Access Hidden Registry Keys?
It doesn't appear that I can get access to hidden registry keys using the built-in Registry functions. Is this true? If so, is there another way?
-Steve.
Archive: Access Hidden Registry Keys?
Access Hidden Registry Keys?
It doesn't appear that I can get access to hidden registry keys using the built-in Registry functions. Is this true? If so, is there another way?
-Steve.
Thanks for the link! It is helpful. However, I would like to add/remove hidden registry keys with NSIS. Is there a way to access the registry without using WindowsAPI (The System plugin, perhaps?)?
Have you tried the registry plugin?
http://nsis.sourceforge.net/Registry_plug-in
Red Wine - plugin cant do this cause it only uses the API
which cannot handle direkt read/write to registry.
Exactly :(
normally that shit is used for copy protection or avoiding change of serial numbers. i dont use any software with it - in case of it gets kicked immediately.
Use the System plug-in to call NtCreateKey and friends.
Give me sample source please
Originally posted by kichikCan anybody shows or shares a sample a part of source how to do this ?
Use the System plug-in to call NtCreateKey and friends.
This won't be that easy, because Nt/ZwCreateKey needs a pointer to a OBJECT_ATTRIBUTES structure.
Might be easier to write a simple plug-in for that purpose...
Using structs with the system plugin is possible, but anyone can just set a breakpoint on System::Call and watch your calls as plain strings so you are not going to hide anything from people by using NSIS...