GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → es3n1n → be-shellcode-tester

es3n1n / be-shellcode-tester

Licence: other
BattlEye shellcodes tester

Programming Languages

C++
36643 projects - #6 most used programming language

Labels

windowsx64reverse-engineeringbattleyegamehacking

Projects that are alternatives of or similar to be-shellcode-tester

PFishHook
An x64 inline hook library
Stars: ✭ 21 (-69.57%)
Mutual labels:  x64
storm-engine
Game engine behind Sea Dogs, Pirates of the Caribbean and Age of Pirates games.
Stars: ✭ 636 (+821.74%)
Mutual labels:  x64
hwid-checker-mg
hwid-checker-mg is simple, proof-of-concept, hardware id checker made in C++ that utilizes the SMBIOS/DMI standards to output information that's been described by the BIOS.
Stars: ✭ 80 (+15.94%)
Mutual labels:  gamehacking
biefircate
Running x86-16 or x86-32 code from x86-64 UEFI; _very experimental_ • mirror of https://gitlab.com/tkchia/biefircate • developer notes at https://gitlab.com/tkchia/biefircate/-/blob/main/doc/NOTES.asciidoc
Stars: ✭ 47 (-31.88%)
Mutual labels:  x64
Reverse-Engineering
A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.
Stars: ✭ 7,234 (+10384.06%)
Mutual labels:  x64
Reloaded.Assembler
Minimal .NET wrapper around the simple, easy to use Flat Assembler written by Tomasz Grysztar. Supports both x64 and x86 development.
Stars: ✭ 17 (-75.36%)
Mutual labels:  x64
Capstone.NET
.NET Core and .NET Framework binding for the Capstone Disassembly Framework
Stars: ✭ 108 (+56.52%)
Mutual labels:  x64
Saraff.Twain.NET
Saraff.Twain.NET is the skillful scanning component which allows you to control work of flatbed scanner, web and digital camera and any other TWAIN device from .NET environment. You can use this library in your programs written in any programming languages compatible with .NET technology.
Stars: ✭ 74 (+7.25%)
Mutual labels:  x64
docker-airdcpp-webclient
AirDC++ Web Client Docker image
Stars: ✭ 24 (-65.22%)
Mutual labels:  x64
socc
Simple C Compiler in OCaml
Stars: ✭ 41 (-40.58%)
Mutual labels:  x64
fdtd3d
fdtd3d is an open source 1D, 2D, 3D FDTD electromagnetics solver with MPI, OpenMP and CUDA support for x86, arm, arm64 architectures
Stars: ✭ 77 (+11.59%)
Mutual labels:  x64
opcodesDB
x86-64 | ARM (AArch32/AArch64/THUMB) full instruction set.
Stars: ✭ 49 (-28.99%)
Mutual labels:  x64
Corth
It's like Porth, but in C++. Yep, we're going full circle.
Stars: ✭ 17 (-75.36%)
Mutual labels:  x64
catsight
Cross-platform process memory inspector
Stars: ✭ 150 (+117.39%)
Mutual labels:  x64
xgadget
Fast, parallel, cross-variant ROP/JOP gadget search for x86/x64 binaries.
Stars: ✭ 33 (-52.17%)
Mutual labels:  x64
async
async is a tiny C++ header-only high-performance library for async calls handled by a thread-pool, which is built on top of an unbounded MPMC lock-free queue.
Stars: ✭ 25 (-63.77%)
Mutual labels:  x64
FoxOS
The FoxOS main repository
Stars: ✭ 48 (-30.43%)
Mutual labels:  x64
NIM-CSharp-SDK
网易云信C# SDK
Stars: ✭ 15 (-78.26%)
Mutual labels:  x64
docker-nagios
Docker image for Nagios Core in Alpine Linux with basic plugins, available for x86, x64 , ARM v6, ARM v7 and ARM64.
Stars: ✭ 33 (-52.17%)
Mutual labels:  x64
mcc
Mini C Compiler
Stars: ✭ 18 (-73.91%)
Mutual labels:  x64
View All Similar Projects ➔

be-shellcode-tester

What is this?

As you may know battleye loads custom shellcodes for detecting some stuff.
Well this software is running those shellcodes and dumps every report that was sent.

How's this works?

  • Iterating dir with previously dumped shellcodes and maps it to self mem.
  • Passes 'hooked' GetProcAddress/GetModuleHandleA/send_report functions to shellcode.
  • Reads report and prints info about it.

How's it useful for me?

Imagine your p2c is detected in be-protected game, all you need to do is dump their shellcodes and check your cheat with this tool.

Features:

  • Hookless
  • Parses 9/10 reports(tested only on eft/r6 tho)
  • Both .dll and .exe versions are available
  • Decrypts encrypted reports from shellcodes
  • Decrypts encrypted reports from BEClient2.dll

How can i dump shellcode from game?

Hook GetProcAddress, get mbi of return address and check if it's not a legit module.

Screenshot:

img

Contributing

Any contributions you make are greatly appreciated.

  1. Fork the Project
  2. Create your Feature Branch (git checkout -b feature/AmazingFeature)
  3. Commit your Changes (git commit -m 'Add some AmazingFeature')
  4. Push to the Branch (git push origin feature/AmazingFeature)
  5. Open a Pull Request

Credits:

@es3n1n
@user344

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].