View Single Post
  #8  
Old 02-24-2018, 21:42
mr.exodia's Avatar
mr.exodia mr.exodia is offline
Super Moderator
 
Join Date: Nov 2011
Posts: 855
Rept. Given: 496
Rept. Rcvd 1,154 Times in 308 Posts
Thanks Given: 92
Thanks Rcvd at 528 Times in 202 Posts
mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299
The ProcStartargs function appears to be copied from/heavily inspired by https://github.com/Nummer/Destroy-Windows-10-Spying/blob/master/DWS/MainDwsForm.cs#L333 (same uppercase typo + same 'random' order of ProcessStartInfo initialization + same inefficient way of copying the standard output)

The functions to enable/disable are also pretty much the same (exact same order or command line options), except the "sc" command is used instead of the powershell service thing. https://github.com/Nummer/Destroy-Windows-10-Spying/blob/master/DWS/MainDwsForm.cs#L1476

The usage of the "Sysnative" path is also very similar, just this tool has fewer features than the original.

https://github.com/Nummer/Destroy-Windows-10-Spying/network/members (search for "TechLord")
https://github.com/TechLord-Forever/Destroy-Windows-10-Spying

archived pages:
http://www75.zippyshare.com/v/jJ84CeNo/file.html

All of that is toppled by the use of a legit (sorry for confusion) enigma for no apparent reason other than:

Quote:
On the other hand, not indiscriminately releasing sources would prevent "script kiddies" and those who want to just modify the GUI a bit and re-sell it as their own, from doing so.
Seriously?
__________________
x64dbg: http://x64dbg.com
My Blog: http://mrexodia.cf

Last edited by mr.exodia; 02-25-2018 at 07:32.
Reply With Quote
The Following User Says Thank You to mr.exodia For This Useful Post:
ionioni (02-24-2018)