Home
VollRagm
Cancel

Developing an undetected debugger on Windows - Part 4 [Evaluation]

Part 4 – Evaluation You are reading Part 4: Evaluation and Results. 👉 Part 1: Theory 👉 Part 2: Detection 👉 Part 3: Implementation 🔗 Explore the complete project here: GhostDebug on GitHu...

Developing an undetected debugger on Windows - Part 3 [Implementation]

Part 3 – Implementation You are reading Part 3: Implementation. 👉 Part 1: Theory 👉 Part 2: Detection 👉 Part 4: Evaluation 🔗 Full implementation is available at: GhostDebug on GitHub Imp...

Developing an undetected debugger on Windows - Part 2 [Detection]

Part 2 – Detection You are reading Part 2: Detection. 👉 Part 1: Theory 👉 Part 3: Implementation 👉 Part 4: Evaluation 🔗 Check out the source code here: GhostDebug on GitHub Reasons for D...

Developing an undetected debugger on Windows - Part 1 [Theory]

Part 1 – Theory You are reading Part 1: Theory. 👉 Part 2: Detection 👉 Part 3: Implementation 👉 Part 4: Evaluation 🔗 The debugger project itself can be found here: GhostDebug on GitHub I...

Abusing LargePageDrivers to copy shellcode into valid kernel modules

Introduction Most people in the game hacking community write their kernel-mode drivers to get around kernel-level anti-cheats such as EasyAntiCheat. However, those anti-cheats have several methods ...

Showing a MessageBox from kernel-mode

Introduction Message boxes provide a simple way to show feedback to the user. In user-mode, a message box can be shown with the MessageBoxW API function. However, this API does not exist in kernel-...

PTView - Browse Page Tables on Windows

Introduction Page Tables can be a complicated concept to understand. This is why I created PTView. You can use this tool to visualize page tables and be able to browse them. It allows you to insp...

KernelSharp - Write Kernel Drivers in C#

Introduction In the past, people asked me if it was possible to write a kernel-mode Driver for Windows in C#. Now, you might be thinking that something like this would be totally foolish and serve ...

Unity Engine reversing and hacking

Introduction Unity3D is a popular game engine used by many games, like Escape from Tarkov, Rust, Fall Guys, Among Us, and many more. The engine uses C# as scripting backend, and by default runs on ...

Reverse engineering a Web API

Introduction Most websites or web services have an API in the backend that delivers requested data to its frontend. This can be anything from the Google Search API to delivering a message on Discor...