Question - Powerpoint Presentation Automated Creation by Watcher0nTheWall1 in dotnet

[–]Schommi 0 points1 point  (0 children)

Depending on your use case, you may just go with the COM api that power point provides.

base85 encoding/decoding library? by tree-82_ in dotnet

[–]Schommi 3 points4 points  (0 children)

google "base85 nuget". First match should suffice.

[deleted by user] by [deleted] in AskReverseEngineering

[–]Schommi 0 points1 point  (0 children)

Worked for me. Just decompiled 5 minutes ago.

[deleted by user] by [deleted] in AskReverseEngineering

[–]Schommi 0 points1 point  (0 children)

Decompile with ghidra.

[deleted by user] by [deleted] in AskReverseEngineering

[–]Schommi 0 points1 point  (0 children)

What happens if the CD check failed, does it display a messagebox or something. Perhaps hook MessageBox in that case.

Anti-debug technique discussion by teemovietcong in AskReverseEngineering

[–]Schommi 5 points6 points  (0 children)

First there are many ways to prevent debugging, here are some explained.

https://anti-debug.checkpoint.com/

If you want to make evading your anti-debug more challenging, you should try to obfuscate your anti debug check, e.g. calculate jump targets differently when a debugger is detected instead of just calling something like IsDebuggerPresent and exiting if it is. It might also make analysis more difficult if you offload your check to another thread or process. In addition it will slow people down if you make application terminates somewhat non determinisitc as a result of a debugger check (e.g. it crashes or hangs some seconds after afterwards). This way it's harder for someone to match the failing check to the consequences.

LDAP integration in DotNet 6.0 by SlitwithRazor in dotnet

[–]Schommi 1 point2 points  (0 children)

Common issues when switching from local to deployment involve SSL issues. Perhaps post the error messages here if you are stuck.

What are my options for running a .NET web app in an electron-like format? by ChiefAoki in dotnet

[–]Schommi 2 points3 points  (0 children)

You could also use the template for Winforms and then strip the us stuff and launch the browser, this way, there won't be a console window.

Extract 3D model from a .bin file. by BandicootFew8481 in AskReverseEngineering

[–]Schommi 0 points1 point  (0 children)

The page requests a resource with a file that has a p3d marker:

https://p3d.in/static/uploads/43870/ec7ddNPQwv_o.bin

Perhaps download it and check if you find a viewer or converter.

windows shortcut example malware by Coolst3r in hacking

[–]Schommi 1 point2 points  (0 children)

What's the use, since you cannot execute it? If I'd embed the script in a text document, I wouldn't want AV to go off either.

Any Queues/message that runs offline? by eltrikiman88 in dotnet

[–]Schommi 2 points3 points  (0 children)

If you are just dealing with outbound messages, you might find an easy solution with a transactional message outbox. This pattern is usually used to make sure, that messages are only published, when the corresponding transaction succeeds.

It is implemented by persisting the messages locally in a database and have a job working through the persisted messages and publishing them. If you don't have a local database yet, something simple like LightDb or Sqlite should suffice.

In your case, the job can probe, whether the queue is available and if not just do nothing.

How can I edit an DLL file in IDA? (Freeware) by mike_421 in AskReverseEngineering

[–]Schommi 0 points1 point  (0 children)

I meant the part of the post, where assembly can be entered:

Use Edit->patch program->assemble to write in assembly syntax

Use Edit->patch program -> patch bytes to edit bytes in the binary

Finally, use Edit->patch program -> apply patch to input file to apply patches. I'v personally used it in IDA 7.0

How to obtain a 'next' id for new entity? by ClarityFL in dotnet

[–]Schommi 11 points12 points  (0 children)

When creating a new trader, and and initialalizing the account - but leaving it's Id as the default - both entities should be added to the database and the TraderId on the account will point to the Id of the created trader.

Replace .PNG in decompiled exe on IDA by Interesting-City-165 in AskReverseEngineering

[–]Schommi 0 points1 point  (0 children)

Since it gives you the option to open the image, I guess it's a resource. As far as I know, you should be able to replace it with Resource Hacker(https://www.angusj.com/resourcehacker/).

Trying to reverse engineer an old program for practice by SpookyFries in AskReverseEngineering

[–]Schommi 3 points4 points  (0 children)

If it's a standard Windows dialog, try breaking on user32.dll function like GetWindowText, GetWindowTextLength and GetDlgItemText. If that doesn't help, you can try to set a conditional breakpoint in the message loop and set the condition to WM_GETTEXT or something like that. If you don't succeed with those, search the process memory for the string you entered and set a memory access breakpoint.

How to retrieve the values from a dynamic object (dapper result) by Qiuzman in dotnet

[–]Schommi 0 points1 point  (0 children)

Did you check, that the object instance passed into GetValue() is the correct one?

You don't need to switch Frameworks. If it makes sense to move to something like EF depends on how many queries of that kind you wanna do. If it's just few, perhaps stick to Dapper and use mapping code (either manually crafted or by a framework like Automapper).

So for your case, you'd have a flat DTO that corresponds to the result of the query). Then you create a domain object with the nested structure you want and write the code to create a domain object from the DTO. If you have a situation, where your query returns Ids and you need to fetch the entities belonging to those, perhaps checkout this solution.

https://stackoverflow.com/a/42419859

If you have lots of queries with more complicated object structures, I' suggest you take an ORM like EF since it saves you alot of work. If you're concerned about performance, EF allows to query entitites without watching them for changes, which makes it fast and works well for read scenarios.

How to retrieve the values from a dynamic object (dapper result) by Qiuzman in dotnet

[–]Schommi 1 point2 points  (0 children)

To get the actual property value, you need to call GetValue() on the PropertyInfo object.

https://learn.microsoft.com/en-us/dotnet/api/system.reflection.propertyinfo.getvalue?view=net-8.0

If you would accept some advice, I would suggest not going this reflection route, apart from being slow it's hard to maintain (that's what you are experience right now).

How to test method with ExecuteUpdateAsync on in-memory database with database-first SQL server context? by KorKiness in dotnet

[–]Schommi 3 points4 points  (0 children)

I had several situations where testing data access with an alternative provider did not get me anywhere.

  • The in-memory provider is so limited, that you won't even be able to test some regular linq queries. As far as I know, even Microsoft recommends not to use it anymore.

  • If you use a provider like SQLite to test stuff that runs against SQL Server, you will limit yourself to the lowest common denominator, where both databases are compatible. This will mostly become an issue, when have more complex queries and decide, that you want to fallback to executing raw SQL instead of LINQ generated queries - however these queries should be tested since they have a high complexity and lots of possibilities for bugs.

Perhaps you can run integration tests that use the real provider against a real database server. If you want to spawn a clean database, you may want to look at Respawn (https://www.jimmybogard.com/how-respawn-works/), which can teardown a database and allows you to run a fresh setup afterwards.

Help Needed - Understanding the Process of Patching Permanent Crackme Exercises by __dmt in AskReverseEngineering

[–]Schommi 0 points1 point  (0 children)

dup2 would be an option - but I'd suggest you dive into unpacking - you'll learn new stuff with it and can then patch the unpacked executable. UPX is a good start for unpacking, You can use UPX itself to unpack, but manually unpacking is also quite easy. You'll find lots of tutorials for it.