New version of my sniffer for Windows 2000+
(requires admin rights).
h.
(Added commented .ini file)
(Download the v1.6 below)
(requires admin rights).
h.
(Added commented .ini file)
(Download the v1.6 below)
is where for program to work correctly?
Here it is.
Thank you very much :D
Nice clean code - for those who have already been initiated :)
Hello there,
very nice source, but I have a problem.
If I open the zip, and run the exe from within, no errors.
After I extracted the zip, now when I run the exe windows kills the app and wants to send a report.
Is there something I'm missing? I've tried it several times with the same results.
Thanks again for the nice source...
very nice source, but I have a problem.
If I open the zip, and run the exe from within, no errors.
After I extracted the zip, now when I run the exe windows kills the app and wants to send a report.
Is there something I'm missing? I've tried it several times with the same results.
Thanks again for the nice source...
hi,
What do you mean by "wants to send a report." ?
And what the exact error ?
And are you using windows xp ?
h.
What do you mean by "wants to send a report." ?
And what the exact error ?
And are you using windows xp ?
h.
yes, xp home (came with vaio didn't have a choice)
It says that packetsview.exe has encountered an error and needs to close.
I thought this was a rather odd error since it only occurs when running the app standalone.
I can send you the xml file windwows creates when sending in its error report if that would help...
It says that packetsview.exe has encountered an error and needs to close.
I thought this was a rather odd error since it only occurs when running the app standalone.
I can send you the xml file windwows creates when sending in its error report if that would help...
It could help.
But you'd rather build it with debug infos turned on and see for yourself where it crashes.
I won't mind a complete report.
h.
But you'd rather build it with debug infos turned on and see for yourself where it crashes.
I won't mind a complete report.
h.
for me it crashes here in argclc
cl2Out:
mov al, 0
stosb
; ---------------------------------
; replace substitutions with spaces
; ---------------------------------
mov esi, ItemBuffer
mov edi, ItemBuffer
with a messed up EDI
I'll try to think about it tonight
cl2Out:
mov al, 0
stosb
; ---------------------------------
; replace substitutions with spaces
; ---------------------------------
mov esi, ItemBuffer
mov edi, ItemBuffer
with a messed up EDI
I'll try to think about it tonight
I'm relieved, i thought it was me, but it's masm32lib again.
Btw, the argcl/argclc proc are probably subject to a buffer overflow (or at least a denial of service attack) when used for eg. cgi scripts, a network server or something else that requires command line arguments passed from the network, so beware.
What's the value of edi when it crashes ? And it is the first or second argument ?
Notice that both arguments are optionals.
Report me the problem if you find it (i'll try to test it myself but it's working perfectly under windows 2000).
h.
Btw, the argcl/argclc proc are probably subject to a buffer overflow (or at least a denial of service attack) when used for eg. cgi scripts, a network server or something else that requires command line arguments passed from the network, so beware.
What's the value of edi when it crashes ? And it is the first or second argument ?
Notice that both arguments are optionals.
Report me the problem if you find it (i'll try to test it myself but it's working perfectly under windows 2000).
h.
I'm just beginning to get back into assembly, and am pretty rusty on most of this stuff.
I haven't had the chance to debug yet, but I noticed another thing.
Please don't take my posts in this thread as complaints, just helping you out with the program.
Noticed that when running the program it's eating as much CPU as it can gather. It's currently holding around 96-100%.
Just FYI.
I haven't had the chance to debug yet, but I noticed another thing.
Please don't take my posts in this thread as complaints, just helping you out with the program.
Noticed that when running the program it's eating as much CPU as it can gather. It's currently holding around 96-100%.
Just FYI.
Here is the v1.6:
- Added handling for console signals.
- Added Sleep(1) to avoid the report of 100% CPU usage.
- Sourcecode Slightly cleaned up.
- Increased length of arguments buffers.
I don't know if it works under windows xp.
h.
- Added handling for console signals.
- Added Sleep(1) to avoid the report of 100% CPU usage.
- Sourcecode Slightly cleaned up.
- Increased length of arguments buffers.
I don't know if it works under windows xp.
h.
Everything's happy here. CPU is within some sanity now :)
I've had it running for several minutes now surfing around the web and no errors yet. I did notice that by executing the program via double-click the process is dropped, but if you execute the file from within 'cmd' you are OK and it stays alive. Is the new sleep state the culprit?
Other than that nuance, it looks nice, thanks.
I've had it running for several minutes now surfing around the web and no errors yet. I did notice that by executing the program via double-click the process is dropped, but if you execute the file from within 'cmd' you are OK and it stays alive. Is the new sleep state the culprit?
Other than that nuance, it looks nice, thanks.
haven't had any more time to test
some remarks: memalloc (or whatever you use in there) is a registered API with a totally different argumentcount
it does not crash when I call it from a CMD box :|
sorry I write it down sloppily but it's over midnight and I just got home for today and am ready to turn in
some remarks: memalloc (or whatever you use in there) is a registered API with a totally different argumentcount
it does not crash when I call it from a CMD box :|
sorry I write it down sloppily but it's over midnight and I just got home for today and am ready to turn in
I did notice that by executing the program via double-click the process is dropped, but if you execute the file from within 'cmd' you are OK and it stays alive.
Could you be a little bit more precise ?
some remarks: memalloc (or whatever you use in there) is a registered API with a totally different argumentcount
AllocMem only exists in IIService.
More precision would be welcome too.
h.
Sorry,
When I double click the application from within windows to execute it, it flashes up the dos box and immediately exits. If, however, I drop into "dos," navigate to the application and execute it, the application stays up and runs correctly.
I hope that clears it up.
When I double click the application from within windows to execute it, it flashes up the dos box and immediately exits. If, however, I drop into "dos," navigate to the application and execute it, the application stays up and runs correctly.
I hope that clears it up.