Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
[MSDN-ANSI] Microsoft Corporation, "Unicode and Character Sets", http://msdn.microsoft.com/en-us/library/dd374083.aspx
[MSDN-CH] Microsoft Corporation, "Context Handles", http://msdn.microsoft.com/en-us/library/aa373605(VS.85).aspx
[MSDN-CNVTSTRGSDTSD] Microsoft Corporation, "ConvertStringSecurityDescriptorToSecurityDescriptor function", http://msdn.microsoft.com/en-us/library/aa376401(VS.85).aspx
[MSDN-ConvertStringSidToSid] Microsoft Corporation, "ConvertStringSidToSid function", http://msdn.microsoft.com/en-us/library/aa376402(v=VS.85).aspx
[MSDN-EVENTS] Microsoft Corporation, "Event Schema", http://msdn.microsoft.com/en-us/library/aa385201.aspx
[MSDN-IsValidSid] Microsoft Corporation, "IsValidSid function", http://msdn.microsoft.com/en-us/library/aa379151(VS.85).aspx
[MSDN-PreciseSysTme] Microsoft Corporation, "GetSystemTimePreciseAsFileTime function", https://msdn.microsoft.com/en-us/library/windows/desktop/hh706895(v=vs.85).aspx
[MSDN-TRANS] Microsoft Corporation, "Translation Between String Types", http://msdn.microsoft.com/en-us/library/ms776433.aspx
[MSFT-CVE-2021-31958] Microsoft Corporation, "Windows NTLM Elevation of Privilege Vulnerability", CVE-2021-31958, June 8, 2021, https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-31958
[PE-COFF] Microsoft Corporation, "Microsoft Portable Executable and Common Object File Format Specification", May2006, https://github.com/tpn/pdfs/blob/master/Microsoft%20Portable%20Executable%20and%20Common%20Object%20File%20Format%20Specification%20-%201999%20(pecoff).pdf