| |
| |
|
| - Page 1 - |
|
 | in the last year has me the want gepackt, me hither around the Prozessbereich - means circa Threads, processes, DLLs and Window To concern and little more above To learn, as i bislang known. as expedient moreover have I me The application Tasks and Token (TNT) gebastelt, The me bislang in this Hinsicht right good services done has. i want you the program here once something hither present and hope, that you the testing as much Fun power, How me the program and the work on it:
Tasks and Token watts under and windows2000/XP entwickelt; one Operate the application under others Betriebssystemen Although in the principle possible, but only little sinvoll. the Proggi watts with XProfan9 and Profan2Cpp 1.1 prepares, with UPX gepackt and verfügt over ca.10000 Quelltextzeilen. to that Change the Zugriffsrechte use I partly one of me properly geänderte Version of AHs DACL_SET.INC (some BUGs and a part the Protokollierung removes). the Program supported The To WindowsXP standardmäßig verwendeten Zugriffslisten the Type ACL_REVISION and Zugriffslisteneinträge the Type ACCESS_ALLOWED_ACE and ACCESS_DENIED_ACE ... Applications, The others Zugriffslisten use, could I bislang not find..
The eigentliche Programmdatei is Tasks and Token.EXE; any Files must in that same directory entpackt go. circa not your Startmenü (or sonstiges) unnecessary vollzumüllen, have I on a Installationsroutine waived - i think, your comes too so so zurecht.
Tasks and Token created a manner aktualisierbaren Schnappschuss the Betriebssystems, listet thereby processes, Threads, Module and Window in her Relationship zueinander on and supply umfangreiche Information over these Objects.
circa too Access to Information to obtain, The usually for a Administrator unzugänglich and invisible are, can Tasks and Token Zugriffsrechte on processes, Threads and the Access-Token Change, or (without self really one service To his) with want over windows as Systemservice launched go. thereby is hereon To respect, that TNT as interaktiver service only for User visible is, the as erstes into computer eingeloggt has.
here everything aufzulisten, what the program ausliest or Change can would whom welt well gänzlich sprengen - i'll me therefore on some in the Helpfile yet undokumentierte reaches limit:
Module and DLLs: Nebem the Reading the Versionsinformationen investigating Tasks and Token loaded Module u.a. too to encompassed Exportfunktionen and its Adressen. sustained Information can through Rechtsklick into jeweilige List view into Clipboard copies go. TNT bid too The Possibility, a stranger not yet loaded DLL To loading and To investigating. thereby lead Tasks and Token The Einsprungsfunktion this loaded DLL not from. This has the advantage, that too DLLs of others Betriebsystemen (z.B. a DLL of WindowsXP under windows2000) investigating go können; from compressed DLLs can therefore but evtl. (on these point) no Exportfunktionen read go.
Window: next to the Show unterschiedlichster Fensterinformationen can through Rechtsklick on one Window in the Treeview - to the Motto make visible what invisible is - Statusinformationen one Fensters changed go. too Rechtsklicks into suitable List view afford a Änderungsmöglichkeiten for stranger Window.
processes and Threads: on the side can The unterschiedlichen Threads of/ one application through Rechtsklick in that Treeview stop and continue , can Prioritäten of Threads and Prozessen particular changed or can also the Boost shorted go, the u.a. a Prioritätserhöhnung with Aktivierung one Threadsfensters bewirkt.
Access-Token: One Grundbaustein new windows Betriebsysteme are The Zugriffsrechte. circa very determine to, which application under windows very on what grabbed having must, becomes each Process of Betriebssystem a manner elektronischer identification with on the lane given, the very idendity and rights the executing Users festlegt. Through Rechtsklick into suitable Treeview let itself here among other things Privilegien in a ongoing Process enable or deaktivieren. too Gruppenzugehörigkeiten can, sofern The jeweilige group this supported, deaktiviert and activate go without The group from the Token To Remove.
