pafish
cuckoo-modified
Our great sponsors
| pafish | cuckoo-modified | |
|---|---|---|
| 17 | 1 | |
| 2,996 | 386 | |
| - | - | |
| 5.5 | 10.0 | |
| over 2 years ago | over 6 years ago | |
| C | Python | |
| GNU General Public License v3.0 only | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
pafish
-
Is there still a way to counter virtual machine detection by popular anti cheat?
Pafish is what you asking for, but as u/ForceBlade wrote, you cannot win this game.
-
How to play rainbow 6 siege?
You can do it however that requires extensive Research. There are Things such as https://github.com/a0rtega/pafish That Help you get the First detection vectors sorted. However hate to say it but youll be better off actually coding a "Cheat" that Patches the vm Checks the Game does in Order to Play.
-
Makes perfect sense
Yes. For example: https://github.com/a0rtega/pafish
-
I came again to bother you guys
You can check what thing are detected by using -> https://github.com/a0rtega/pafish Normally VM Exit and Virtual Input devices are detected. But it still works for 99% of the games.
-
Error on BattlEye when getting into bus
I have been working on obfuscating my vm, the results are mixed... A good start is to use paranoid fish , tools gives you an idea how it detects vm's :)
-
VMware Shared Folders
So I suppose that it depends on the malware. Some malware doesn't want to take the chance of being reverse engineered, so when it's aware that it is in a virtual machine, it might shut down. pafish has functionality for working out whether-or-not it is running in a VMware instance.
-
VFIO current status with anti cheats?
Last time when I tried to run Valorant just BSoD the VM Everything else works (EAC, BE, Ricochet, etc...). You can test if your VM can be detected using this tool.
- Virtualization hypervisors what the heck...
-
Gaming VM under nested virtualization
Does soft as pafish https://github.com/a0rtega/pafish will detect RDTSC VM exit on wraped WinVM?
-
Does Windows think I'm running on VM? Not sure where to look.
You can use pafish to test vm detection methods. https://github.com/a0rtega/pafish
cuckoo-modified
-
ProctorU Is Dystopian Spyware
This sent me down the rabbit hole on defeating this... I cannot stand this sort of authoritarian horsesh...
Defeating malware's VM detection is very interesting.
Links for others if they're interested:
https://github.com/a0rtega/pafish collects all the best-known detection methods into a test suite.
This issue is interesting/has links for sure: https://github.com/spender-sandbox/cuckoo-modified/issues/45...
What are some alternatives?
VmwareHardenedLoader - Vmware Hardened VM detection mitigation loader (anti anti-vm)
RDTSC-KVM-Handler - my patches for linux kernel to spoof rdtsc and make vm exit undetected
opencanary - Modular and decentralised honeypot
VMDE - Source from VMDE paper, adapted to 2015
Reverse-Engineering-Tutorial - A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.
kiteshield - Packer/Protector for x86-64 ELF binaries on Linux
RATwurst - Windows-only Remote Access Tool (RAT) with anti-debugging and anti-sandbox checks. For educational purposes only.
qemu-git-patched-pkgbuild - qemu-git PKGBUILD from AUR patched for anti-vm detection
al-khaser - Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
VXUG-Papers - Research code & papers from members of vx-underground.
VBoxHardenedLoader - VirtualBox VM detection mitigation loader