scripting Archives

Winsage

June 14, 2025

6 registry tweaks every tech-savvy user must apply on Windows 11

Windows 11 provides customization tools such as the Settings app, Control Panel, and Group Policy Editor, but advanced users often utilize the Registry Editor for deeper control. Key Registry tweaks include: 1. Disable the Home page in Settings: Modify the Registry to revert the Settings app to open directly to the "System" section instead of the "Home" page by creating a string value named SettingsPageVisibility and setting it to hide:home. 2. Disable automatic Windows Update: Prevent automatic downloads and installations by creating a key named WindowsUpdate under Policies, then a subkey AU, and a DWORD value NoAutoUpdate set to 1. 3. Disable the Lock Screen experience: Expedite the sign-in process by creating a key named Personalization and a DWORD value Nolockscreen set to 1. 4. Enable automatic Registry backup: Restore automatic Registry backups by creating a DWORD value EnablePeriodicBackup set to 1 and scheduling a task to run daily for backup. Editing the Registry carries risks, and it is advised to back up the PC before making changes.

Winsage

June 11, 2025

Microsoft warns of 66 flaws to fix for this Patch Tuesday

Microsoft has announced a significant update addressing 66 vulnerabilities, including a zero-day vulnerability disclosed on the same day. Ten critical patches have been identified, with two currently being exploited. Microsoft is also patching older platforms like Windows Server 2008 and Internet Explorer. One critical vulnerability, CVE-2025-33053, has been exploited by the Stealth Falcon hacking group since March, allowing remote code execution via the WebDAV extension. Another critical vulnerability, CVE-2025-5419, affects the Chromium V8 JavaScript engine in Microsoft Edge. CVE-2025-33073 is an escalation of privilege vulnerability in the Windows SMB Client, with a CVSS score of 8.8. Four critical vulnerabilities in Microsoft Office include CVE-2025-47162, CVE-2025-47164, CVE-2025-47167, and CVE-2025-47953. Four critical remote code execution vulnerabilities include CVE-2025-47172, CVE-2025-29828, CVE-2025-32710, and CVE-2025-33071. Two elevation-of-privilege flaws are CVE-2025-47966 and CVE-2025-33070. Adobe has prioritized fixes for Adobe Commerce and Adobe's Experience Manager, addressing 254 CVEs. Adobe Acrobat users will receive ten fixes, including four critical ones. Fortinet has patched CVE-2023-42788 in FortiAnalyzer 7.4. SAP resolved 14 issues, with CVE-2025-42989 being the only critical patch, associated with the NetWeaver Application Server and a CVSS score of 9.6.

AppWizard

June 5, 2025

MVRDV’s ‘Out of the Box’ Project Looks Like a Building Pulled Straight from Minecraft

A new residential tower named Out of the Box, designed by Dutch architecture firm MVRDV, is being built in Taipei’s Tianmu neighborhood. The 25-story structure reaches a height of 250 feet and features a dynamic facade with box-like protrusions that create additional living spaces such as balconies and terraces. MVRDV utilized digital scripting to navigate Taiwan’s building regulations, allowing for a balance of sunlight and privacy. The design includes a small number of repeating apartment types with variations due to the protruding boxes. The tower aims to foster community by providing private outdoor spaces in a humid subtropical climate. It is clad in marble, enhancing its sophisticated appearance while integrating with planned greenery to create a vertical garden.

Winsage

May 14, 2025

Microsoft’s ‘Patch Tuesday’ Update Fixes Seven Zero-Day Exploits

Microsoft's latest Patch Tuesday update addresses 72 security vulnerabilities, including five critical zero-day vulnerabilities. Four of these zero-days are elevation of privilege flaws: - CVE-2025-32701 and CVE-2025-32706 target the Windows Common Log File System Driver. - CVE-2025-30400 affects the Microsoft DWM Core Library. - CVE-2025-32709 involves the Windows Ancillary Function Driver for WinSock. These vulnerabilities allow attackers to gain SYSTEM privileges locally. The fifth zero-day, CVE-2025-30397, is a remote code execution vulnerability in the Microsoft Scripting Engine, which can be exploited through malicious links in Microsoft Edge or Internet Explorer. CVE-2025-30397, CVE-2025-32701, and CVE-2025-30400 were discovered by the Microsoft Threat Intelligence Center, while CVE-2025-32706 was disclosed by the Google Threat Intelligence Group and CrowdStrike, and CVE-2025-32709 was reported by an anonymous researcher. Additionally, a publicly disclosed spoofing flaw in Microsoft Defender, CVE-2025-26685, allows unauthenticated attackers with local network access to impersonate another account. The final zero-day, CVE-2025-32702, is a remote code execution vulnerability in Visual Studio.

