Comments by Draco2013

Draco2013 12-May-22 11:15am View

Ahhh ok I'm missing the flags in my function parameter thank you

Draco2013 12-May-22 11:09am View

Thank you I will try to fix the file path with fltQueryinformation and DeviceIoControl should still do the trick for communicating between the filter driver and application?

Draco2013 11-May-22 11:10am View

OK I understand and thank you very much for this info I will mark this as accepted as I'm sure it will be everything I need. Now comes the part of actually doing it 😁

Draco2013 4-May-22 13:50pm View

I have changed as much as I can as you suggested and have properly initialized my UNICODE_STRING proc_path but I have a few more questions if I can.

You say:
I'd create a new code to make it easy in the driver to tell the difference between the ulong and the string.

I have both Variables Global as ULONG and UNICODE_STING
is this what you mean? Also what is meant by the code is just a number?

I have changed the DeviceIo Control from Ulong to IntPtr so that the output buffer can hold a pointer to both the PID and Process Path.

You say:
Your ulong VB code then needs to allocate an unmanaged buffer, call the driver using the pointer to the buffer as the output parameter, then retrieve the ulong value from the pointer.

I have Proc_id in my application as Ulong which is already a integer type value but says implicit Ulong to Intptr which works well without the AllocHglobal stuff which I couldn't seem to make work. I'm not sure either how to allocate a unmanaged buffer from ulong code or how to call the driver with a buffer when it's intptr. You can probably tell by now I'm pretty confused 😕

You say:
You'll need to revise your driver code to validate the length of the buffer against the length of a ulong

I do this with sizeof(*buffer) is this good enough or may have issues? Once I have the new IOCTL and switch statement do I also need to add the length of the PID and the length of the process to buffer? Please help

Draco2013 3-May-22 11:09am View

Thank you so much for this explanation I'm very grateful and will try this once I get home today 😊. This is a breath of fresh air as I feel I'm going crazy 🤪

Draco2013 3-Aug-16 22:22pm View

how might I do that?..

Draco2013 1-Aug-16 16:04pm View

Using Snort IDS monitor the command is like this

"-A console -i2 -c " & OSRootLetter & "Snort\etc\snort.conf -N"

The part after "console" is -i2 for interface 2 but on other configurations people may have on there computer the main interface or Ethernet might be different? correct me here if I'm wrong

thanks for your response

Draco2013 6-Apr-16 3:53am View

in vb.net isignorable does not work is there an equivalent to this?

Draco2013 12-Jan-16 3:01am View

Thank you very much this was exactly the answer, also thank you asif for your answer I believe it to work but went with the second answer.

Draco2013 15-Dec-15 6:36am View

its ok thank you I suppose I'm not sure either whats going on with this code but I have scrapped it and moved on. I now have a working version of what I'm trying to do but the parallel foreach loop seems to be freezing the UI. I have read that placing the sub containing the parallel loop into a background worker can help or fix the issue but it still freezes. I am using proper multithreading with deligates also. Any ideas what else can cause a parallel foreach loop to freeze the UI?

thanks again Sergey!

Draco2013 14-Dec-15 4:45am View

waiting patiently for your response..

Draco2013 11-Dec-15 18:37pm View

question has been updated thank you for taking the time to help.

Draco2013 11-Dec-15 18:11pm View

Deleted

sorry and thank you for looking at this question my problem is within btnDrive1_Click and btnDrive2_Click more specifically

Task.Factory.StartNew(Sub() customFileSearch_Renamed.FileSearch(dirInfo, lstFile1, btnDrive1, ParallelFileSearch.CustomFileSearch.DisplaySearchedFile))

Private Sub btnDrive2_click(ByVal sender As Object, ByVal e As EventArgs) Handles btnDrive2.Click
Dim dirInfo As New DirectoryInfo("G:\")
Task.Factory.StartNew(Sub() customFileSearch_Renamed.FileSearch(dirInfo, lstFile2, btnDrive2, ParallelFileSearch.CustomFileSearch.DisplaySearchedFile))
End Sub

Draco2013 12-Aug-15 11:01am View

after what seemed like fail after fail I finally figured out that the problem was due to the contains not being the same and adding values not intended. Thank you everyone for the solutions. Stepping through the code is very beneficial and necessary.

