Category Archives: Windows 10

Tool for coding patterns into Visual Studio.

Coding patterns change over the years and most common are Pascal Case and Camel Case.
What is this patterns? The simple way: PascalCase means the first char should be capitalized, while camelCase means the first char should be lowercased.

This tool is a simple visual studio extension and can help you to deal with this type of patterns.
It converts a selected text between snake_case, camelCase and PascalCase.
About snake case (or snake_case) this patterns is the practice of writing compound words or phrases in which the elements are separated with one underscore character (_) and no spaces.
Download it and start install this tool with douoble click.
Under Visual Studio you can use from menu file I.D.E. EditAdvancesConvert Case or use the keys:
Ctrl + Shift + K or Ctrl + Shift + C.
The keys not worked with Visual Studio 2017 just from menu.
Another problem with this tool: you need to select just the word to make change.
If you want to change word cases and order the conversion pattern, set this option from ToolsOptionsCase Converter.
If you select a block of source code the entire source text will be changed.However, it’s the only tool I’ve ever found to solve this problem.
I’ve never worked with visual studio extension. I do not know the security issues that can arise when implementing such a tool in your I.D.E.

Posted in All, Visual Studio, Windows 10. Tagged with , , , , , , .

Programming with FASM – Calendar Control.

I have not done a tutorial about the assembler programming language for a while, so today I had a good reason to write this tutorial.
The tutorial focuses on using Calendar Control (MSAA UI Element Reference).

The source code of the window made in fasm is used into this tutorial.
I added the window class name for a month calendar which is defined as SysMonthCal32.
The file is used for message selection.
When we close the program, a closing dialog is displayed.
To run the Go to today click is displayed but I did not implement execution code.
The IDD_DLG parameter is random and I put the year of my birth to be more fun.
The program contains comments to understand the source code.
For execution, you need to add it to the FASM editor and run it with the F9 key.
You also have the executable version in the Downloads section of the main page menu.

Posted in All, Assembler, Programming, Windows 10, Windows 7, Windows 8. Tagged with , , , , , .

How to protect from mass ransomware attack.

On Windows 10, start by pressing Windows key + X, selecting PowerShell (Admin), and pasting the following code:

The SMB1 is an old protocol. More recent versions are not vulnerable to the WanaCryptor 2.0 variant.

Posted in All, Commands, PowerShell, Windows 10. Tagged with , , , , .

The Intel’s tool to check for the vulnerability.

The Intel’s Active Management Technology come with this tool to check for the vulnerability.
They tell us about the goal of this tool:
The INTEL-SA-00075 Discovery Tool can be used by local users or an IT administrator to determine whether a system is vulnerable to the exploit documented in Intel Security Advisory INTEL-SA-00075.

Posted in All, news, Windows 10. Tagged with , , , , .

Enables or disables privileges with fasm.

Today I will show you how to enables or disables privileges with fasm.
The Windows 10 come with Authorization and this is the right granted an individual to use the system and the data stored on it.
This is based on the Windows Server and Windows operating systems that control access to resources.
The example is a shutdown application tool make with FASM version 1.71.61.
I used functions from MSDN like: GetCurrentProcess, OpenProcessToken, LookupPrivilegeValue, AdjustTokenPrivileges and CloseHandle.
This functions need to be fill with parameters.
For example the OpenProcessToken function need this parameters:

You can take a look at this function at MSDN website.
The base of assembly file come with include file.
The ..\include\ let the fasm to get this file and use this functions.
The SE_PRIVILEGE_ENABLED set with 2 make the privilege enabled.
Also the TOKEN_ADJUST_PRIVILEGES is required to enable or disable the privileges in an access token.
This two is used to make the executable application.
Into .data area I put the data need by application – messages to show.
For example if I want to put a string into my application then I will use this:

The title_msg is used by application to take the string tool_shutdown_cmd and 0 is used to end the string into the application.
Also I need the SeShutdownPrivilege parameter required to shut down a local system..
The application will run into loop from .code to enable_privilege.
It start with .code start: show the window with message box make by MessageBox and ask us the option to shutdown or not.
IN this area will run some MSDN functions like: MessageBox, InitiateSystemShutdown and ExitProcess.
When the user will press the Yes button then the application will run the enable_privilege area.
The cmp, jne, jc and jmp is used to take decisions into application.
The invoke is used to invoke can be used to call the procedures through pointers defined in the import tables.
Example of this line:

is equivalent to:

The start: , exit: , fail: , enable_privilege: is used by fasm to know points of application.
The .end start is put to end the program of fasm language.
You have question about the fasm the take a look at fasm manual.

Posted in All, Assembler, Programming, Windows 10. Tagged with , , , , .