Carl Schou / vm

@vm_call

bored high school student.

Denmark
vmcall.blog
Vrijeme pridruživanja: lipanj 2015.
28 fotografija ili videozapisa Fotografije i videozapisi

Tweetovi

Blokirali ste korisnika/cu @vm_call

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @vm_call

  1. Prikvačeni tweet
    19. lis 2019.

    First part of my kernel hacking mini-series: "Hooking the graphics kernel subsystem"

    6 replies 141 proslijeđeni tweet 353 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  2. proslijedio/la je Tweet
    prije 17 sati

    Quick read about how our anti-cheat is becoming sentient

    12 replies 4 proslijeđena tweeta 33 korisnika označavaju da im se sviđa
    Poništi
  3. 2. velj

    Okay guys, enough with the jokes. Why are cheaters renaming themselves to "vm_call fan" 😅

    0:34
    A player by the name of VM_CallFan and LooksFine were both Walling, Speedhacking, and Aimbotting while trying to boost another player sxnd. during a ranked game. Can we get these guys banned?
    1 proslijeđeni tweet 36 korisnika označava da im se sviđa
    Poništi
  4. 26. sij

    I ported from Jekyll to Wordpress in hopes that the "comments" feature would be used to provide meaningful commentary to my content. Let's just say that I am pleased with my decision

    30 korisnika označava da im se sviđa
    Poništi
  5. proslijedio/la je Tweet
    26. sij

    Ladies and gentlemen, I present you a working Remote Code Execution (RCE) exploit for the Remote Desktop Gateway (CVE-2020-0609 & CVE-2020-0610). Accidentally followed a few rabbit holes but got it to work! Time to write a blog post ;) Don't forget to patch!

    47 replies 1.122 proslijeđena tweeta 3.140 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  6. 24. sij

    Hackers have been abusing a poor integrity check in BattlEye to completely circumvent game protection mechanisms. This has allowed cheat communities to intercept and modify every single piece information sent by the anti cheat to the respective servers.

    6 replies 18 proslijeđenih tweetova 39 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  7. 24. sij

    BattlEye has begun virtualising all new shellcode, 1:0 to the secret club. Confirms that the developers are lurking my twitter - next article will be released shortly, which will allow you to hook BattlEye while bypassing their internal integrity checks :) stay put

    2 proslijeđena tweeta 47 korisnika označava da im se sviđa
    Poništi
  8. proslijedio/la je Tweet
    23. sij

    PoC (Denial-of-Service) for CVE-2020-0609 & CVE-2020-0610 Please use for research and educational purpose only.

    6 replies 143 proslijeđena tweeta 344 korisnika označavaju da im se sviđa
    Poništi
  9. 21. sij

    FE CTF 2019 write-up by national champion (coincidentally, a fellow secret club member💪🏻)

    2 proslijeđena tweeta 7 korisnika označava da im se sviđa
    Poništi
  10. 20. sij

    Here's a full write-up of the danish intelligence agency's CTF. I might publish my Femtium (custom RISC architecture used in the CTF) -> x86 converter and optimizer, which enabled me to reverse engineer the applications in good old IDA Pro :-)

    Writeups for
    1 reply 1 proslijeđeni tweet 17 korisnika označava da im se sviđa
    Poništi
  11. 20. sij

    This hit major providers that haven't previously been detected in the past 6 months :-)

    1 reply 13 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  12. 20. sij

    have updated their detections of hypervisor-based cheats. This happens under a week after and I published an article on how to improve the time-based detections. *shrug* that's what you get for pasting hvpp/ddimon

    1 reply 2 proslijeđena tweeta 35 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  13. proslijedio/la je Tweet
    15. sij

    PoC for CVE-2020-0601

    27 proslijeđenih tweetova 75 korisnika označava da im se sviđa
    Poništi
  14. 14. sij

    The secret club does it again. Whose side are we even on?

    Analyzed with and offered improvements to BattlEye's VM detection. It was surprising this was their only method to detect generic hypervisors.
    Prikaži ovu nit
    1 reply 1 proslijeđeni tweet 8 korisnika označava da im se sviđa
    Poništi
  15. 14. sij

    Anticheats such as BattlEye have been trying to detect generic hypervisors, in particular those prevalent in the cheating community (DdiMon and hvpp), by using time-based detections. Here's some advice on that for the developers.

    24 proslijeđena tweeta 73 korisnika označavaju da im se sviđa
    Poništi
  16. 14. sij

    We of course can't say if there's been added anything to this module in the past week, but the module heavily relies on a vectored exception handler which will absolutely kill performance if virtualized, therefore explaining the drastic overhead.

    1 reply 5 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  17. 14. sij

    Okay ignore this tweet, that was our monitor tool hitting the timeout limit of 60 seconds. Actual execution time was 110 seconds on a very high end machine = 11000% overhead due to the new obfuscation, have fun playing DayZ on your low end machines

    1 proslijeđeni tweet 14 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  18. 14. sij

    The virtualized BEClient2 now takes over 60 seconds to run thanks to virtualization overhead, the execution time before was under a second - you guys need any help?

    1 reply 7 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  19. 14. sij

    Obfuscation sadly doesn't work retroactively - shoe on head or i drop the entire write-up of your disastrous stack scanner

    2 proslijeđena tweeta 10 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  20. 14. sij

    BattlEye has now begun fully virtualizing BEClient2 after my last tweet, too bad I already dumped it ;)

    2 proslijeđena tweeta 33 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  21. 13. sij

    And yes, you read that correctly, literally the entire driver on disk will be sent over UDP if it matches a very vague name check :( ouch oof oowie my intellectual property

    1 proslijeđeni tweet 19 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi

@vm_call još nije objavio nijedan Tweet.

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·