Page 1 of 1
[Request] TUT for making bypass for HS
Posted: Thu Feb 10, 2011 3:29 pm
by ooo1
As title, I am here to request the tutorials for making a bypass for HS. Please kindly provide the links or any replies.
Thank you in advance.
Re: [Request] TUT for making bypass for HS
Posted: Thu Feb 10, 2011 3:48 pm
by guyz92
Try 64bit system will be easyer to bypass. If possible use 64bit debugger or something that is code natively for 64bit.
Because 64bit have KPP, so anti cheat wont be so easily detect it.
Re: [Request] TUT for making bypass for HS
Posted: Thu Feb 10, 2011 4:22 pm
by ooo1
guyz92 wrote:Try 64bit system will be easyer to bypass. If possible use 64bit debugger or something that is code natively for 64bit.
Because 64bit have KPP, so anti cheat wont be so easily detect it.
Hmm, can break it down more simplified. I am a tabula rasa (blank) who dont have any C++ experience. 64bit system referred to window vista? 64bit debugger can be downloaded? Any tutorial links given will be appreciated.
Re: [Request] TUT for making bypass for HS
Posted: Thu Feb 10, 2011 10:12 pm
by Angelique
Find google lurhs..
Re: [Request] TUT for making bypass for HS
Posted: Fri Feb 11, 2011 11:02 pm
by ooo1
=.= Angelique, do you have the link for Cracked Embarcadero RAD 2010 by Nerrazzuri ? I downloaded but cannot install. So I wanna find another workable one.
Re: [Request] TUT for making bypass for HS
Posted: Sat Feb 12, 2011 2:53 am
by Nerrazzuri
You must understand how actually hackshield works. Which API do you need to hook so that the bypass will work, previously a few API were hook such as
FindResource(CrippleHS), OpenProcess(Nimo HSCRC), Process32Next(My Own method) and a whole lot more. I believe throwing a false architecture and trick Hackshield to recognize the system as 64 bit will work now, never try tho.
Have fun.
Re: [Request] TUT for making bypass for HS
Posted: Sat Feb 12, 2011 3:35 am
by ooo1
@Nerrazzuri, I got your point. Sorry for my knowledge which I didnt any programming at all.
What I understood were:
1) Need to understand how Hackshield works.
2) Make a bypass to bypass HS.
3) Once bypass, maple is the wolrd!
is it correct?
If they are correct, then how should I start to understand how HS works? using API?
BTW, your tutorials are awesome!
Re: [Request] TUT for making bypass for HS
Posted: Sat Feb 12, 2011 11:21 pm
by guyz92
64bit which added the Kernel Patch Guard protection. This function makes a lot problem to antivirus provider, tradition method is to hook the kernel and modify the core so that it wont allow rootkit to attacking in.
Recent new has report that there Windows Hook attack has made many antivirus provider down. Including Symatec Norton and McAfee. While only MSE (microsoft security essentials) is safe from this attack because MSE uses another method to protect without using kernel patching.
http://arstechnica.com/security/news/20 ... ctical.ars
http://www.matousec.com/info/articles/k ... ftware.php
So you can try to abuse KPP since Hackshield Kernel Driver , Xtrap and nProtect kernel driver wont load and protection drop about 10-20%.
Re: [Request] TUT for making bypass for HS
Posted: Sun Feb 13, 2011 2:37 pm
by ooo1
Seem like only 64bit can do it.