http://www.ignition-project.com/articles/2008/09/19/lockdown-browsers-are-fun en-us 40 Open Source Collaboration Solutions <p style="text-align: center;"> <img src="http://www.ignition-project.com/files/lockdown_browser_hacked.jpg" alt="Lockdown Browser Hacked" style="width: 400px;" /> </p> <p>(code is past the break)</p> <div class="typocode"><pre><code class="typocode_default "># Need: Ruby, this browser, # and SysInternals Process Explorer # Start Process Explorer, configure for always on # top and only allow single instance, close it. require 'win32ole' BROWSER_PATH = &quot;&quot; PROCEXP_PATH = &quot;&quot; puts &quot;Starting the lockdown browser&quot; shell = WIN32OLE.new('Shell.Application') shell.ShellExecute(BROWSER_PATH, '', '', 'open', '1') puts &quot;Giving the lockdown browser time to breathe...&quot; sleep 10 puts &quot;=&gt; Ctrl-C to stop &lt;=&quot; while true do shell = WIN32OLE.new('Shell.Application') shell.ShellExecute(PROCEXP_PATH, '', '', 'open', '1') sleep 20 end</code></pre></div> <p>I&#8217;m posting this because that browser frustrates me. I have to boot into Windows to use it. This makes me feel better about having to use it. Cheating or doing anything that might get you or me in trouble is a bad idea.</p> <p>Plus, if you can figure out this program, you probably feel my pain :)</p> Fri, 19 Sep 2008 20:16:00 -0500 urn:uuid:13d0ea2b-b9a9-4a15-b232-54e8fd92518b Keith Gable http://www.ignition-project.com/articles/2008/09/19/lockdown-browsers-are-fun Hacks SecurityThroughObscurity morons annoyance <p>I posted the sourcecode. Save it into a file, say, <code>C:\unlockdown.rb</code>, using notepad. Then set up a shortcut to point at your Ruby installation like so:</p> <p><code>C:\ruby\bin\ruby.exe C:\unlockdown.rb</code></p> <p>Installing the Ruby programming language or knowing how to create shortcuts can be found by using <a href="http://www.google.com/" rel="nofollow">Google</a>.</p> <p>You&#8217;ll of course need to go to the <a href="http://www.sysinternals.com/" rel="nofollow">Sysinternals</a> site and download Process Explorer (ProcExp), and you&#8217;ll need to edit the source I posted and put the correct path to the lockdown browser and Process Explorer.</p> <p>Additionally, the testing interface does something weird that prevents this attack from working, but I have noticed that &#8220;toasts&#8221; from Steam still work, and clicking them does bring up a chat window. Now, alt-tabbing doesn&#8217;t work though.</p> <p>Here&#8217;s some ideas to improve this:</p> <ol> <li>Figure out the hWnd of the lockdown browser (can already get the hWnd of the IE window it spawns)</li> <li>Using the hWnd, unset the window flags every so often so windows can be dragged around. Turn on the minimize/maximize/restore controls.</li> <li>Reset the policies it changes.</li> </ol> Tue, 04 Nov 2008 13:47:23 -0600 urn:uuid:74b0af9d-cf32-49a3-91c0-4283c9a83481 http://www.ignition-project.com/articles/2008/09/19/lockdown-browsers-are-fun#comment-1650 <p>hey can you help me out. im trying to get around this respondus lockdown and i would love to have access to paint. do you have the exe?</p> <p>thanks.</p> Sun, 26 Oct 2008 00:23:03 -0500 urn:uuid:9b1a4989-ae0a-4b58-a77d-ed7859150a65 http://www.ignition-project.com/articles/2008/09/19/lockdown-browsers-are-fun#comment-1649