Draco2013 3-Jul-14 7:22am View

when you have time can you please review my new question it may explain more whats going on thank you

http://www.codeproject.com/Questions/792525/Getting-web-element-data-using-threading-timer?arn=0

Draco2013 2-Jul-14 21:38pm View

Ok I have tested some new code on its own and it works in a small test app which i will post in a new question

Draco2013 2-Jul-14 20:55pm View

Ok thank you for responding.. If we forget about the code i posted altogether my goal here is to monitor a web element on a separate thread so the GUI does not come into lags when the webcontrol or httpwebrequest happens. I may be over complicating things because I am unsure how its done the easy way but as far as i know I would need to use one of the two web methods then use a timer to continuously monitor that element for new matches or in my case Regex matches and then carry out my calculations.

thank you in advance

Draco2013 1-Jul-14 23:10pm View

ok i have updated my question

Draco2013 1-Jul-14 21:08pm View

This is my problem at present I need to understand the proper logic there is explanations online about Threading.timers but I know it to be a problem when using webcontrols. I have tried to get the web element with httprequest but am unsure of how to get a element inner text as it does not show in the web page source. The element in the web page has its own source so to phrase it i need to use agility pack or regular expressions. I was hoping to use threading.timer to overcome the lag issue to the UI and then to use delegates to update the form thread. Even an example or way to achieve this with my circumstances would be appreciated as I am probably going about this in the wrong way. This could be also the reason why it is not comprehensive.

Draco2013 1-Jul-14 21:00pm View

Deleted

Ok I will once again update my question..

Draco2013 1-Jul-14 18:43pm View

well there should be enough code here to see whats happening in general... I am using system.threading.timer to run a webcontrol on a separate thread that. I create a HtmlElementCollection and recursively go through the web elements until it finds "Dir" which then outputs the elements inner text. The only funny party to the code where my regex match happens. I have updated my question with the delegate sub.

thank you and sorry if the question was not enough for answering.
cheers

Draco2013 21-Jun-14 15:48pm View

any ideas what i can try to solve this problem?..

Draco2013 21-Jun-14 15:47pm View

ok my apologies I was unsure how visible my question would be on that form so i posted as a quick question also.

Draco2013 14-Jan-14 15:17pm View

my problem lays with the way it works.. Its a consol app

Draco2013 14-Jan-14 14:59pm View

thank you for the correction but i need regular expression to get the last line being a 1

Draco2013 22-Nov-13 0:56am View

I like the elevated user link but have no idea why its important or useful to run the program as a different user?...

Draco2013 21-Nov-13 23:40pm View

Ok thank you for this but is there any problem with the code?

Draco2013 21-Nov-13 23:20pm View

my question states that and i am aware of that but there is no change

Draco2013 13-Nov-13 13:39pm View

is it possible?.. also it would not be redundant because of the way it works. I am looking to have other values selected or checked based upon the users selection. How can one do this?

Draco2013 16-Sep-13 12:01pm View

ok this is the insert query I am using

VcmdInsert.CommandText = "INSERT INTO CloudBlackListTable VALUES (VirusName, MD5Signatures)(" & dgViewPreview.Rows(i).Cells(0).Value & ", '" & dgViewPreview.Rows(i).Cells(1).Value & "');"

I get an error on line:

VcmdInsert.ExecuteNonQuery()

The error is..

Additional information: Missing semicolon (;) at end of SQL statement.

Draco2013 15-Sep-13 16:19pm View

this is the question which I need help I have edited the other thank you

Draco2013 15-Sep-13 14:01pm View

Deleted

Ok I have been working on some new code for about 3 hours now but cannot get it working properly please help..

If dgViewPreview.Rows.Count > 0 Then
cmd.CommandType = Data.CommandType.Text
cmd.Connection = cnnOLEDB
For i As Integer = 0 To dgViewPreview.Rows.Count - 1
Dim strcommandText As String = "INSERT INTO CloudBlackListTable (VirusName, MD5Signatures, LastSeen) " & _
" VALUES(" & dgViewPreview.Rows(i).Cells(0).Value & "', '" & dgViewPreview.Rows(i).Cells(1).Value & "', '" & dgViewPreview.Rows(i).Cells(4).Value & "');"
cmd.CommandText = strcommandText
cmd.ExecuteNonQuery()
Next i
End If
MsgBox("Success")

the error I receive is:

