Battleye has also begun streaming shellcode for checking driver certificates, I might cover that in a later post but I haven’t included it in the article since it is not a part of the main shellcode routines
-
-
Show this threadThanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
For those interested, i will release a full write-up and analysis of BattlEye's infamous stack walker, which people don't really seem to know about. This is actually a great way to detect internal cheats that try to conceal themselves.pic.twitter.com/Ca5H01oTqr
Show this thread -
So remember to follow for further reverse engineering posts :-) cheers
Show this thread
End of conversation
New conversation -
-
-
Someone with Virus Total Intelligence access may be able to identify the DLLs against VT's samples with the "pets" search operator
-
Yes, a very generous follower actually did that, which means we've identified half of the blacklisted timestamps :-)
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.