Added showcase

0xda568 · Oct 21, 2023 · b8e4cf2 · b8e4cf2
1 parent 71975da
commit b8e4cf2
Show file tree

Hide file tree

Showing 2 changed files with 9 additions and 1 deletion.
diff --git a/README.md b/README.md
@@ -5,7 +5,15 @@ Open source alternative to the Universal Watermark Remover.
 This is a sequel to my [Universal Watermark Remover reverse engineering writeup](/~https://github.com/0xda568/Universal-Watermark-Disabler-Reverse-Engineering). I analyzed the closed source-software and developed my own opensource version of it, which you can find here.
 
 # How does it work?
-The batch script utilizes [COM-hijacking](https://www.ired.team/offensive-security/persistence/t1122-com-hijacking) to inject a DLL into the explorer and to persist on the system. The DLL, then hooks [ExtTextOutW](https://learn.microsoft.com/en-us/windows/win32/api/wingdi/nf-wingdi-exttextouta) to suppress the display of the testsigning watermark.
+The batch script utilizes [COM-hijacking](https://www.ired.team/offensive-security/persistence/t1122-com-hijacking) and [DLL-Proxying](https://www.ired.team/offensive-security/persistence/dll-proxying-for-persistence) to inject a DLL into the explorer and to persist on the system. The DLL, then hooks [ExtTextOutW](https://learn.microsoft.com/en-us/windows/win32/api/wingdi/nf-wingdi-exttextouta) to suppress the display of the testsigning watermark.
+
+For a deeper dive (especially for beginners), take a look at my reverse-engineering writeup.
+
+# Showcase
+![showcase](assets/uwd-oss_showcase.gif)
+
+# Info
+Since the script modifies the registry, Admin privileges are needed.
 
 # Compability
 Tested on Windows 10 x64. Should also work on Windows 11, x64.
diff --git a/assets/uwd-oss_showcase.gif b/assets/uwd-oss_showcase.gif