commands Archives

Winsage

February 11, 2026

Patch Tuesday, February 2026 Edition

Microsoft has released updates addressing over 50 vulnerabilities in its Windows operating systems and applications, including six critical zero-day vulnerabilities. 1. CVE-2026-21510: A security feature bypass in Windows Shell that allows execution of malicious content via a single click on a link, affecting all supported Windows versions. 2. CVE-2026-21513: Targets MSHTML, the web browser engine in Windows. 3. CVE-2026-21514: A security feature bypass in Microsoft Word. 4. CVE-2026-21533: Allows local attackers to gain SYSTEM level access in Windows Remote Desktop Services. 5. CVE-2026-21519: An elevation of privilege flaw in the Desktop Window Manager (DWM). 6. CVE-2026-21525: A potential denial-of-service threat in the Windows Remote Access Connection Manager. Additionally, the updates include fixes for remote code execution vulnerabilities affecting GitHub Copilot and various IDEs, specifically CVE-2026-21516, CVE-2026-21523, and CVE-2026-21256, which arise from a command injection flaw. Security experts emphasize the importance of safeguarding developers due to their access to sensitive data and recommend applying least-privilege principles.

Winsage

February 11, 2026

The Windows 98 Toaster is Here

YouTuber Throaty Mumbo successfully ran Windows 98 on a smart toaster by disassembling the Revolution Cooking High-Speed Smart Toaster and using a Raspberry Pi 5 to emulate a late-1990s Pentium II PC. He created a custom program called “toast.exe” to facilitate communication between the Windows 98 interface and the toaster's hardware. The project resulted in a functional system that allows users to operate the toaster through a retro Windows 98 environment, complete with a 7-inch HDMI monitor and a 3D-printed shell designed to resemble a classic PC.

Winsage

February 10, 2026

Did you know that Windows 11 has a secret restart method? Here’s how to access it

The Emergency Restart method for Windows 11 can be initiated by pressing CTRL + ALT + DEL and holding the CTRL key while clicking the power button in the bottom-right corner of the screen. This prompts a warning message about the impending restart, stating that any unsaved data will be lost. It is designed as a last resort for unresponsive systems and serves as an alternative to a hard reset. Users can utilize this method without significant drawbacks, and it has been successfully used on various devices. An alternative way to restart is through the Command Prompt by typing shutdown /r.

Tech Optimizer

January 29, 2026

Top antivirus hacked to push out a malicious update – find out if you’re affected

Recent reports indicate that the antivirus program eScan experienced a security breach, leading MicroWorld Technologies to conduct an internal investigation. A threat actor exploited compromised update servers to distribute malware to users who downloaded updates during a two-hour window on January 20, 2026. The exact number of affected users is unknown, but the company has isolated the compromised infrastructure and refreshed credentials while assisting impacted users. The eScan product itself was not altered, and the victims were limited to a specific regional cluster. The malware, identified as CONSCTLX, operates as a backdoor and downloader, allowing attackers to maintain access and execute commands on infected devices. The identity of the attackers is unknown, but North Korean cybercriminals previously exploited eScan's update mechanism in 2024. MicroWorld Technologies has provided support to millions of customers but has not disclosed the total number of eScan users.

Winsage

January 29, 2026

Swarmer Tool Evading EDR With a Stealthy Modification on Windows Registry for Persistence

Praetorian Inc. has launched Swarmer, a tool that enables low-privilege attackers to maintain stealthy persistence in the Windows registry while avoiding detection by Endpoint Detection and Response (EDR) systems. Swarmer uses mandatory user profiles and the Offline Registry API to modify the NTUSER hive without triggering standard registry hooks. It operates by creating an NTUSER.MAN file that replaces the NTUSER.DAT hive upon user login, allowing low-privilege users to manipulate registry settings without alerting EDR tools. Swarmer employs functions from Microsoft’s Offline Registry Library, enabling it to perform operations without invoking Reg* API calls, thus evading detection mechanisms. Swarmer's workflow involves exporting the HKCU registry, modifying it, and executing the tool with specific commands to place the modified NTUSER.MAN file into the user profile. It can be used as an executable or a PowerShell module. While it presents a novel method for persistence, Swarmer has limitations, such as being unable to update without admin access and requiring user login to activate. Detection strategies include monitoring for NTUSER.MAN file creation and Offreg.dll usage in non-standard processes.

