One of my earliest programming professors recommended keeping a text editor open to quickly copy and paste notes, code snippets, debug tests/results, etc. as a kind of poor man’s OneNote. He called this a crutch. This page simply provides me an easy way to organize and share links or anything else I find useful.
Facts and myths about antivirus evasion with Metasploit
OWASP Top 10
Table 4-2. Common Procmon Result Codes and Their Meanings
| Result Code |
Description |
| SUCCESS |
The operation succeeded. |
| ACCESS DENIED |
The operation failed because the security descriptor on the object does not grant the rights to the caller that the caller requested. The failure might also be the result of a file being marked as read-only. This result code is frequently a red flag when troubleshooting. |
| SHARING VIOLATION |
The operation failed because the object is already opened and does not allow the sharing mode that the caller requested. |
| NAME COLLISION |
The caller tried to create an object that already exists. |
| NAME NOT FOUNDPATH NOT FOUNDNO SUCH FILE |
The caller tried to open an object that doesn’t exist. One scenario in which these result codes can arise is when a DLL load routine looks in various directories as part of the DLL search process. |
| NAME INVALID |
The caller requested an object with an invalid name—for example, C:\Windows\“regedit.exe”. |
| NO MORE ENTRIES NO MORE FILES |
The caller has finished enumerating the contents of a folder or registry key. |
| END OF FILE |
The caller has read to the end of a file. |
| BUFFER TOO SMALL |
Essentially the same as BUFFER OVERFLOW. It’s rarely significant when troubleshooting. |
| REPARSE |
The caller has requested an object that links to another object. For example, HKLM\System\CurrentControlSet might redirect to HKLM\System\ControlSet001. |
| NOT REPARSE POINT |
The requested object does not link to another object. |
| FAST IO DISALLOWED |
Indicates that a low-level optimized mechanism is not available for the requested file system object. It’s rarely significant in troubleshooting. |
| FILE LOCKED WITH ONLY READERS |
Indicates that a file or file mapping was locked and that all users of the file can only read from it. |
| FILE LOCKED WITH WRITERS |
Indicates that a file or file mapping was locked and that at least one user of the file can write to it. |
| IS DIRECTORY |
The requested object is a file system folder. |
| INVALID DEVICE REQUEST |
The specified request is not a valid operation for the target device. |
| INVALID PARAMETER |
An invalid parameter was passed to a service or function. |
| NOT GRANTED |
A requested file lock cannot be granted because of other existing locks. |
| CANCELLED |
An I/O request was canceled—for example, the monitoring of a file system folder for changes. |
| BAD NETWORK PATH |
The network path cannot be located. |
| BAD NETWORK NAME |
The specified share name cannot be found on the remote server. |
| MEDIA WRITE PROTECTED |
The disk cannot be written to because it is write-protected. |
| KEY DELETED |
Illegal operation attempted on a registry key that has been marked for deletion. |
| NOT IMPLEMENTED |
The requested operation is not implemented. |
Reference: Windows® Sysinternals Administrator’s Reference, p. 106
