i have also discovered that wil exists, which is apparently an open source header-only library; it's used a lot in various system components https://github.com/microsoft/wil
it's basically a lightweight Win32 API wrapper for C++. it looks super useful
it does use exceptions, which is a somewhat questionable choice, though if it's good enough for system components it's good enough for me I guess?
reverse engineering idea: a script that goes over every single dll in system32, examines them for registry access, and gives you a summary of registry keys accessed by each
hardware brain damage and software brain damage are currently fighting over my brain deciding that "Rtl" is supposed to mean "Realtek" or "runtime library [ntdll]"
it... looks like GetProcAddress can return different DLLs for the same HMODULE depending on which function is calling it? this is absolutely wild what the fuck
Add comment