Back Engineering

AMD-V Hypervisor Development - A Brief Explanation Aug 4, 2022 - 13 min read - author(s) , medievalghoul - with tags , Windows-Kernel , Hypervisor

Theodosius - Jit linker, Symbol Mapper, and Obfuscator May 6, 2022 - 28 min read - author(s) , _xeroxz - with tags , Obfuscation

Writing a Mutation Engine and breaking Aimware Apr 13, 2022 - 17 min read - author(s) , x86mike - with tags , Obfuscation

EZVIZ BD-2402B1 Back Engineering and SNES9X Port Jan 20, 2022 - 20 min read - author(s) , _xeroxz - with tags , hardware

EQU8 - Kernel Component Analysis Aug 12, 2021 - 20 min read - author(s) , rec_power - with tags , Anti-Cheat

EasyAntiCheat Exploit to inject unsigned code into protected processes Aug 10, 2021 - 14 min read - author(s) , bright , _xeroxz , irql0 - with tags , Anti-Cheat

VMProtect 2 - Part Two, Complete Static Analysis Jun 21, 2021 - 27 min read - author(s) , _xeroxz - with tags , VMProtect-2 , Obfuscation

VMProtect 2 - Detailed Analysis of the Virtual Machine Architecture May 17, 2021 - 68 min read - author(s) , _xeroxz - with tags , VMProtect-2 , Obfuscation

Voyager - A Hyper-V Hacking Framework Apr 20, 2021 - 22 min read - author(s) , _xeroxz - with tags , Windows-Kernel , VDM , PTM , Hypervisor

Hyperspace - Hidden Address Spaces Mar 29, 2021 - 8 min read - author(s) , _xeroxz - with tags , Windows-Kernel , VDM , PTM

Reverse Injector - Merging Address Spaces Mar 27, 2021 - 7 min read - author(s) , _xeroxz - with tags , VDM , PTM

MSREXEC - Elevate Arbitrary WRMSR to Kernel Execution Mar 22, 2021 - 10 min read - author(s) , _xeroxz - with tags , Windows-Kernel , VDM

PTM - Page Table Manipulation From Usermode Dec 1, 2020 - 13 min read - author(s) , _xeroxz - with tags , Windows-Kernel , VDM , PTM

VDM - Vulnerable Driver Manipulation Nov 1, 2020 - 10 min read - author(s) , _xeroxz - with tags , Windows-Kernel , VDM

PSKP - Process-Context Specific Kernel Patch Aug 25, 2020 - 4 min read - author(s) , _xeroxz - with tags , Windows-Kernel , PTM , VDM

Virtual Memory - Intro to Paging Tables Aug 23, 2020 - 13 min read - author(s) , _xeroxz - with tags , Windows-Kernel

BadEye - BattlEye Handle Elevation Exploit Aug 21, 2020 - 11 min read - author(s) , _xeroxz - with tags , Anti-Cheat , Game-Cheat , Windows-Kernel

Unfairgame - Reverse Engineering of unfairgame.co Jun 8, 2020 - 13 min read - author(s) , _xeroxz - with tags , Game-Cheat , Windows-Kernel

Physmeme - Windows Unsigned Kernel Driver Mapper Apr 19, 2020 - 3 min read - author(s) , _xeroxz - with tags , Windows-Kernel

Amlegit - Reverse Engineering of amlegit.com Mar 10, 2020 - 9 min read - author(s) , _xeroxz - with tags , Game-Cheat , Windows-Kernel