|
windows
-
Guide [Discussion] Windows Kernel — Exploiting PnP Drivers via CMApi
Anyone currently digging into kernel-level exploits knows the headache of dealing with Plug and Play (PnP) drivers. Trying to weaponize a vulnerable PnP driver usually requires the PnP manager to call AddDevice in a very specific state, and doing it through the standard Setup API is bloated...- byte_corvus
- Thread
- adddevice bypass cmapi driver exploit ioctl kernel pnp reverse engineering windows
- Replies: 0
- Forum: Articles on reverse engineering
Views: 74Replies: 0 -
Question [Crash] Kernel Thread Hijacking — PsGetContextThread STATUS_UNSUCCESSFUL
Anyone currently digging into thread hijacking from the kernel has probably hit this wall. You're trying to snag a thread from a usermode process, you call KeSuspendThread, everything looks green, and then PsGetContextThread spits back STATUS_UNSUCCESSFUL. The problem usually comes down to how...- byte_corvus
- Thread
- apc debugging driver hijacking kernel ntstatus reverse threading windows x64
- Replies: 0
- Forum: Reversing help
Views: 429Replies: 0 -
Guide [Source] Windows HWID — Undocumented SpacePort Disk Method
Ever wondered how some anti-cheats still flag your hardware after a \"perfect\" disk spoof? Most of you are just hitting the standard storage class drivers and calling it a day, but Windows has plenty of dark corners that leak your real identity. While digging through some undocumented device...- byte_corvus
- Thread
- anti-cheat bypass disk serial guide hwid ioctl kernel spaceport spoofing windows
- Replies: 0
- Forum: PC Hardware & Software
Views: 519Replies: 0 -
Question Windows Kernel — KPTI/KVASCODE Layout Anomalies in VMM
Has anyone else been dealing with the KVASCODE shadow pool layout changes on recent Windows builds? I am currently running into a wall while trying to resolve the ntoskrnl base directly from a custom hypervisor exit handler. The Problem The standard technique of reading LSTAR—which points to...- byte_corvus
- Thread
- hypervisor kernel kpti kvascode lstar ntoskrnl patchguard reversing vmm windows
- Replies: 0
- Forum: Reversing help
Views: 265Replies: 0 -
Guide Kernel Driver Signing — Leaked EV Certificate Method
Windows Driver Signature Enforcement (DSE) is a massive roadblock if you don't have a grand to drop on a legitimate EV certificate. While mappers like KDU or various exploit-based loaders are great, sometimes you just want a signed binary that doesn't trigger every heuristic engine on the...- byte_corvus
- Thread
- driver dse bypass dsigntool ev certificate kernel sc.exe security signing sys windows
- Replies: 0
- Forum: PC Hardware & Software
Views: 335Replies: 0 -
Question Kernel Security — DSE Bypassing vs BYOVD Persistence
Anyone digging into current kernel-mode persistence lately? The landscape is getting progressively tighter with HVCI and KPP (PatchGuard) constantly evolving. I am weighing the trade-offs between legacy manual DSE bypasses—specifically patching g_cioptions—and the more recent reliance on BYOVD...- byte_corvus
- Thread
- byovd driver dse hvci kernel patchguard reversing rootkit security windows
- Replies: 0
- Forum: Reversing help
Views: 149Replies: 0 -
Source Simple Manual Map Injector — Handle and Thread Hijacking Logic
Spent some time digging into this manual map injector today. It uses a fairly straightforward approach to handle and thread hijacking, which is a decent starting point if you are looking to understand how to bypass basic kernel callbacks without relying on the standard CreateRemoteThread or...- byte_corvus
- Thread
- cpp handle duplication injection injector manual map ntdll reversing shellcode thread hijacking windows
- Replies: 0
- Forum: Cheat sources
Views: 238Replies: 0 -
Guide HWID Tracking — Technical Analysis of Windows Identifiers
Anyone currently dealing with persistent bans or trying to understand how anti-cheats track your hardware? I've seen too many people rely on basic serial spoofers only to get nuked by ACs because they missed half the registry keys or cached identifiers. If you're building a spoofer or just...- byte_corvus
- Thread
- anticheat hwid ioctl kernel ndis registry reverse-engineering spoofing tracking windows
- Replies: 0
- Forum: Anti-cheat bypass
Views: 1,041Replies: 0 -
Guide Kernel HWID Spoofer — Bypassing Stornvme Cache and NDIS Virtual Leaks
Working on a kernel-mode spoofer and hit the wall with native API leaks? You're not alone. The standard IOCTL path is solid for WMI/Win32_DiskDrive, but once you start digging into Get-PhysicalDisk and virtual adapter routing, the anti-cheat telemetry catches the real hardware signatures cached...- byte_corvus
- Thread
- dkem driver hwid ioctl kernel ndis reversing spoofer stornvme windows
- Replies: 0
- Forum: Anti-cheat bypass
Views: 946Replies: 0 -
Source Vanguard Restrictions Messenger Bypass & Logic
Anyone else looking into this specific module? Had to dump this manually again to see how the restrictions messenger actually handles things. Found this build (v.1.17.18-11) floating around and decided to break down the logic behind the restrictions messenger. You can bypass it relatively...- byte_corvus
- Thread
- anticheat bypass cplusplus hooking kernel reverseengineering security source vanguard windows
- Replies: 0
- Forum: Valorant cheat sources
Views: 284Replies: 0 -
Sell BGBot - Shadowlands PvP Logic Bot
BGBot - Shadowlands PVP Bot Windows/MacOS Supported INCLUDES Afk Random Battlegrounds Farming One of a kind with advanced movement and navigation system Fully auto will farm honor and conquest while you sleep Working close too professional rotations developer for the absolute best experience...- GetGud
- Thread
- bgbot bot macos pvp shadowlands windows
- Replies: 0
- Forum: World of Warcraft section
Views: 4,143Replies: 0