Category Archives: Reverse Engineering

Microsoft Edge and ProtectedHomepages

By | May 11, 2016

Recently, I have had a small but curious research project with the requirement to decrypt ProtectedHomepages binary value stored under [HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Protected – It is a violation of Windows Policy to modify. See aka.ms/browserpolicy]. While googling around the problem, I have seen a related question on Stack Overflow, so I decided that it may have sense to share… Read More »

Inside PsExec remote administration

By | March 24, 2004

This is a short reverse engineering review of one useful remote administration utility, originally authored by Mark Russinovich (you can download it from Microsoft web-site here). The original version of this review was published on this site in 2004, but since the utility is still very popular and users are interested about its internal design, I decided to… Read More »