flat assembler
Message board for the users of flat assembler.

Index > Heap > Can you see your hard drive?

Author
Thread Post new topic Reply to topic
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17280
Location: In your JS exploiting you and your system
revolution
For those using Windows follow this link.

Will your browser go there? Firefox just completely ignores it when the link is in a page not already in the file zone. What does your browser do?
Post 15 Sep 2008, 11:10
View user's profile Send private message Visit poster's website Reply with quote
vid
Verbosity in development


Joined: 05 Sep 2003
Posts: 7105
Location: Slovakia
vid
Same for opera, opens blank page... i quess it is some security measure, so someone cannot trick you into running some app/script on your local machine.
Post 15 Sep 2008, 11:43
View user's profile Send private message Visit poster's website AIM Address MSN Messenger ICQ Number Reply with quote
wisepenguin



Joined: 30 Mar 2005
Posts: 129
wisepenguin
i'm on IE7 at work, and clicking on it does nothing at all.

have a good day
Post 15 Sep 2008, 11:50
View user's profile Send private message Reply with quote
MichaelH



Joined: 03 May 2005
Posts: 402
MichaelH
Doing a bit of url protocol testing I see Wink


No cross domain browsing for the file url protocol. All browsers I tested (IE FF Opera, Chrome, Safari) excluding safari will let you browse the local network that the html file resides on.

You'll have to play around with security settings to see if you can do cross domain browsing.
Post 15 Sep 2008, 11:58
View user's profile Send private message Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17280
Location: In your JS exploiting you and your system
revolution
MichaelH wrote:
You'll have to play around with security settings to see if you can do cross domain browsing.
It looks like there is no setting


Description:
Filesize: 35.14 KB
Viewed: 2127 Time(s)

FFsecuritySettings.JPG


Post 15 Sep 2008, 12:06
View user's profile Send private message Visit poster's website Reply with quote
MichaelH



Joined: 03 May 2005
Posts: 402
MichaelH
Well I guess you'll have to set up your own protocol and write your own program. Here's a reg file for you. Change the word "foo" to what ever protocol name you want, change the program.exe to point to your program that handles the protocol.

Code:
REGEDIT4

[HKEY_CLASSES_ROOT\foo]
@="URL:foo Protocol"
"URL Protocol"=""

[HKEY_CLASSES_ROOT\foo\shell]

[HKEY_CLASSES_ROOT\foo\shell\open]

[HKEY_CLASSES_ROOT\foo\shell\open\command]
@="\"C:\\Application\\program.exe\" \"%1\"" 
    



For a simple app, after you call GetCommandLine, you'll have to chop of "foo:" bit to open any files passed .... of course someone of your talent doesn't need to be told this ..... give it a go, it lots of fun and then tell me why we need bloatware like google gears and all the rest of browser bloatware nonsense.
Post 15 Sep 2008, 12:30
View user's profile Send private message Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17280
Location: In your JS exploiting you and your system
revolution
MichaelH wrote:
Here's a reg file for you.
Thanks
MichaelH wrote:

For a simple app, after you call GetCommandLine, you'll have to chop of "foo:" bit to open any files passed .... of course someone of your talent doesn't need to be told this ...
I'm pretty stupid at times so that will save me a few moments debugging.
MichaelH wrote:
... give it a go, it lots of fun and then tell me why we need bloatware like google gears and all the rest of browser bloatware nonsense.
I'll leave that part to someone else.
Post 15 Sep 2008, 12:40
View user's profile Send private message Visit poster's website Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17280
Location: In your JS exploiting you and your system
revolution
Maybe this is the secret to the crown jewels?


Description:
Filesize: 51.84 KB
Viewed: 2111 Time(s)

FFprotocolExposure.JPG


Post 15 Sep 2008, 12:47
View user's profile Send private message Visit poster's website Reply with quote
Display posts from previous:
Post new topic Reply to topic

Jump to:  


< Last Thread | Next Thread >
Forum Rules:
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Copyright © 1999-2020, Tomasz Grysztar. Also on YouTube, Twitter.

Website powered by rwasa.