API tools faq
paste
Advertisement
xosski

Modifying Wrappers/Registry hijacking

xosski
Mar 31st, 2025
6
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.03 KB | None | 0 0
raw download clone embed print report
  1. 1) Registry Override (Changing Which Program Runs)
  2. Idea: Instead of calling GoogleDriveFS.exe (with --open_gdoc), you point the registry to a different program or script that receives the same arguments, then decides what to do.
  3.  
  4. High-Level Steps:
  5.  
  6. Rename / Move the Original Program
  7. Move or rename the real GoogleDriveFS.exe to something else, e.g. GoogleDriveFS_real.exe.
  8.  
  9. Create a “Wrapper”
  10. Write a small script (e.g., a batch file or custom .exe) with the same filename (GoogleDriveFS.exe) in the original location.
  11. This wrapper intercepts --open_gdoc="%1", does something custom, then optionally calls the real executable if you still want normal functionality.
  12.  
  13. Edit the Registry
  14. Update the registry key that references GoogleDriveFS.exe --open_gdoc="%1" so it remains the same name, but now your wrapper is the actual file in that path. This means whenever .gdoc is opened, your wrapper sees --open_gdoc="%1" first.
  15.  
  16. In your wrapper, you might do something like:
  17.  
  18. batchCopyEdit@echo off
  19. REM Example: Wrapper around the real GoogleDriveFS, intercepting or altering arguments
  20.  
  21. REM 1) Parse the %* for --open_gdoc=someFile.gdoc
  22. SETLOCAL ENABLEDELAYEDEXPANSION
  23. SET newArgs=
  24. :parseArgs
  25. IF "%~1"=="" GOTO runReal
  26. IF "%~1"=="--open_gdoc=" (
  27. REM (not likely literal because there's always a path after the equals)
  28. ) ELSE (
  29. REM If you want to manipulate the argument, do so here:
  30. REM e.g., "some transformation or logging"
  31. )
  32. SHIFT
  33. GOTO parseArgs
  34.  
  35. :runReal
  36. REM 2) Optionally call the original exe if you want normal Google Docs behavior
  37. "C:\Program Files\Google\Drive File Stream\GoogleDriveFS_real.exe" %newArgs%
  38.  
  39. REM or do something else entirely
  40. EXIT /B 0
  41.  
  42. That’s a simplistic example for a .bat, but you could do the same with a compiled .exe.
  43.  
  44. This approach means you’re hijacking the entire workflow. Windows sees .gdoc → runs your wrapper → your wrapper sees the --open_gdoc="%1" argument → does custom logic → optionally hands it off to the real GoogleDriveFS if you still want normal docs behavior.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!