in this elektronischen identification Access-Token there a area, the standard-Zugriffsrechte festlegt. becomes by a Process one new Objekt created and becomes this Objekt weder through Heredity yet sonstwie irgendeine Sicherheitsbeschreibung zugeordnet, becomes these standard-Zugriffsliste in the Acces-Token as Sicherheitsbeschreibung übernommen. this would to that Bespiel u.a. at produce one new Prozesses through @Winexec() the case. Tasks and Token it can Zugriffsliste not only Show separate these too (through Treeview-Rechtsklick) with want Change.
plenty More would like I over my Machwerk really now not tell. I hope, it reicht from for a little interest and pleasure on the play To rousing....
best Regards
edward carpenter
|
|
| |
| |
| |
|
| |
| |
| - Page 2 - |
|
|
| | New Update - some on BUGS gefixt and a couple things correct... |
|
| |
| |
| |
|
|
| The function Timernachricht Send watts by the function Message Send supplant. using one these option with one TNT Thread or Window, becomes one Sicherheitstest implemented, the operator above gives, whether a Guest or eingeschränkter User through Send the WM_TIMER Message one Admin go can. appear here a Messagebox, is this the case.
The function Offsetadressen Show watts by the function Erweiterte Exportfunktionssuche supplant, The next to whom Offsetadressen the functions too The Ordinalzahlen as well as too unbenannte functions indicating.
The Exportfunktionssuche watts vastly correct and runs too faster ex.
The address the Exportsektion, the Ursprungsname of/ one DLL (with the Compilierung), The Number of benannten Exportfunktionen and the latest belegte Ordinalzahl go (if present) now ditto from the Header the Moduls read.
About the Send of/ one Timernachricht a TNT-Window can tested go, whether The agenblickliche Windowsversion sure is. |
|
| |
| |
| |
|
|
| over again a couple small Bugs gefixt - The die never from, The pair  . |
|
| |
| |
| |
|
|
| some on Bugs gefixt:
Version 1.7.2:
at that last Update I had me a wildly bow installed and Prozessspeicher let not More Change. bow is eliminating.
two Bugs with the Dimensionierung of Memory-Variables watts eliminating.
because of einnes Fehlers at Show the procedure the Fensterklasse get follow up Texts under Umständen not any more correctly. displayed, if no procedure read go could. bow is fixed.
it watts again something on the recognition of Fensterstilen gefeilt.
The numbers the ACEs the Default DACL get wrong displayed. Error is eliminating.
The number the ausgelesenen function corresponds to now the Ordnungszahl.
The latest vergebene Ordnungszahl watts sometimes wrong displayed. Error fixed.
The address the Exportsektion watts At times wrong displayed. Error is fixed.
partly becomes with Exportfunktionen in DLLs only on others Exportfunktionen in others DLLs verwiesen. such Exportfunktionen get bislang in the advanced Exportfunktionssuche with incorrect Adressen displayed. now go The Verlinkungen directly read and as Verlinkung displayed (see KERNEL32.DLL).
mistake in writing eliminating (DLLs aud DLLs changed).
The first vergebene Ordnungszahl becomes now ditto displayed.
an versteckte Zusatzfunktion watts added. |
|
| |
| |
| |
|
|
| have a small expansion eingefügt and wants hoping, I do not again To many Error installed to have:
DLLs in strangers Process einschleusen
is in the Treeview of TNT one Process markiert, can to one Rechtsklick in that Treeview and one Click on DLL einschleusen a dialog a arbitrary DLL select, The then into virtual memory the marked Prozesses loaded becomes. through adjust the Rights to whom strangers Process is it without further possible, even into Process CSRSS a DLL to house.
On Betriebsystemen with them WM_TIMER Callbacks of users gesendet go can, is it possible, The in the DLL encompassed Exportfunktionen directly through of/ one WM_TIMER Message (with indicated the auszuführenden address the function in Parameter 4) directly anzuspringen. is this you don't say so, must The DLL self for Kommunikationsmöglichkeiten with TNT care.
How get one out, whether the OS the Send of Callbacks over WM_TIMER zulässt?
to that testing How follows vorgehen:
1.) Tasks and Token Process Mark.
2.) Rechtsklick in that Treeview manage.
3.) Message Send You can.
