Category Archives: Programming

Posts about programming topics

DDKBUILD.CMD fix for RC2 (makes RC3)

Posted on 2007-09-12 by Oliver

Hey. For those among you, who have actually updated to RC2, here is a little fix, if you like manual patchwork. If you prefer the easy way, just download RC3 here. Apologies! This fix is yet another issue that can … Continue reading

Posted in DDKWizard/DDKBUILD, EN, Programming, Software | Leave a comment

DDKWizard 1.1.2 released

Posted on 2007-09-08 by Oliver

It has been almost half a year since DDKWizard got updated last time. But now it’s time for an update. Some accumulated reports of glitches and issues – especially those that bugged me most in daily use – got me … Continue reading

Posted in DDKWizard/DDKBUILD, EN, Programming, Software | 2 Comments

DDKBUILD release candidate 2 (update #1)

Posted on 2007-09-06 by Oliver

This release fixes minor issues found to cause DDKBUILD.CMD to fail under certain conditions, especially when either the DDK/WDK or the project was located in a folder that contained spaces or that had long (folder/file) names without spaces. One common … Continue reading

Posted in DDKWizard/DDKBUILD, EN, Programming, Software | Leave a comment

Worth a look (or two)

Posted on 2007-08-23 by Oliver

http://research.microsoft.com/invisible/

Posted in /dev/null, EN, Programming | Comments Off on Worth a look (or two)

DDK BUILD utility and delay loads

Posted on 2007-08-17 by Oliver

Just found it out, although it’s not hard to find if you know where to look. If you put a line such as the following into your SOURCES file, you will be able to make use of the delay-load-feature that … Continue reading

Posted in DDKWizard/DDKBUILD, EN, Programming | Comments Off on DDK BUILD utility and delay loads

Joanna Rutkowska gets serious ;)

Posted on 2007-08-02 by Oliver

She and a partner, Alexander Tereshkin, have published the source to BluePill, or rather a rewrite called New BluePill (NBP), since Rutkowska’s previous employer owns the rights to the original one: http://www.bluepillproject.org The source is a little flawed, at least … Continue reading

Posted in DDKWizard/DDKBUILD, EN, IT Security, Programming, Reversing | Comments Off on Joanna Rutkowska gets serious ;)

IContextMenu::QueryContextMenu

Posted on 2007-07-08 by Oliver

This will be a well-known method name to those of my readers who ever dealt with context menu shell-extensions. Since I am at the moment resuming the work on my own multi-purpose shell-extension, I also searched for resources and there … Continue reading

Posted in EN, Programming | Comments Off on IContextMenu::QueryContextMenu

No it wasn’t an April Fool’s joke

Posted on 2007-07-04 by Oliver

Michał ‘GiM’ Spadliński, a Polish blogger wrote in his article “Czy Redpill Joanny Rutkowskiej jest poprawny?“: Oliver Schneider (Reverse Engineer pracujący dla F-Prota) opublikował […] artykuł, datowany na pierwszego kwietnia, który wcale nie wygląda na prima aprilisowy żart. This made … Continue reading

Posted in EN, IT Security, Programming, Reversing, Software | Comments Off on No it wasn’t an April Fool’s joke

Battle of the titans?

Posted on 2007-07-04 by Oliver

Ptacek, Lawson and Ferrie – well-known security specialists – joined up to challenge Rutkowska and prove that her virtualization rootkit BluePill (up to now AMD-specific) is detectable regardless of her claims. The above link leads to her official reply to … Continue reading

Posted in EN, IT Security, Programming, Reversing | Comments Off on Battle of the titans?

Nice tool from Microsoft.

Posted on 2007-07-03 by Oliver

No, this time it is not a binary file for download. It is a website. Hope you enjoy as much as I did when pointed to it by a colleague. This website allows you to look up DLL versions and … Continue reading

Posted in EN, Programming, Software | Comments Off on Nice tool from Microsoft.

