Awesome Game Security

Nightshade is a Windows Memory Manipluation library specifically for injecting DLLs and Game Hacking

No description.

Creating covert system threads on Windows by leveraging the page tables and IDT

Headless IDA Pro MCP server for AI-assisted binary analysis, powered by idalib

POC about how to detect windows kernel debug by pool tag.

csgo 2 The purpose of this project is only to learn cheating and anti-cheating. How you use this project has nothing to do with the author. 100% not VAC (this hack only read) ESP AimBot(OnlyAttackVisible (Can Select)) TriggerBot BunnyHop

Rainbow Six Siege Table Menu

Debug Menu for UnrealEngine5

Windows gamehacking library

DWARFHelper is a plugin for x64dbg, designed to load DWARF debug symbols from executable files (e.g., .exe, .dll) and apply them as labels and function information within the debugger

Fork of Mono.Debugger.Soft

Unity project to help Counter Strike Nintendo DS development

A permanent hwid spoofer. Works for Valorant and all hwid locked applications.

No description.

Single header code that sets any section's page to No Access

A tiny tool to strip the debug info from Windows binary files.

No description.

Bypass memory checks ( especially count )

remem is a C++ library designed for memory manipulation, function calling, and pattern scanning. It supports various calling conventions, memory reading/writing with offset handling.

Old example driver for application protection

Linux Anti-Debugging Detection Library

My customized qemu build for debugging / anti-vm

Mounting the system partition on Windows

Dumps files & data required to use the Xenon Xbox 360 Low Level Emulator

PECleaner strips all RICH header information from x86/x64 binaries

Recover and statically analyze manually-mapped DLLs whose PE headers are wiped at runtime. Pure-stdlib Python, no driver, no debugger required. Includes a Claude Code skill.

基于TPM验证本机有没有开启CPU虚拟化，IOMMU，安全启动，VBS/HVCI，驱动强制签名，易受攻击驱动阻止列表

The stress testing of your PG bypass [old school project]

fix wow obfucated IAT

EQU8 User-Mode Bypass and Injector

Driver + DLL which allows us to open handles to callback-protected processes

Visualize the data of bb, the Windows SDK/PHNT parser and analyzer.

swap the function pointer in NtCompareSigningLevels for undetected driver communication.

Linux kernel source for Redmi Note 10 Pro / Max (sweet/sweetin) device || focused on stability and performance.

No description.

project branthium - spoofer fortnite

No description.

An interesting way to detect return address spoofing on x64-windows.

反miHoYo Jcc程序控制流混淆 X64DBG 插件

Not mine. Only for saving.

Correlating kernel notifications with the lack of ETW events to detect ETW Patching

works with most invokers, spoofs the return address to bypass the anti cheat and allow detected natives to be called.

Emulator detection is a technique used to determine if a software application or operating system is running on an emulator rather than on original hardware

Just a meme

No description.

CheatEngine Value Tracer of IDA

The Windows Library for Intel Process Trace (WinIPT) is a project that leverages the new Intel Processor Trace functionality exposed by Windows 10 Redstone 5 (1809), through a set of libraries and a command-line tool.

🛡️ RCE Shield — Remote Code Execution hardening toolkit for PC gamers. Scans game launchers, anti-cheat, mods, overlays, peripherals & network for vulnerabilities.

A couple of streamed BattlEye shellcode/module psuedo snippets from Rainbow Six: Siege.

External cheat for csgo. Menu uses imgui. This project was done as a test to learn about memory manipulation