Category Archives: Reverse Engineering

Microsoft Edge and ProtectedHomepages

By | May 11, 2016

Recently I have had a small but curious research project with the requirement to decrypt ProtectedHomepages binary value stored under [HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Protected – It is a violation of Windows Policy to modify. See aka.ms/browserpolicy]. While googling around the problem I have seen a related question on StackOverflow, so I decided that it may have sense to share the… Read More »

Inside PsExec remote administration

By | March 24, 2004

This is a short reverse engineering review of one useful remote administration utility originally authored by Mark Russinovich (you can download it from Microsoft web-site here). Original version of this review was published on this site in 2004, but since the utility is still very popular and users are interested about its internal design I decided to slightly… Read More »