Gl.ib.ly

(glibly); Just another techie blog.

Entries tagged as xxd

Related tags

The command prompt has been disabled by your administrator?

Posted by Tariq • Thursday, February 5. 2009 • Category: One liners, Security
I came across an old enough post on Didier's blog about Group policies that have disabled cmd.exe from running. Didier mentions a few ways to get cmd.exe to run. The suggestion I like the most is to find the DisableCMD string in cmd.exe and change it to DisableAMD using a hex editor. Thankfully there is a tool which will allow us to patch cmd.exe in one tiny line.

Continue reading "The command prompt has been disabled by your administrator?"

Defined tags for this entry: , , , , , , , ,

Analysing the byte entropy of a FAT formatted disk

Posted by Tariq • Tuesday, January 27. 2009 • Category: Forensics
Over at the Honeynet Project they used to run security competitions which were quite a bit of fun. I remembered one in particular which I looked at but hadn't completed. It dealt with the forensic investigation of a floppy disk. I was tinkering with an application to measure byte entropy and thinking of a way that it could be used in a forensic investigation. There is no point using the little application to analyse my terabyte (TB) sized drives so remembering the floppy disk challenge I downloaded the floppy disk image (1.44MB;MD5 = b676147f63923e1f428131d59b1d6a72).

Continue reading "Analysing the byte entropy of a FAT formatted disk"

Defined tags for this entry: , , , , , , , , , ,
(Page 1 of 1, totaling 2 entries)