DDKBUILD.CMD getting closer to Gold

Posted on 2007-05-30 by Oliver

After a bug report which turned out to be a false alarm, I have only clarified some stuff in the help output and in the comments of the code. Furthermore one line of code saw some change, which doesn’t have … Continue reading

Posted in DDKWizard/DDKBUILD, EN, Programming | Leave a comment

RSS feed for DDKWizard and DDKBUILD!

Posted on 2007-05-24 by Oliver

Today I set up an RSS feed for DDKWizard and DDKBUILD under this URL. If you are interested in either of these tools, please feel free to subscribe and get automatic notifications about updates within your favorite feed reader. // … Continue reading

Posted in DDKWizard/DDKBUILD, EN, Programming, Software | Leave a comment

The next programming language I’ll learn …

Posted on 2007-04-10 by Oliver

Fjölnir … right after I excel in Icelandic 😉

Posted in /dev/null, EN, Island/Iceland/Ísland, Programming | Leave a comment

Was ich an Delphi überhaupt nicht mag

Posted on 2007-04-09 by Oliver

Delphi ist eigentlich eine ganz angenehme Programmiersprache für die kleinen und großen Aufgaben des Programmierers. Leider haben Borland/Inprise/CodeGear wohl ungefähr 10 Jahre geschlafen. Vornweg, ich habe mit Delphi auf Windows angefangen, nachdem ich zuvor auf DOS mit Assembler und Turbo … Continue reading

Posted in DE, Programming, Software | 13 Comments

Redpill getting colorless? (continued)

Posted on 2007-04-01 by Oliver

In my previous article from November last year I challenged the claims of Joanna Rutkowska concerning Redpill. A recent article in the German computer magazine iX (April 2007) mentioned Rutkowska’s findings again so that I decided to review the tool, … Continue reading

Posted in EN, IT Security, Programming, Reversing, Software | Leave a comment

DDKWizard and DDKBUILD.CMD updated

Posted on 2007-03-18 by Oliver

The fixes in DDKWizard are minor except for one. This one requires manual fixing in old existing projects that have been created using DDKWizard. The problem is described in section 5.1 “Important change in version 1.1.1b”. As for DDKBUILD there … Continue reading

Posted in DDKWizard/DDKBUILD, EN, Programming, Software | Leave a comment

Wie jetzt, Borland/Codegear?

Posted on 2007-03-18 by Oliver

Delphi 2007 for Win32 ist also erschienen. Soll ich jetzt also updaten weil das Produkt so cool und endlich wieder schnell ist, verliere dann nur leider die anderen BDS-Produkte, die ich im Moment inklusive habe? Irgendwie fehlt mir da die … Continue reading

Posted in DE, Programming, Software | 11 Comments

Wenn man was sucht …

Posted on 2007-03-08 by Oliver

… geht man normalerweise Pfade die bereits einmal zum Erfolg führten. Meine Suche nach WiX-Material (klingt schlimmer als es ist :mrgreen:) führte mich auch prompt zu einem alten Bekannten. Danke Mathias! // Olli

Posted in DE, Programming, Software | 1 Comment

Updates in the IDA SDK 5.1 …

Posted on 2007-03-04 by Oliver

Since it is always exciting to find new features, I thought it would be good to put up a list of the changes introduced into the IDA SDK since version 5.0! This should allow all plugin writers to get a … Continue reading

Posted in EN, Programming, Reversing, Software | Tagged | Leave a comment

Eeek, a subtle bug in beta 6 of DDKBUILD.CMD

Posted on 2007-02-26 by Oliver

Sorry fellows, please bear with me. The last version of the DDKBUILD.CMD script misbehaves if you set a variable inside the pre/post-build scripts and expect that variable to propagate beyond the script’s execution. Thanks to my colleague Kristmundur here at … Continue reading

Posted in DDKWizard/DDKBUILD, EN, Programming | Leave a comment