FILE_DISPOSITION_POSIX_SEMANTICS
When FILE_DISPOSITION_POSIX_SEMANTICS is not set, a file marked for deletion is not actually deleted until all open handles for the file have been closed and the link count for the file is zero. When FILE_DISPOSITION_POSIX_SEMANTICS is set, the link is removed from the visible namespace as soon as the POSIX delete handle has been closed, but the file's data streams remain accessible by other existing handles until the last handle has been closed. That is, applications that already had the file open can still use their handle to read/write even though the name they used to open it is gone and the file's link count may have reached zero. (source)
🌚... 还有这种东西
#Windows
Forwarded from Hacker News
C++26 is done ISO C++ standards meeting, Trip Report (Score: 150+ in 5 hours)
Link: https://readhacker.news/s/6QRxx
Comments: https://readhacker.news/c/6QRxx
Link: https://readhacker.news/s/6QRxx
Comments: https://readhacker.news/c/6QRxx
Sutter’s Mill
C++26 is done! — Trip report: March 2026 ISO C++ standards meeting (London Croydon, UK)
News flash: C++26 is done! 🎉 On Saturday, the ISO C++ committee completed technical work on C++26 in (partly) sunny London Croydon, UK. We resolved the remaining international comments on the C++26…
🎉1
Breaking the NFC chips in tens of millions of smart phones, and a few PoS systems
亦可赛艇 #RFID #Android
亦可赛艇 #RFID #Android
Pen Test Partners
Breaking the NFC chips in tens of millions of smart phones, and a few PoS systems | Pen Test Partners
This second post is a companion to the DEF CON 29 video. Starts at 25:43 here. About a year ago I did some research into adding new capabilities to Samsung’s NFC chips in their smartphones, by bypassing their signature protection and applying code patches.…
👀2
如何对 android app 使用 strace
1. 首先, 需要一个可在设备上运行的 strace, 系统里不自带的话就自己编译个静态的吧。
2. 需要使用
3. 设置 SELinux 宽容, 然后软重启:
4. 应用的可写路径并不多, 建议把
5. 在 launcher 打开应用,
参考资料: 1, 2
---
这只是一篇笔记。实际上, 这种使用 strace 的方式非常容易被检测 (通过
#Android
1. 首先, 需要一个可在设备上运行的 strace, 系统里不自带的话就自己编译个静态的吧。
2. 需要使用
wrap.sh 来自定义 app 启动参数, 关于 wrap.sh 可以参考这里, 此文档的使用方式需要重打包, 还有一种不需要重打包方式 (实测也不需要 debuggable:true):setprop wrap.<PACKAGE_NAME> /path/to/wrap.sh
3. 设置 SELinux 宽容, 然后软重启:
setenforce 0
stop
start
4. 应用的可写路径并不多, 建议把
wrap.sh 放在数据目录:#!/system/bin/sh
strace -f -o /data/data/com.example.app/strace.log "$@"
setprop wrap.com.example.app /data/data/com.example.app/wrap.sh
5. 在 launcher 打开应用,
strace.log 就会出现在数据目录。参考资料: 1, 2
---
这只是一篇笔记。实际上, 这种使用 strace 的方式非常容易被检测 (通过
TracerPid), 与 frida 配合使用也十分麻烦。因此更推荐使用最新最热的 frida-strace (通过 eBPF 实现, 需要内核打开 CONFIG_DEBUG_INFO_BTF)。#Android