公告 [置顶] 关于白帽Wiki 白帽Wikipedia 十年磨一剑,霜刃未曾试。白帽入门,从这里开始 无论你是小白还是想扩展自己技术的大牛,这里都欢迎你 **本站只做新一代最纯粹的安全站点,安全百科,保持技术纯粹性.公平性,共享性.目标总结前人的经验用于下一代白帽的成长.** 使用本Wikipedia,您必须知晓: 提供侵入、非法控制计算机信息系统程序、工具罪(请点击阅读全文了解法律信息) 阅读全文 2019-11-06 huoji 0 条评论
二进制安全游戏安全 [2020]EAC Thread Walker 数据搜集:搜集线程起始地址 以及目标节名 目标模块信息 以及回溯线程调用 数据筛选:可执行 可读可执行 可读可写可执行 并且不位于easyanticheat反作弊区域的信息 上层 阅读全文 2020-07-23 huoji 0 条评论
二进制安全游戏安全C/C++汇编Shellcode [2020]EAC驱动自我检查 EAC通过比对磁盘文件与内存数据检测自己是否被篡改,代码如下: 阅读全文 2020-07-23 huoji 0 条评论
工具软件二进制安全 [2020]VTIL Project 让VM代码不再难受 github: https://github.com/vtil-project 官网: https://vtil.org/ 能简化无用的VM膨胀代码  阅读全文 2020-07-23 huoji 0 条评论
工具软件二进制安全 [2020]反花指令、VM代码神器 Capstone -懂的都懂 http://www.capstone-engine.org/ 测试EAC的VM: ```cpp mov [rsp+arg_8], rbx ror r9w, 2 lea r9, ds:588F66C5h[rdx*4] sar r9d, cl bts r9, 1Fh mov [rsp+arg_10], rbp lea r9, ds:0FFFFFFFFC17008A9h[rsi*2] sbb r9d, 2003FCE1h shrd r9w, cx, cl shl r9w, cl mov [rsp+arg_18], rsi cmc mov r9, cs:EasyAntiCheatBase ``` 通过Capstone修正后: ```cpp mov [rsp+arg_8], rbx mov [rsp+arg_10], rbp mov [rsp+arg_18], rsi mov r9, cs:EasyAntiCheatBase ``` 阅读全文 2020-07-23 huoji 0 条评论
二进制安全游戏安全C/C++汇编Shellcode [2020]BattlEye 客户端模拟 The popular anti-cheat BattlEye is widely used by modern online games such as Escape from Tarkov and is considered an industry standard anti-cheat by many. In this article I will demonstrate a method I have been utilizing for the past year, which enables you to play any BattlEye-protected game online without even having to install BattlEye. 阅读全文 2020-07-23 huoji 0 条评论
二进制安全游戏安全C/C++汇编Shellcode [2020]BattlEye Shellcode分析V2 Modern commercial anti-cheats are faced by an increasing competetiveness in professional game-hack production, and thus have begun implementing questionable methods to prevent this. In this article, we will present a previously unknown anti-cheat module, pushed to a small fraction of the player base by the commercial anti-cheat BattlEye. The prevalent theory is that this module is specifically targeted against reverse engineers, to monitor the production of video game hacking tools, due to the fact that this is dynamically pushed. 阅读全文 2020-07-23 huoji 0 条评论
游戏安全 [2020] KVM DMA外部IMGUI读写 Instructions: ```cpp git clone https://github.com/umo208/LookingGlass.git cd LookingGlass git checkout Release/B1 git submodule update --init --recursive cd repos/gl3w mkdir build cd build cmake .. make cd ../../../client mkdir build cd build cmake .. make ``` 地址: https://github.com/umo208/LookingGlass 阅读全文 2020-07-11 huoji 0 条评论
