 |
|
sairen139 发表于 2023-9-16 15:10 有些mini骨头版pe需要hid.dll才能成功运行dwm |
sairen139 发表于 2023-9-16 15:10 @echo off set "tempfile=%TEMP%\%~n0.tmp" set "partition=%~1" for %%D in ("%~1") do set "DriveLetter=%%~dD" vol %DriveLetter% > "%tempfile%" 2>&1 find /i /c:"Bitlocker" "%tempfile%" >nul if %errorlevel% equ 0 %SystemRoot%\System32\bdeunlock.exe %1 del "%tempfile%" goto :EOF |
|
更简洁的,如下: @echo off set "partition=%~1" if /I "%partition%"=="A:\" ( goto :EOF ) else goto next :next If exist %1\* ( goto :EOF ) else %SystemRoot%\System32\bdeunlock.exe %1 goto :EOF |
|
加个判断,执行解锁,嘿嘿 @echo off set "partition=%~1" if /I "%partition%"=="A:\" ( goto :EOF ) else goto next :next If exist %1\boot ( goto :EOF ) else goto nnext :nnext If exist %1\autorun.inf ( goto :EOF ) else goto continue :continue If exist %1\Windows ( goto :EOF ) else goto dir :dir dir/ah %1 if %errorlevel% EQU 1 bdeunlock.exe %1 goto :EOF |
| 谢谢楼主的分享 |
sairen139 发表于 2023-9-19 15:40 这个很赞!收藏啦~ |
| 谢谢分享 |
| 谢谢分享 |
玄天Win11PE 对比了一下文件都有,注册表也合并成功,但还是会出现“系统找不到指定的文件”
|
本帖最后由 martin313 于 2023-9-19 15:56 编辑 sairen139 发表于 2023-9-19 15:40 很复杂 看晕了 巨硬的技术都被整明白了  |
本帖最后由 sairen139 于 2023-9-24 10:01 编辑 sairen139 发表于 2023-9-16 15:10 群友@ smine 提供的bitlocker相关依赖文件如下: ;基础文件 \Windows\System32\bdesvc.dll \Windows\System32\bdeui.dll \Windows\System32\bdeunlock.exe \Windows\System32\fveapi.dll \Windows\System32\fvecerts.dll \Windows\System32\fvenotify.exe \Windows\System32\fveui.dll \Windows\System32\StructuredQuery.dll \Windows\System32\Windows.Storage.Search.dll \Windows\System32\vssapi.dll \Windows\System32\vsstrace.dll ;删除会导致启用bitlocker报错 \Windows\System32\ReAgent.dll ; ;全功能补充 \Windows\System32\bdechangepin.exe \Windows\System32\BdeHdCfg.exe \Windows\System32\BdeHdCfgLib.dll \Windows\System32\bderepair.dll \Windows\System32\BdeSysprep.dll \Windows\System32\BdeUISrv.exe \Windows\System32\BitLockerCsp.dll \Windows\System32\BitLockerDeviceEncryption.exe \Windows\System32\BitLockerWizard.exe \Windows\System32\BitLockerWizardElev.exe \Windows\System32\EhStorAPI.dll \Windows\System32\EhStorAuthn.exe \Windows\System32\EhStorPwdMgr.dll \Windows\System32\EhStorShell.dll \Windows\System32\fveapibase.dll ;\Windows\System32\fvecpl.dll \Windows\System32\fveprompt.exe \Windows\System32\fveskybackup.dll \Windows\System32\fvewiz.dll ; ;命令行加密补充(manage-bde -on/off ...) \Windows\System32\manage-bde.exe \Windows\System32\repair-bde.exe \Windows\System32\shdocvw.dll \Windows\System32\swprv.dll ;解决加密时报错无法加载资源文件的问题, 微软的坑, 居然藏在en-US下, 害我一通好找!!! \Windows\System32\en-US\fveapi.dll.mui ; \Windows\System32\wbem\Win32_EncryptableVolume.dll \Windows\System32\wbem\win32_encryptablevolume.mof \Windows\System32\wbem\Win32_EncryptableVolumeUninstall.mof \Windows\System32\wbem\Win32_Tpm.dll \Windows\System32\wbem\Win32_Tpm.mof 注册表: SOFT\Classes\Drive\shell\unlock-bde SOFT\Classes\Drive\shell\encrypt-bde SOFT\Classes\Drive\shell\encrypt-bde-elev SYS\ControlSet001\Services\BDESVC 还有kuer版主提供的注册表和相关文件如下: Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Drive\shell\encrypt-bde-elev] "AppliesTo"="-" [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\FVE] "UseAdvancedStartup"=dword:00000001 "EnableBDEWithNoTPM"=dword:00000001 "UseTPM"=dword:00000002 "UseTPMPIN"=dword:00000002 "UseTPMKey"=dword:00000002 "UseTPMKeyPIN"=dword:00000002 右键更改 Bitlocker 密码 //[HKEY_LOCAL_MACHINE\SOFTWARE\Drive\shell\change-passphrase\command] //@=hex(2):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,00,74,00,25,\ 00,5c,00,53,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,42,00,69,00,\ 74,00,4c,00,6f,00,63,00,6b,00,65,00,72,00,57,00,69,00,7a,00,61,00,72,00,64,\ 