Hello Navi

note and sharing

Posted on In Disqus: Word count in article: 280 Reading time ≈ 1 mins.

Easy Crack

Easy Crack

ghidra btw

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
void entry(void)
{
    ....
  UVar4 = FUN_00401000(pHVar3);   Main function
  FUN_004012f4(UVar4); Exit function
  FUN_004013c9(local_18->ExceptionRecord->Except ionCode,local_18);
  return;
}

undefined4 Main(HINSTANCE hInstance)
{
  DialogBoxParamA(hInstance,(LPCSTR)0x65,(HWND) 0x0,(DLGPROC)&LAB_00401020,0);
  return 0;
}
        ...


void __cdecl checkPassword(HWND param_1)

{
  byte bVar1;
  byte *pbVar2;
  int iVar3;
  char *pcVar4;
  bool bVar5;

  CHAR local_64;
  char local_63;
  char local_62;
  char acStack_61 [97];

  local_64 = '\0';
  pcVar4 = &local_63;
  for (iVar3 = 0x18; iVar3 != 0; iVar3 = iVar3 + -1) {
    pcVar4[0] = '\0';
    pcVar4[1] = '\0';
    pcVar4[2] = '\0';
    pcVar4[3] = '\0';
    pcVar4 = pcVar4 + 4;
  }
  pcVar4[0] = '\0';
  pcVar4[1] = '\0';
  pcVar4[2] = '\0';
  GetDlgItemTextA(param_1,1000,&local_64,100);
  if (local_63 == 'a') {                            ;a
    iVar3 = _strncmp(&local_62,&DAT_00406078,2);    ;5y
    if (iVar3 == 0) {
      pcVar4 = s_AGR3versing_0040606a;
      pbVar2 = (byte *)(acStack_61 + 1);

      do {
        pcVar4 = (char *)((byte *)pcVar4 + 2);      ;R3versing
        bVar1 = *pbVar2;
        bVar5 = bVar1 < (byte)*pcVar4;
        if (bVar1 != *pcVar4) {
LAB_00401102:
          iVar3 = (1 - (uint)bVar5) - (uint)(bVar5 != 0);
          goto LAB_00401107;
        }
        if (bVar1 == 0) break;
        bVar1 = pbVar2[1];
        bVar5 = bVar1 < ((byte *)pcVar4)[1];
        if (bVar1 != ((byte *)pcVar4)[1]) goto LAB_004011 02;
        pbVar2 = pbVar2 + 2;
      } while (bVar1 != 0);

      iVar3 = 0;
LAB_00401107:
      if ((iVar3 == 0) && (local_64 == 'E')) {   ;E
        MessageBoxA(param_1,s_Congratulation_!!_00 406044,s_EasyCrackMe_00406058,0x40);
        EndDialog(param_1,0);
        return;
      }
    }
  }
  MessageBoxA(param_1,s_Incorrect_Password_004 06030,s_EasyCrackMe_00406058,0x10);
  return;
}
Ea5yR3versing

i luv ida qaq

same code so easy in ida

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
int __cdecl sub_401080(HWND hDlg)
{
  CHAR String[97]; // [esp+4h] [ebp-64h] BYREF
  __int16 v3; // [esp+65h] [ebp-3h]
  char v4; // [esp+67h] [ebp-1h]

  memset(String, 0, sizeof(String));
  v3 = 0;
  v4 = 0;
  GetDlgItemTextA(hDlg, 1000, String, 100);
  if ( String[1] != 'a' || strncmp(&String[2], Str2, 2u) || strcmp(&String[4], aR3versing) || String[0] != 69 )
    return MessageBoxA(hDlg, aIncorrectPassw, Caption, 0x10u);
  MessageBoxA(hDlg, Text, Caption, 0x40u);
  return EndDialog(hDlg, 0);
}

Posted on In , Disqus: Word count in article: 149 Reading time ≈ 1 mins.

fish很好用,所以删除zsh,但是忘记RootShell依然是zsh。

接着尝试了数十次正确密码无法登录,事实上是因为找不到Shell导致的失败orz

使用systemd-boot的话

Step 1: Reboot and Access systemd-boot

Restart your system

When the systemd-boot menu appears, press e to edit the current boot entry

Look for the kernel parameters line - it usually starts with something like linux /vmlinuz-... root=...

