Media
- Tweets
- Tweets & replies
- Media, current page.
-
-
I ported https://vmcall.blog/ from Jekyll to Wordpress in hopes that the "comments" feature would be used to provide meaningful commentary to my content. Let's just say that I am pleased with my decisionpic.twitter.com/mbiJ8IWPus
-
Call me petty but i have no remorse for a company that literally steals personal files from my computer. We can keep doing this all year baby
#secretclubpic.twitter.com/qFMyTX8thX
-
-
Det var alligevel nogle overkomplicerede løsninger folk fra Cyberlandsholdet fik bikset sammen, bare skriv en decompiler næste gang i stedet for alt det selvpineri ;) binexp1:pic.twitter.com/v6nKdInXmR
-
-
BattlEye is uploading device drivers from your machine as a part of its larger system enumeration routine, which sends unfiltered dumps of process names, window titles, module names, certificates and more to their server - stay putpic.twitter.com/Jcxbtifswh
Show this thread -
Who would've thought anti-cheats were still using old timing checks to detect generic virtualizationpic.twitter.com/rI8h9nd3Ax
Show this thread -
The single-step shellcode is more fun :-) this time i'll prep multiple articles so i can drip feed the good info, so i need to finish this firstpic.twitter.com/ck6vIo94zt
-
-
This is honestly a great example of *bad* opaque predicates. It takes no effort to comb through and clear the garbage operations, which isn't what opaque predicates should aim forpic.twitter.com/GNBro8hsyo
Show this thread -
Update was pushed yesterday, which is why i find it so hilarious - it's still obfuscated and most people wouldn't be able to reverse this, but this is nowhere near the capacity modern VMP has. This protection is just a fun little exercise in patchingpic.twitter.com/KYO4UXab13
-
For those interested, i will release a full write-up and analysis of BattlEye's infamous stack walker, which people don't really seem to know about. This is actually a great way to detect internal cheats that try to conceal themselves.pic.twitter.com/Ca5H01oTqr
Show this thread -
Got it, BattlEye is blacklisting old D3DCompiler and d3dx9_32 binariespic.twitter.com/yCK74eTmQb
Show this thread -
Guess the next article will be an analysis of devirtualized BattlEye shellcode :-) they didn't remove the opaque checks that i pointed out last time, maybe they get the memo this time. Tons of new juicy stuff that the public isn't aware of.pic.twitter.com/dgOPcwxraG
Show this thread -
Everyone knows that 0-days are only valid if you pop calc.exe or notepad.exe:https://www.youtube.com/watch?v=f5v4xb5GvQE …
-
I wonder if vs project arbitrary code execution is another wont-fix
pic.twitter.com/bN4BKgfVUQShow this thread -
Er bare træt af ikke at vide om der er fejl i opgaverne, for det ville ikke komme bag på migpic.twitter.com/WbpKSh8I21
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.