00,2e,00,65,00,78,00,65,00,20,00,25,00,31,00,20,00,5a,00,00,00 控制面板Bitlocker 驱动器加密 [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{26ED43EA-45C6-4EF6-9E9B-1740366C98BE}] @="Secure Startup" "InfoTip"=hex(2):40,00,25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,\ 6f,00,74,00,25,00,5c,00,53,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,\ 00,66,00,76,00,65,00,63,00,70,00,6c,00,2e,00,64,00,6c,00,6c,00,2c,00,2d,00,\ 32,00,23,00,69,00,6d,00,6d,00,75,00,74,00,61,00,62,00,6c,00,65,00,31,00,00,\ 00 "LocalizedString"=hex(2):40,00,25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,\ 6f,00,6f,00,74,00,25,00,5c,00,53,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,\ 00,5c,00,66,00,76,00,65,00,63,00,70,00,6c,00,2e,00,64,00,6c,00,6c,00,2c,00,\ 2d,00,31,00,23,00,69,00,6d,00,6d,00,75,00,74,00,61,00,62,00,6c,00,65,00,31,\ 00,00,00 "System.ApplicationName"="Microsoft.BitLockerDriveEncryption" "System.ControlPanel.Category"="10" "System.ControlPanel.EnableInSafeMode"=dword:00000003 "System.Software.TasksFileUrl"="Internal" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{26ED43EA-45C6-4EF6-9E9B-1740366C98BE}\DefaultIcon] @=hex(2):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,00,74,00,25,\ 00,5c,00,53,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,66,00,76,00,\ 65,00,63,00,70,00,6c,00,2e,00,64,00,6c,00,6c,00,2c,00,2d,00,31,00,00,00 [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{26ED43EA-45C6-4EF6-9E9B-1740366C98BE}\InProcServer32] @=hex(2):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,00,74,00,25,\ 00,5c,00,73,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,73,00,68,00,\ 64,00,6f,00,63,00,76,00,77,00,2e,00,64,00,6c,00,6c,00,00,00 "ThreadingModel"="Apartment" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{26ED43EA-45C6-4EF6-9E9B-1740366C98BE}\Instance] "CLSID"="{328B0346-7EAF-4BBE-A479-7CB88A095F5B}" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{26ED43EA-45C6-4EF6-9E9B-1740366C98BE}\Instance\InitPropertyBag] "ResourceDLL"=hex(2):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,\ 00,74,00,25,00,5c,00,53,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,\ 66,00,76,00,65,00,63,00,70,00,6c,00,2e,00,64,00,6c,00,6c,00,00,00 "ResourceID"=dword:00000064 [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{26ED43EA-45C6-4EF6-9E9B-1740366C98BE}\Shell\Open\Command] @="control.exe /name Microsoft.BitLockerDriveEncryption /page ?InitialVolume==%1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{26ED43EA-45C6-4EF6-9E9B-1740366C98BE}\ShellFolder] "Attributes"=dword:28000000 "WantsParseDisplayName"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{26ED43EA-45C6-4EF6-9E9B-1740366C98BE}] @="Secure Startup" ;更改 BitLocker 密码 //[HKEY_LOCAL_MACHINE\SOFTWARE\Drive\shell\change-passphrase] //@=hex(2):40,00,25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,00,74,\ 00,25,00,5c,00,53,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,66,00,\ 76,00,65,00,77,00,69,00,7a,00,2e,00,64,00,6c,00,6c,00,2c,00,2d,00,39,00,37,\ 00,31,00,00,00 //"AppliesTo"="(System.Volume.BitLockerProtection:=System.Volume.BitLockerProtection#On OR System.Volume.BitLockerProtection:=System.Volume.BitLockerProtection#Encrypting OR System.Volume.BitLockerProtection:=System.Volume.BitLockerProtection#Suspended) AND System.Volume.BitLockerCanChangePassphraseByProxy:=System.StructuredQueryType.Boolean#True" //"MultiSelectModel"="Single" //[HKEY_LOCAL_MACHINE\SOFTWARE\Drive\shell\change-passphrase\command] //@=hex(2):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,00,74,00,25,\ 