A couple of follow-ups :) First on wide chars. My gut instinct was correct, in the sample it was the character byte followed by the null-byte. I could have simply used the hex-view in IDA Pro to view the bytes of the string. As for the XOR tool in 010, I should have selected an unsigned byte then could use the hex value without any prefix (i.e. 0x or \x). Thanks for joining everyone! If you have any questions/feedback please feel free to drop me a message :)
Many times it's just seeing the thought process that is most valuable here. No worries on any speed bumps along the way, it's how we all normally work!
A couple of follow-ups :) First on wide chars. My gut instinct was correct, in the sample it was the character byte followed by the null-byte. I could have simply used the hex-view in IDA Pro to view the bytes of the string. As for the XOR tool in 010, I should have selected an unsigned byte then could use the hex value without any prefix (i.e. 0x or \x).
Thanks for joining everyone! If you have any questions/feedback please feel free to drop me a message :)
Many times it's just seeing the thought process that is most valuable here. No worries on any speed bumps along the way, it's how we all normally work!
thanks for pointing out the password. Awesome channel.
Hahahah windows not good
Hahaha