Pinned Loading

1. rust_ppid_break_chain rust_ppid_break_chain Public

   using Werfault.exe to break parent process chains

   Rust 8 1

2. regloop regloop Public

   grabbing registered protocol handlers from the windows registry

   Rust 2

3. eles eles Public

   implementation of dir written in c/c++

   C++

4. getppid getppid Public

   Rust implementation of getppid

   Rust

5. Snippet which uses LdrLoadDll to for... Snippet which uses LdrLoadDll to force load a DLL and use handle returned to get a pointer to a function.

   1

   #include <windows.h>

   2

   #pragma comment(lib, "ntdll.lib") 

   3

   //#pragma comment(lib, "ntdllp.lib") 

   4

   #define NT_SUCCESS(Status) (((NTSTATUS)(Status)) >= 0)

   5

6. apisetparse apisetparse Public

   Uses the PEB to obtain an apisetmap in order to translate umbrella DLL's such as "api-ms-win-http-time-l1-1-0.dll" to their origin forward DLL e.g. kernelbase.dll

   C 2