Step 2: Modify Kernel Parameters for Rescue Mode

Add rw init=/bin/sh at end

  • rw - mounts the filesystem as read-write
  • init=/bin/sh - tells the kernel to start sh instead of the normal init system

Step 3: chsh or reinstall shell

1
chsh -s /usr/bin/bash

Or

1
paru -Syu zsh

Posted on Edited on In , Disqus: Word count in article: 194 Reading time ≈ 1 mins.

Docker Daemon Proxy

The Docker daemon checks environment variables in its startup environment.

Or you can

According to the official Docker documentation

Create a directory and configuration file for the Docker service:

1
sudo mkdir -p /etc/systemd/system/docker.service.d/

Create /etc/systemd/system/docker.service.d/http-proxy.conf with your proxy settings:

1
2
3
4
[Service]
Environment="HTTP_PROXY=http://proxy.example.com:3128"
Environment="HTTPS_PROXY=https://proxy.example.com:3129" # if you have https proxy
Environment="NO_PROXY=localhost,127.0.0.1,docker-registry.example.com,.corp"

Apply the configuration changes:

1
2
sudo systemctl daemon-reload
sudo systemctl restart docker

Check that the environment variables are properly set:

1
sudo systemctl show --property=Environment docker

Nix Daemon Proxy

According to the Nixos CN documentation

1
sudo mkdir -p /run/systemd/system/nix-daemon.service.d/

Create /run/systemd/system/nix-daemon.service.d/override.conf with your proxy settings:

1
2
3
4
sudo tee /run/systemd/system/nix-daemon.service.d/override.conf << EOF
[Service]
Environment="https_proxy=socks5h://localhost:7891"
EOF

Apply the configuration changes:

1
2
sudo systemctl daemon-reload
sudo systemctl restart nix-daemon

PS

  • The NO_PROXY variable should include local addresses and internal services that shouldn't go through the proxy
  • Different proxy protocols may be required (HTTP, HTTPS, SOCKS5) depending on your network setup

Posted on In Disqus: Word count in article: 173 Reading time ≈ 1 mins.

device: Redmibook pro 15

给电脑装系统进入bios时发现自己远古时期设置过密码,但已经忘记了密码。

难道唯一的办法是扣电池,用编程器刷新bios芯片吗?

编程器下单后才发现,红米笔记本的密码竟然是明文存储???

膜拜orz -> https://blog.nns.ee/2021/01/18/resetting-bios-password/

使用如下命令获取密码,回忆起自己设置的是admin...

1
2
3
4
5
➤ hexdump -C /sys/firmware/efi/efivars/SystemSupervisorPw-7f9102df-e999-4740-80a6-b2038512217b
00000000  07 00 00 00 05 64 6d 69  6e 61 f2 00 00 00 00 00  |.....dmina......|
00000010  00 00 00 00 00 00 00 00  00 00 00 00 00 00 00 00  |................|
00000020  00 00 00 00 00 00 00 00  00 00 00 00              |............|
0000002c

Posted on Edited on In Disqus: Word count in article: 485 Reading time ≈ 2 mins.

one

今年花了点时间学到足以被当作不误正业小众计算机用户的无用东西,重新捡起阅读器看了几本电子书和漫画,去看了几场摇滚乐队演出。虽然这些事情看来是足以让去年的自己高看一眼的长进,但是有几项是真正自己想做而不是受人影响去做的事情呢?

做不了蔑视一切,谈及根本只是对值得自己高看的人们的模仿,从这一点看来毫无长进。

只知道我能做到能做到的事,相信愿意相信的事,比较自己和过去的自己,感受到意料之中的快乐,并且不会有令生活更美好的事情发生使我的生活更快乐。

发博客这种行为大概除了炫耀自己有个网页之外得不到任何东西,就算是放到作为费曼学习法知识输出平台的不上不下的位置来说我也并没有真正地输出些什么。

做着发布垃圾数据到互联网上的ai行为,觉得污染中文信息是和浏览器中收藏的两百个具有高技术高智商的高级工程师高级教授超高校级高中生做着同样利他又利己的事。

技术小白的博客就是不断发布带着Creative Commons证的笔记本,盼着自己hexo hugo react vue或者其他3000种框架搭建的网站衬托自己高于其他计算机用户一等。同样的行为还有使用rust zig nushell archlinux nixos vim neovim,给1000个小众github repo点星星。

显然意识这些点是找到了进步的阶梯,可喜可贺。

聪明,要么付出很高的代价,要么否定自身。拿我来说,我要付出代价。

历史上见