An unhandled exception of type 'System.Data.OleDb.OleDbException' occurred in System.Data.dll

Additional information: Syntax error (missing operator) in query expression

Draco2013 15-Sep-13 10:45am View

Deleted

Try

Dim dt As New DataTable
Dim ds As New DataSet
ds.Tables.Add(dt) 'DataSet to DataTable
Dim da = New OleDbDataAdapter("INSERT INTO CloudBlackListTable (ID, DetectionRate, VirusName, MD5Signatures, SHA1, SHA256, FileSize, LastSeen, ExtentionType, EntryPoint, DateStamp, PEType) ", cnnOLEDB)
da.Fill(dt)
MsgBox("Record added")
Catch ex As OleDb.OleDbException
MsgBox(ex.Message)
End Try

I think the part here im missing is where to add the data from the datagridview to the database.

Draco2013 28-Aug-13 4:50am View

the fullpath and the file name are being passed as a string and not within the fileinfo class is this possible?..

Draco2013 28-Aug-13 4:47am View

this along with other examples I have found do not return the correct hash of the file. I am testing with the eicar text file witch has a hash of 44D88612FEA8A8F36DE82E1278ABB02F but with your example I get E37D3A9FF32C946E7A3934E8E7DC6345 which I suspect to be the hash of the string of the filename and not the file itself. any help would be greatly appreciated

thank you cheers!

Draco2013 28-Aug-13 2:41am View

if your still able to help me understand this better I would appreciate but I have the desired result using string split

cheers!

Draco2013 28-Aug-13 2:17am View

yes im sorry but I have tried to read and understand how this works but cannot seem to make sense of it. anything I try returns nothing?

How do I use the "^" to match the first part of a line and then use "$" to specify the end of a string?.. also once that is done how do I go about only showing the beginning of the line or match?

thank you in advance..

Draco2013 27-Aug-13 1:58am View

thank you I have espresso already but when all occurrences start with C:\... ect its my only choice to find the string with the word found at the end how is it possible to trim it so only the file path is returned?

any example or close to would be a great help

Draco2013 27-Aug-13 1:57am View

Deleted

thank you I have espresso already but when all occurrences start with C:\... ect its my only choice to find the string with the word found at the end how is it possible to trim it so only the file path is returned?

any example or close to would be a great help

Draco2013 9-Aug-13 14:29pm View

I am trying to only get the SSDEEP string from the html tag

Draco2013 2-Aug-13 3:08am View

I would still need some method to check the webcontol..

Draco2013 2-Aug-13 3:07am View

the main problem to this is the logic. the code is dependant on the variables I have declared is it possible to declare them globally so that the richtextbox is only updated when the webelement has changed?.. or can i stop it once it has found a match?

Draco2013 2-Aug-13 2:59am View

thats ok please help I cannot figure this out any control that has anything to do with this code in the timer just keeps firing what are some other options then using a timer?

Draco2013 2-Aug-13 2:06am View

the code is correct but i need someone to give me an idea how to update the textbox from the webcontrol in some other way?

Draco2013 2-Aug-13 2:06am View

this is not solved I need to update my richtextbox in some other way

Draco2013 2-Aug-13 1:46am View

thank you i have updated my question with some code that works but maybe you can give a different view or opinion about how to go about this.

Draco2013 1-Aug-13 19:23pm View

thank you i think that i have found the issue. its happening due to a different control

Draco2013 1-Aug-13 1:29am View

thank you all for your input I have figured this out with your help!

Draco2013 31-Jul-13 3:18am View

I have updated the code in hopes someone can see what i am trying to do

Draco2013 31-Jul-13 3:05am View

I tried this but get numbers.... :( i am not looking to count the length of the string lol im not sure you understand my question

Draco2013 31-Jul-13 2:38am View

new strings are added to the richtextbox from another source. I am unaware of the new values until they are added. all i am looking to do is add the newly added item to a label and when the next new value is added to the richtextbox the label will display that value changing it

Draco2013 31-Jul-13 2:35am View

the old value is not stored in any string or variable how am i to call stroldvalue.length +1? also would that not count the string length as a integer?

Draco2013 31-Jul-13 2:02am View

because that will show all text i only wish to show the newly added line

Comments by Draco2013 (Top 53 by date)