Jump to content
Sign in to follow this  
ViciousXUSMC

String to Binary RegWrite

Recommended Posts

ViciousXUSMC

So I am trying to write a script that can take the current computer name and write it to a registry key.

This key uses REG_BINARY type of key and looks like this:

Value 1
  Name:            LocalName
  Type:            REG_BINARY
  Data:            
00000000   54 4f 55 47 48 42 4f 4f - 4b 36 30 39 38 00 00 00  TOUGHBOOK6098...
00000010   00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00  ................
00000020   00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00  ................
00000030   00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00  ................
00000040   00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00  ................
00000050   00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00  ................
00000060   00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00  ................
00000070   00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00  ................
00000080   00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00  ................
00000090   00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00  ................
000000a0   00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00  ................
000000b0   00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00  ................
000000c0   00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00  ................
000000d0   00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00  ................
000000e0   00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00  ................
000000f0   00 00 00 00 00 00 00 00 -                          ........

Its apparently very important that all the ending 00's are in there I found this out as I was working on some other keys that had to do with security settings, and if the key was say 01 00 00 putting any less or any extra ending zeros would cause the change in the regsitry to not effect the software.

So what I am attempting to do is use the @ComputerName macro and plug it into a StringtoBinary() function and then write it to the registry.

The challenge I face is how to fill in the entire binary value for the registry key and not just the converted strings value.

I wonder if there is some easy code to do that.  I imagine there must be a few ways but I am looking for the most straight forward/easiest. 

Also on a side note, instead of using RegWrite is there a way to create a .REG file that I can call from CMD with Reg Import?

This is being done at an enterprise level and the users do not have access to write to the registry, but they can import a reg file via .bat or in my case a Autoit .exe with @ComSpec

Currently I am importing all the "static" keys I need for configuration, but computer name is dynamic so that is why I am trying to find a way to use the @ComputerName macro to insert that value.

Regards,

Share this post


Link to post
Share on other sites
Valuater

The easy way ... you said

RegWrite("HKCUSoftwareMicrosoftWindowsCurrent VersionSettingsClickTask.comX-" & $program_name, "002", "REG_SZ", _StringEncrypt( 1, @ComputerName))

 

Thats what I used...

8)


NEWHeader1.png

Share this post


Link to post
Share on other sites
Tekk

Another method: 

ConsoleWrite(StringToBinaryFixed(@ComputerName, 16) & @CRLF)

Func StringToBinaryFixed($sString, $iLength)
    Local $tChar = DllStructCreate("CHAR[" & $iLength & "]")
    Local $tByte = DllStructCreate("BYTE[" & $iLength & "]", DllStructGetPtr($tChar))

    DllStructSetData($tChar, 1, $sString)

    Return DllStructGetData($tByte, 1)
EndFunc
Edited by Tekk

Share this post


Link to post
Share on other sites
ViciousXUSMC

Managed to come up with my own solution, very crude but very simple :)

I am sure it can be tightened up to be cleaner and still use this same technique

This wont help me get past the fact normal users do not have admin access to the registry so I will have to see if there is a way to make a .REG file out of my result and also still further yet need a simple check to see if the machine in 32bit or 64bit since they use different HKLM directories for software.

Looking forward to see what you guys can add.

;Name to REG Binary Test
;496 Zeros

$part1 = StringtoBinary(@ComputerName)
$part2 = "000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000" & _
"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000" & _
"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000" & _
"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000" & _
"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000" & _
"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000" & _
"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000" & _
"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"

$final = $part1 & $part2

$result = StringLeft($final, 496)
MsgBox(0, "", $result)

RegWrite("HKLM\Software\TOSHIBA", "Test", "REG_BINARY", $result)
Edited by ViciousXUSMC

Share this post


Link to post
Share on other sites
Tekk

Not sure this is what you're after but...

#include <FileConstants.au3>

Global $g_dData = StringToBinaryFixed(@ComputerName, 247)

$g_dData = StringTrimLeft($g_dData, 2)
$g_dData = StringRegExpReplace($g_dData, "[0-9A-F]{2}", "\0,")
$g_dData = StringTrimRight($g_dData, 1)
$g_dData = StringLower($g_dData)

Global $g_sHive

If (@OSArch == "X86") Then
    $g_sHive = "HKEY_LOCAL_MACHINE\SOFTWARE\Toshiba"
Else
    $g_sHive = "HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Toshiba"
EndIf

Global $g_sValue = "Test"

Global $g_sFileText = StringFormat('Windows Registry Editor Version 5.00\n\n[%s]\n"%s"=hex:%s', $g_sHive, $g_sValue, $g_dData)

Global $g_hFile = FileOpen(@DesktopDir & "\RegKey.reg", $FO_OVERWRITE + $FO_CREATEPATH) ;~ Create .reg file on desktop.
FileWrite($g_hFile, $g_sFileText)
FileClose($g_hFile)

Func StringToBinaryFixed($sString, $iLength)
    Local $tChar = DllStructCreate("CHAR[" & $iLength & "]")
    Local $tByte = DllStructCreate("BYTE[" & $iLength & "]", DllStructGetPtr($tChar))

    DllStructSetData($tChar, 1, $sString)

    Return DllStructGetData($tByte, 1)
EndFunc

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  

  • Similar Content

    • DynamicRookie
      By DynamicRookie
      Hey there!
       
