Leveraging Exploit Guard in Windows Insider Build to Easily Audit Your Code

If you are a software developer and are looking to improve upon the security compliance of your software, there is a feature in the current Windows 10 Enterprise Insider Preview (as of 10.0.16253 – I can’t guarantee this will make it or make it unchanged into future builds) that could be very useful to you. …


Why can’t I restore files even when I have backup/restore privileges enabled?

Backup and restore privileges allow some, but not all, types of access checks to be bypassed.  Typically those are sufficient to allow a backup utility to restore data to even sensitive folders.  However, there are some exceptions to that.  For example, at the time of this writing, much of the contents under %programfiles%\WindowsApps out of the…


Windows Hotfixes for October 2015

Jeff here from the Windows SDK team. Here is the list of October 2015 Hotfixes [Drum roll, please…] KB3030736   “550 The process cannot access the file” error when you try to download a file in Windows KB3044546   An updated reservation may disappear on a DHCP failover cluster in Windows Server 2012 or Windows Server 2012…

2

Troubleshooting "Access Denied" errors

Anyone who has used Windows has encountered the dreaded “Access Denied” error.  (AKA error code 5 or 0x5). This error typically implies you can’t do something like open or save a file.  The error implies that you have encountered some type of security issue. In the past, an “Access Denied” issue came down to 2 things…

1

Dealing with Administrator and standard user’s context

With introduction of UAC, I often get two questions for Windows Vista and later. 1)      How to launch an application in the Administrative context from an application which is running in standard user’s context? 2)      How to launch application in standard user’s context from an application which is running in administrative context?   The first…


I lost the “Security” tab of offline files synced by Sync Centre !!

In Windows Vista and later there is a cool feature of making network shared files available offline and maintaining the synchronization through a newly added component called Sync Centre.  You may find more information about it here:  Explore the features: Sync Center. You might have a functionality where you would like to know the security…

0

Web Service can’t start the Windows Service

Working with Windows Service and Web Service together is nothing less than fun, especially when you are not an ASP.NET expert. Like many native developers I have my own challenges with words like managed, web service and web applications! I was debugging a production down. My customer had a Web application which was communicating with…

0

Opps!!! System.Security.Cryptography.CryptographicException: The system cannot find the file specified.

If you are creating the cryptographic keys on the user’s profile directory you may get a cryptographic exception saying: "CryptographicException: The system cannot find the file specified". The stack trace looks like: System.Security.Cryptography.CryptographicException: The system cannot find the file specified. at System.Security.Cryptography.Utils.CreateProvHandle(CspParameters parameters, Boolean randomKeyContainer) at System.Security.Cryptography.Utils.GetKeyPairHelper(…) at System.Security.Cryptography.RSACryptoServiceProvider.GetKeyPair() On most cases the reason for…

0

Steps to sign a file using Signtool.exe

You may have a situation where you need to sign a file which may be an a. .exe b. .cab c. .cat d. .ocx e. .dll f. .stl Using the CryptoAPI “signtool.exe”, the files can be digitally signed. Digitally signing a file essentially involves two steps. 1. Obtaining a code signing certificate that has an…

2

Why does regedit.exe (or any other Microsoft program) crash when I try to create a remote thread into it using the CreateRemoteThread() API?

Question: On Windows XP, I am starting regedit.exe in suspended mode and forcing it to call the LoadLibrary() API to load an external DLL by using the CreateRemoteThread() API.  After loading the DLL, when I try to resume the suspended thread, the application terminates. Why is this form of extending an application not supported by…