00,5c,00,53,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,62,00,64,00,\ 65,00,63,00,68,00,61,00,6e,00,67,00,65,00,70,00,69,00,6e,00,2e,00,65,00,78,\ 00,65,00,20,00,2d,00,70,00,77,00,20,00,25,00,31,00,00,00 ;管理BitLocker [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Drive\shell\manage-bde] @=hex(2):40,00,25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,00,74,\ 00,25,00,5c,00,53,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,66,00,\ 76,00,65,00,77,00,69,00,7a,00,2e,00,64,00,6c,00,6c,00,2c,00,2d,00,39,00,34,\ 00,39,00,00,00 "AppliesTo"="System.Volume.BitLockerProtection:=System.Volume.BitLockerProtection#On OR System.Volume.BitLockerProtection:=System.Volume.BitLockerProtection#Encrypting OR System.Volume.BitLockerProtection:=System.Volume.BitLockerProtection#Suspended" "MultiSelectModel"="Single" "HasLUAShield"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Drive\shell\manage-bde\command] @=hex(2):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,00,74,00,25,\ 00,5c,00,53,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,63,00,6f,00,\ 6e,00,74,00,72,00,6f,00,6c,00,2e,00,65,00,78,00,65,00,20,00,2f,00,6e,00,61,\ 00,6d,00,65,00,20,00,4d,00,69,00,63,00,72,00,6f,00,73,00,6f,00,66,00,74,00,\ 2e,00,42,00,69,00,74,00,4c,00,6f,00,63,00,6b,00,65,00,72,00,44,00,72,00,69,\ 00,76,00,65,00,45,00,6e,00,63,00,72,00,79,00,70,00,74,00,69,00,6f,00,6e,00,\ 20,00,2f,00,70,00,61,00,67,00,65,00,20,00,3f,00,49,00,6e,00,69,00,74,00,69,\ 00,61,00,6c,00,56,00,6f,00,6c,00,75,00,6d,00,65,00,3d,00,3d,00,25,00,31,00,\ 00,00 ;加锁解锁关闭BL添加文件 \Windows\System32\bridgeres.dll \Windows\System32\FrameServer.dll \Windows\System32\wiaservc.dll \Windows\System32\BdeHdCfgLib.dll \Windows\System32\BitLockerWizard.exe \Windows\System32\BitLockerWizardElev.exe \Windows\System32\fveskybackup.dll \Windows\System32\fvewiz.dll \Windows\System32\fveapibase.dll \Windows\System32\fvecpl.dll |
BitLocker离线导入加锁解锁关BL以及管理的注册表.reg.TXT
5.86 KB, 下载次数: 21, 下载积分: 无忧币 -2
sairen139 发表于 2023-9-18 15:03 我喜欢用 原生资源管理器 ;偏向喜欢用 PE 同版本号的 explorer.exe |
2012zhd 发表于 2023-9-18 15:46 K大是winxshell做外壳shell吗? |
sairen139 发表于 2023-9-18 15:03 不会吧,k大的几个pe我测试都是可以双击弹出输入密码框的。 |
sairen139 发表于 2023-9-18 08:49 放在最后,也是不行 而且放在最后,还加了 wait 1000 再执行,也不行 |
martin313 发表于 2023-9-18 08:30 你可以调整一下把这句放在最后执行,看是不是时机问题导致的? |
sairen139 发表于 2023-9-18 08:23 估计执行时机不对(此PE的特殊性吧) 这个要进桌面再自动执行,也是有办法的,就是把命令(或者快捷键)放入开始菜单的startup中,开机自动执行,即可 |
martin313 发表于 2023-9-18 05:35 那问题有点奇怪了,如果pecmd.exe里可以执行,那加到pecmd.ini里开机时自动执行应该也能共享X盘为X才对? |
sairen139 发表于 2023-9-17 23:37 刚刚测试看了一下,进pe桌面后,再执行 EXEC @net share X=X: /grant:everyone,full 是可以的 |
martin313 发表于 2023-9-17 22:30 这个问题比较好确认,测试方法是直接打开pecmd.exe里下面那个输入框,输入 EXEC @NET share X=X: /grant:everyone,full 或者 EXEC net share X=X: /grant:everyone,full 然后点pecmd.exe下面输入框后面的执行按钮 然后cmd里输入net share就可以知道命令能不能成功共享X盘出去 |
sairen139 发表于 2023-9-17 22:19 我也不知道 请看那个帖子的图片(手机 RNDIS 共享后,联网的图标都出现了,虚拟机里也可以上外网了) 而且我手工添加的网络支持文件后,居然出现了高级共享功能,需要在这里设置,X 才能有完全读写共享。 |
martin313 发表于 2023-9-17 22:16 为什么这个共享会失效?? |
sairen139 发表于 2023-9-17 19:33 问题解决了,哈哈 请看这里:http://bbs.wuyou.net/forum.php?mod=viewthread&tid=437362 并且有新情况,在 pecmd.ini 加 EXEC @net share X=X: /grant:everyone,full 失效 |
sairen139 发表于 2023-9-17 19:33 要大500M啊 那就算了,太吓人 |
martin313 发表于 2023-9-17 18:44 http://bbs.wuyou.net/forum.php?mod=viewthread&tid=436703 |
sairen139 发表于 2023-9-17 18:39 11pe 如何配置原生菜单? 现在就是用原生explorer,与 StartAllBack 搭配,总是报错 |
martin313 发表于 2023-9-17 17:39 10pe不能用原生开始菜单,11pe可以但是体积很大 |
sairen139 发表于 2023-9-17 08:40 请教老大,PE 用原版开始菜单的话,应该如何配置? |
Powered by Discuz! X3.3
© 2001-2017 Comsenz Inc.
组图打开中,请稍候......
收藏
支持
反对