Grzegorz Tworek - ex-MVP^18

  • Home
  • About
  • Blog
  • ProClub Membership
  • Windows Internals
  • Windows Forensics

Latest

Accessing files with no access

Just to make it clear, this time I will address only one “no access” scenario you probably know: the process cannot access the file because it is being used by another process. Something I have referred to in my “Locker” message couple of weeks ago. If you didn’t play
Grzegorz Tworek 10 Aug 2025

Impersonating

Grzegorz Tworek 10 Aug 2025

MOVEFILE_DELAY_UNTIL_REBOOT

Grzegorz Tworek 10 Aug 2025

Program Information File

Grzegorz Tworek 10 Aug 2025

Disabling remote access to Windows Services

Grzegorz Tworek 10 Aug 2025

Locker

Grzegorz Tworek 10 Aug 2025

RDP Cache

Grzegorz Tworek 10 Aug 2025
Show more

News

Program Information File

Security professionals do not trust Windows Explorer when it comes to the drive content. And for a reason. Since Windows 95, Explorer was designed to be a GUI and/or Shell, not a tool for browsing files and folders. There are many reasons why the folder content in the Explorer
Grzegorz Tworek 04 Aug 2025
Show more
  • X
  • Github
  • LinkedIn
  • YouTube
  • Email
¯\_(ツ)_/¯ [©] Copyright 2025 GT