Winsage

January 27, 2026

Microsoft previews command-line tool created because calling modern Windows APIs is too difficult

Microsoft has introduced a new command-line tool called winapp to simplify developer interactions with modern Windows APIs. This tool aims to address the challenges developers face when integrating with contemporary Windows programming interfaces by providing a more accessible command-line interface. Winapp is designed to streamline various tasks, allowing developers to execute commands without extensive coding knowledge, thereby enhancing productivity and encouraging broader engagement in Windows development. Key features include a user-friendly interface, reduced complexity of API calls, and community-driven development for continuous improvement.

Winsage

January 26, 2026

We’re talking about the best of Windows 11, and we want your input.

Expressions of affection for Windows are common, and while the author acknowledges some shortcomings in Windows 11, it remains an essential tool for productivity, creativity, and communication. Qualcomm's Snapdragon X2 Plus platform is expected to indicate a significant transition toward Arm-based Windows devices. The Microsoft Store has become a reliable platform for discovering and downloading applications on Windows. Recent enhancements in Windows 11 have improved the experience for handheld gaming PCs. The Windows Package Manager, or winget, is highly regarded, and PowerToys is recommended as essential for Windows 11 users. The Command Palette allows users to launch applications using the keyboard and execute commands. The Windows Subsystem for Linux (WSL) provides a genuine Linux experience within Windows 11. Phone Link facilitates effortless photo transfers. The 12-inch Surface LCD is slightly thinner than the Surface Pro 11. The Windows Central community is engaged in discussions about the standout features of Windows 11.

Winsage

January 26, 2026

Windows Terminal Preview 1.24 Fixes Paste Hangs, IME Bugs

Microsoft released Windows Terminal Preview version 1.24.10212.0 on January 24, aimed at fixing bugs and improving stability before the upcoming stable release, version 1.25. Key updates include: - Caption buttons now dim when the terminal window loses focus, aiding users in identifying the active window. - Custom themes' background colors are no longer overridden by transparency effects. - Compatibility with Chinese and Japanese Input Method Editors (IMEs) has been restored, enhancing usability for international users. - Security improvements have been made to reduce vulnerabilities, particularly against use-after-free bugs. - Stability fixes address crash scenarios, including issues during startup and when pasting large text blocks. - The distribution package has been simplified by removing the outdated TerminalAzBridge executable.

AppWizard

January 21, 2026

Hytale and Minecraft Get Crossplay Capability Thanks to Intrepid Modder

The newly-released sandbox adventure game Hytale originated from a Minecraft mod called Hypixel. A modder known as u/ssquadteam (iamcxv7) has developed a method for crossplay between Minecraft and Hytale, allowing players to build, chat, and engage in combat together. This innovation involves running a Minecraft server within the Hytale JVM, using Hytale's coordinate system to reconstruct the game world. The mod is currently unstable and not publicly available, with ongoing development needed for certain features. Hytale's co-founder, Simon Collins-Laflamme, noted that the game has generated enough revenue to fund the next two years of development.

Winsage

January 20, 2026

I raced to my PC to install this new PowerToys update — but its best new feature is one control away from greatness

Microsoft's PowerToys has released version 0.97, enhancing the Windows 11 experience with a new utility and significant updates to the Command Palette. The Command Palette now features a Personalization page for customizing its interface, including background images and color tinting. It also includes fallback ranking for search results, allowing users to manage command order through drag-and-drop. A new extension enables control of PowerToys features directly from the Command Palette, and the Peek feature allows file and folder previews. Additional updates include support for Pinyin, a Remote Desktop extension, custom search engine selection, and drag-and-drop support for File Indexer and Clipboard History. The new CursorWrap feature allows seamless mouse movement across multiple monitors. The Quick Access flyout has been optimized for faster launch times and can be customized or disabled. PowerToys now offers expanded CLI support for utilities like FancyZones and Image Resizer. Other changes include the Light Switch feature following the Night Light setting, a revamped "What's new" dialog, and improvements to the Advanced Paste feature. CursorWrap shows promise but has minor bugs and user requests for further refinements.