Winsage

May 14, 2025

Microsoft Confirms Windows Is Under Attack — You Must Act Now

Microsoft has confirmed multiple zero-day vulnerabilities being actively targeted by malicious actors. One significant vulnerability is CVE-2025-30397, a memory corruption flaw in the Windows scripting engine that affects all versions of Windows and allows code execution over the network. It has a CVSS score of 7.8 and is considered critical. Successful exploitation requires the target to use Edge in Internet Explorer Mode and for the user to click a malicious link. Other vulnerabilities include: - CVE-2025-32709: An elevation of privilege vulnerability in the Windows ancillary function driver for WinSock, affecting Windows Server 12 and later. - CVE-2025-32701 and CVE-2025-32706: Vulnerabilities in the Windows Common Log File Driver System that could allow local attackers to gain system privileges, affecting all versions of Windows. - CVE-2025-30400: An elevation of privilege vulnerability in the Windows desktop window manager, affecting Windows 10, Server 2016, and later OS versions. Windows users are urged to update their systems with the latest security patches immediately.

Winsage

May 14, 2025

Patch Tuesday for May: Five zero day vulnerabilities CISOs should focus on

A vulnerability identified as CVE-2025-30397 can be exploited when Microsoft Edge is in “Internet Explorer” mode, which is typically not the default setting but may be necessary for certain users. Another vulnerability, CVE-2025-29831, can only be exploited during a restart of the Remote Desktop Protocol (RDP) service. SAP has released 18 Security Notes to address various vulnerabilities, including critical authorization issues, remote code execution, information disclosure, and cross-site scripting.

Winsage

May 14, 2025

Microsoft Scripting Engine 0-Day Vulnerability Enables Remote Code Execution Over Network

Microsoft has identified a memory corruption vulnerability in its Scripting Engine, designated as CVE-2025-30397. This vulnerability allows unauthorized remote code execution and is classified as “Important” under CWE-843 (Type Confusion). It was disclosed in the May 2025 Patch Tuesday updates and arises from improper handling of resource types. Exploitation occurs when a user clicks a specially crafted URL in Microsoft Edge's Internet Explorer Mode, potentially compromising system confidentiality, integrity, and availability. Although the attack complexity is high, successful exploitation has been confirmed in the wild. Microsoft has issued patches for all supported Windows versions, and users are advised to apply these updates and consider disabling Internet Explorer Mode to reduce risk.

Winsage

May 6, 2025

I used Sophia Script to take back control of Windows 11, and I wish I did it sooner

Sophia Script is a PowerShell module available on GitHub that simplifies the process of adjusting Windows settings through the command line interface (CLI), offering over 150 regularly updated functions. It provides GUI-based options for managing tasks like telemetry settings, scheduling tasks, and uninstalling OneDrive, allowing users to select multiple tasks at once. The setup process involves opening the main PS1 file in Notepad++, changing the directory, and executing a command from GitHub, with comprehensive instructions available. Users can customize settings by adding or replacing code with a hashtag next to the script they wish to run, and it allows changes to be applied across all user accounts. Sophia Script is particularly useful for configuring new PCs or fresh installations, as it helps remove unnecessary bloatware and streamline system performance. It can uninstall Microsoft apps, including the Windows Copilot app, and has created five scheduled tasks after running, saving time compared to traditional methods. The creator, Farag2, is also developing a GUI version, SophiApp 2.0.

Winsage

April 18, 2025

XYplorer is the best dual-pane file manager that I’ve used on Windows

XYplorer is a dual-pane file manager that enhances productivity with its intuitive interface and robust features, allowing simultaneous access to two folders for easier file management. It offers customization options, advanced search capabilities, file previews, batch renaming, and scripting automation. XYplorer is lightweight, providing faster performance and quicker search results compared to Windows File Explorer. It also has a portable version that can run from a flash drive without installation. XYplorer operates as trialware for 30 days, after which users can purchase a license.

Winsage

April 6, 2025

5 best dual-pane file managers for Windows power users

The default Windows File Explorer lacks multi-pane support, making file management cumbersome for users who frequently transfer files between folders or manage multiple drives. Dual-pane or multi-pane third-party file managers offer solutions by allowing users to view and manage multiple folders side by side within a single window. Total Commander is a veteran dual-pane file manager with built-in FTP support, fast file transfers, and comprehensive archive handling. Directory Opus is a premium file management solution with a dual-pane layout, tabbed navigation, and features like batch file operations and scripting capabilities. FreeCommander XE is a free dual-pane file manager that offers essential features such as tabbed browsing and folder synchronization. XYplorer is a portable dual-pane file manager designed for speed, featuring tabbed browsing and powerful search functions. Q-Dir, or Quad-Directory Explorer, allows for up to four panes in a single window and supports drag-and-drop functionality and color filters.