4.) whom Button Message Send You can.
appear a Sicherheits-Messagebox, can WM_TIMER Callbacks gesendet go, otherwise not. |
|
| |
| |
| |
|
|
| | the Perform of Exportfunktionen in of strangers Prozessen loaded DLLs is now possible. |
|
| |
| |
| |
|
|
| have straight time again Update of [...]  . What is new:
at that loading the Program were for short Time bislang The items anwählbar. any items go now same with the Creation deaktiviert.
The speed the Listens of Exportfunktionen watts at the expense of the Kopierfunktion correct.
at that advanced lists of Exportfunktionen becomes now too The address with indicated, on the The Startadresse the jeweiligen Exportfunktion vermerkt is.
an function to that provide of virtuellem memory in strangers Prozessen (circa this memory for Own tack To benefit) watts added. with the ditto with TNT possible DLL-Injektion is so The basis for API-Hooking created. |
|
| |
| |
| |
|
|
| | [img:b8c701b24a]https://XProfan.com/pafiledb/images/screenshots/1158596547tnt1.gif[/img:b8c701b24a] |
|
| |
| |
| |
|
|
| I time again:
yet a [...] -bow gefixt:
get at speedy lists of Exportfunktionen no functions found, watts the Ursprungsname the DLL multiple into Listeview registered. Error watts eliminating.
its insgesammt anyhow rather, in the Menu The Erweiterte Exportfunktionssuche abzuhaken. here go too The unbenannten functions found, and there's no Problems at Reading the Exports Pixel Profan2Cpp erstellten DLLs.
PS: The version number imQuelltext I had ditto since Ewigkeiten not any more angepaßt - wants me better.  |
|
| |
| |
| |
|
|
| | i'd Roland integrally gladly the Proggi to publication on the next XProfan CD zusenden. is with the whom regulate the Wettbewerbs compatible? |
|
| |
| |
| |
|
|
Dietmar
Horn | Hello together,
our to the allerersten (X)Profan-competition 2005 together aufgestellte competition law are under no circumstance unveränderbar - and already none should these regulate potential Wettbewerbsteilnehmer on it detain, with own Programs on it teilzunehmen!
therefore for may part too one klares and eineindeutiges JA To Your think about - what about me hope time, The Jury-Members go not differently see!
with unserem (X)Profan-competition is fundamentally first time everything the permits and allows, what the currency, the Weiterentwicklung the Programming-Language (X)Profan and the this developed Tools serves - so far lest primarily commercial interests chasing go! well well - something like How XPSE, XPIA and ROC should we naturally not straight to permit, though tappt im dunkeln whom named criteria correspond to would ...
Nochwas to general Info and Kenntnisnahme (Perhaps particularly for schoolboy?):
JEDER potential Wettbewerbsteilnehmer can of it go out, that his eingereichter Posting unvoreingenommen of ours Jury tested and rates go becomes!
On any Cases I will yourself of/ one the ALLERERSTEN Members his, the ALARM hit and until goes-not-More so DAUERHAFT nerves would, if one Community-Member because of of his Wettbewerbsbeitrages here in anybody shape, Nature and point or quality of his Beitrages discriminating go ought to, once I the mitkriege! first time yourself Bessermachen!
Each manner of Wettbewerbsbeiträgen is means Welcome - independent of it, whether *.exe, *.prf, *.inc, *.pcu, *.dll, *.hlp, *.chm, o.ä., etc. ... (well Yes, probably I will probably guaranteeing at least thousands of on *.something forget having) ...
Greeting
Dietmar |
|
| |
| Multimedia für Jugendliche und junge Erwachsene - MMJ Hoyerswerda e.V. [...] Windows 95 bis Windows 7 Profan² 6.6 bis XProfan X2 mit XPSE Das große XProfan-Lehrbuch: [...] | 09/27/06 ▲ |
|
| |
|
|
| [quote:e2aec329de]
first time yourself Bessermachen!
[/quote:e2aec329de]
Jau  . |
|
| |
| |
| |
|
(875)
Deutsch
English
Français
Español
Italia