My implementation has jumped ahead of my writing. Turns out its harder to write English than assembly. Hoping to catch up with another post soon!
-
Prikaži ovu nit
-
Back on the side project grind

This morning I ran a SoftICE debugger install through a brief smoke test by revisiting the classic "con\con" Win95 parlour trick.pic.twitter.com/BgtJJ2joj1
1 proslijeđeni tweet 8 korisnika označava da im se sviđaPrikaži ovu nit -
Starting to catch up on my development log vs implementation backlog. Today, one more step towards a functional Windows 95 PE infector virus. Tackling position independence with the delta offset trick:https://log.vexation.ca/2019/03/a-vxers-best-friend-delta-offset.html …
1 reply 3 proslijeđena tweeta 4 korisnika označavaju da im se sviđaPrikaži ovu nit -
Updated my WIP Win95 virus to find required kernel32.dll function addresses at runtime. That brings me to an important early milestone: real viral propagation between .exes! Read all about it: https://log.vexation.ca/2019/04/using-win95-kernel32dll-exports-like.html …pic.twitter.com/WMtcI5dYZN
1 reply 2 proslijeđena tweeta 10 korisnika označava da im se sviđaPrikaži ovu nit -
Starting to experiment with some payload ideas. Inverting the desktop background's BMP pixel data and enabling mouse pointer trails (remember those!) seemed like a good place to start.pic.twitter.com/Cf3hWChJzM
1 proslijeđeni tweet 8 korisnika označava da im se sviđaPrikaži ovu nit -
Only today did I learn about adding C:\WINDOWS\COMMAND\http://DOSKEY.COM to autoexec.bat to get command history in the Windows command shell. WhYyyYYy isn't this the default?????
1 reply 4 proslijeđena tweeta 11 korisnika označava da im se sviđaPrikaži ovu nit -
http://AskJeeves.com : ?
: how to tell if computer has virus windows95 helpme
:
:
pic.twitter.com/noz4kwI4kE0 proslijeđenih tweetova 12 korisnika označava da im se sviđaPrikaži ovu nit -
VeXation update: expect post cadence to be reduced over the summer. It's way too nice outside to write ASM indoors. Upcoming post: fixing the virus code to restore control flow to the infected executable's original entry point after doing its work. After that: payload stuff?
1 reply 0 proslijeđenih tweetova 1 korisnik označava da mu se sviđaPrikaži ovu nit -
The weather is cooling off and I'm back with another VeXation update: https://log.vexation.ca/entry-points/ This time I fixed up the WIP virus code so that infected programs are still usable post-infection.
1 reply 0 proslijeđenih tweetova 5 korisnika označava da im se sviđaPrikaži ovu nit -
Extra procrastination/yak shave bonus: I moved the VeXation site off of Blogger and rebuilt it with Gatsby. The new version is backed by markdown, is easier to read, and works great on mobile.pic.twitter.com/wgEcqTxiZY
1 reply 0 proslijeđenih tweetova 3 korisnika označavaju da im se sviđaPrikaži ovu nit
I gave in to eBay temptation and bought a 386 laptop (COMPAQ SLT 386s/20) that was available in my area. Win95 is pre-installed and ready to go. Only 14lbs! Just need a USB Floppy drive to copy my ASM over
pic.twitter.com/wEGQYu7BOy
-
-
It's _just_ a touch on the thick side.pic.twitter.com/IetbgbMB4L
0 proslijeđenih tweetova 7 korisnika označava da im se sviđaPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
-
-
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.