      Is there a way to detect movement only for 1 specific window?

      HWnd is not really working, it still detects movement in all the windows within the region

      This is my script:
       
      ;Checksum actual HotKeySet("{f2}", 'exit_') MsgBox(0, '', '0') Beep(500, 2000) $Hwnd = WinActive('') while 1 $Checksum = PixelChecksum(211, 650, 1094, 914, 1, $Hwnd) If PixelChecksum(211, 650, 1094, 914, 1, $Hwnd) <> $Checksum Then For $i = 1 To 100 Beep(1000, 50) Next MsgBox(0, '', 'New message!', 1) EndIf WEnd Func exit_() Beep(500, 1000) Exit 0 EndFunc I just want to check whenever a message comes because the app i use doesn't give notifications properly.

      Any help is really appreciated!
    • PramodR
      By PramodR
      Can you please see whats wrong im doing in the below code? i can read few registry entry but not all for eg, i am able to get value of "Shell" Key from the registry path  but not AutoAdminLogon which has the value of "1", is there any change i have to do to read numeric values?
       Global  $shello = RegRead ("HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon","Shell" )
       ConsoleWrite("This is Hello"& $shello)
      above command returns proper value , but same command with AutoAdminLogon returns null as shown in below ? infact registry has the value of 1.
       Global  $shello = RegRead ("HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon","AutoAdminLogon" )
       ConsoleWrite("This is Hello"& $shello)
    • Eminence
      By Eminence
      Hello,
      I've been searching on how to select the first row in my database which includes a time column based on the latest start_time date for today's date.
      This is my current code:
      Local $iCurrentDate = _Now() Local $sqlHandle = _dbOpen($sDbPath) Local $aResult, $iRows, $iCols _SQLite_GetTable2d($sqlHandle, "SELECT start_time FROM " & $srawDb & " ORDER BY datetime(start_time) DESC LIMIT 1", $aResult, $iRows, $iCols) _ArrayDisplay($aResult) _dbClose($sDbpath) What it does is it gets the first row entry in the database however it does not select the latest start_time entry in the database, it always select the first row. I've tried changing DESC to ASC to see if that will do it but the issue still remains. Any thoughts on this? Thanks in advance.
       
      *EDIT
      The date format in the database is by MM/DD/YYYY HH:MM:SS.
    • Trisha
      By Trisha
      Hello,
      I Have clicked on save as option to save a file, while doing that I need to rename a file appending with sysdate. I have searched in google find the below one line of code:
      FileMove("C:\somefile.txt", "C:\somefile1.txt"), When I am trying to append with sysdate. It is not happening. Please help me out  with the small issue.
    • TrashBoat
      By TrashBoat
      hey i would like to know if its possible to take a string like this
      $string = "onethousandninehundredeightyfive" and convert it into:
      $string = "one thousand nine hundred eighty five" i have something going on here but its no use
      $string = "onethousandninehundredeightyfive" Global $array[9] = ['one', 'two', 'three', 'four', 'five', 'six', 'seven', 'eight', 'nine'] Global $array1[19] = ['onethousand', 'twothousand', 'threethousand', 'fourthousand', 'fivethousand', 'sixthousand', 'seventhousand', 'eightthousand', 'ninethousand','tenthousand','hundred', 'twohundred', 'threehundred', 'fourhundred', 'fivehundred', 'sixhundred', 'sevenhundred', 'eighthundred', 'ninehundred'] MsgBox(0, 0, AddSpaces($string)) Func AddSpaces($string) Local $finalStr $length = StringLen($string) For $x = 0 To $length Local $trim = StringTrimRight($string, $x) For $h = 0 To 18 If $trim = $array1[$h] Then $finalStr = $finalStr & " " & $trim $string = StringTrimLeft($string, $h) $length = StringLen($string) EndIf Next For $z = 0 To 8 If $trim = $array[$z] Then $finalStr = $finalStr & " " & $trim $string = StringTrimLeft($string, $z) $length = StringLen($string) EndIf Next Next Return $finalStr EndFunc ;==>AddSpaces  
×

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.