTable nor modify it after copying it to the new location, just temper by adding new ImportDirectory, if it sounds confusing now I will try to throw a tutorial/Code snippet in upcoming post(s), cause JMP and CALLs point to the FirstThunk values, so if you want to change those values you should go on though the whole code trying to find the RVAs and changing them accordingly.
Now, I am too thrilled to re-adjust and optimize my current example code, But first I need to have a rest ;)

Music: Cymphony of Pain[Snakeskin], this is Duetsch[Esibrecher]., 1000 flammen[Eisbrecher]..etc(whole day music hardly memorizing them)

Smilar pages

Extremly Lame

After aching my head with winedump/winebuild to figure out a way to add dynamic-libraries to Wine I found that I can add whatever dll directly to wine simulated windows directory.

/home/[user]/.wine/drive_c/windows/system32

Where [users] substitued by by user name of the system.
Just copying the dll to that path and you got it working or putting the required dll in the same directory of that program which needs it.

Smilar pages

PHP Mailer with attachment enabled

After some time searching on internet I tried to find a suitable php script support attachment in a way that is well established through html form .
I found several examples but it didnt satisfy my needs . So after a while of copying and pasting from the internet free source php snippets codes ,and after some reading about php (reflecting my bad background concerning that language) I finally created this PHP based emailer with attachment enabled ,it helps to send fake emails of course, but it all depends on the hands and mind of the user of that code.

you can download it from here
or view from here

Smilar pages

Repairing Grub

Ever installed linux, then had to install windows or fix windows by reinstalling it, only to see that the Grub menu u used to log into linux from has disappeared?
This has happened to me all too many times, therefore i put the instructions here for future reference, as a friend has advised me to do...
The removal of the grub boot menu happens because it resides on Master boot Record(MBR) part of the harddrive, a portion that windows deletes and installs it boot loader instead, which is called NTLDR or NT bootloader...
wat u have to do to install grub back is to boot from a live linux cd and run the command grub in a root konsole, then type the following assuming that (hd0) where u installed ur grub or u could issue the command "find /boot/grub/stage1" in the grub prompt to find where is the linux boot loader is residing and use the result in lieu of (hd0).
or as a last resort u can try changing the no. after hd followed by a comma and another no. till the grub reports the linux filesystem...

root (hd0,0)
setyp (hd0)
exit [or quit since some report exit not working]

should u not find ur windows entry in grub menu then type in a root konsole

nano /boot/grub/menu.lst

scroll down till u see the line starting with a pound sign (#) saying #title Windows 95/98/NT/2000 and uncomment the lines including #chainloader +1 by removing the leading pound symbol.
also besure where ur windows parition resides and adjust the windows root entry accordingly since the default in the menu.lst file is (hd0,0)

Goodluck!

Smilar pages

hunted..yet the hunter :D

Long time ago i posted about Pro-Rat, and how bad guys(!?) use it to hack into others pcs!!
Now what about retrieving information about those evil people :D

according to the rat server i got (1.9 FIX-18):
This Registry :

HKEY_CURRENT_USER\Software\Microsoft\Windows NT Script Host\Microsoft DxDiag\WinSettings

Inside it resides the info u need, all the info are encrypted by xor!!! in this occasion xored by 01h
You can retrieve sensitive info about the attacker (his email,ip,report victim site..etc).
Then i got one more thing ,if u get to the cgi site(if the attacker setuped one) then replace that cgi file with log.dat and u can get all the victims ips!!
(or you just run the server and monitor its activities it with ethereal)
Enjoy the hunt!

Smilar pages