pwn2own2020
evil-mhyprot-cli
pwn2own2020 | evil-mhyprot-cli | |
---|---|---|
1 | 3 | |
396 | 299 | |
0.0% | - | |
0.0 | 2.6 | |
about 3 years ago | almost 3 years ago | |
C++ | C++ | |
- | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
pwn2own2020
-
Louis Rossmann on YouTube
Yep, MacOS and iOS have lots of vulnerabilities. I think this is a good time to mention: PSA - if your MacOS is older than 10.15.3 Catalina you are vulnerable to a full WebKit >> kernel privilege (root + kernel) exploit chain which can infect your computer through a website. Keep your devices up to date.
evil-mhyprot-cli
-
Daily Questions Megathread (August 30, 2022)
It's real. It's possible to hijack genshin's anticheat driver, mhyprot3.sys to gain kernel-level access, and since it's a verified legit driver it gets past antivirus. Here's a proof of concept made over a year ago https://github.com/kkent030315/evil-mhyprot-cli
- Hoyoverse claims that requiring admin permission is perfectly normal, refuses to explain what Genshin needs it for
-
Tim Sweeney has a point about Fortnite EAC support
Depends on what you call damage, I guess. Sometimes anti-cheat software is vulnerable and other times these companies are just not trustworthy enough to believe they won't pull a Sony BMG.
What are some alternatives?
ds3-nrssr-rce - Documentation and proof of concept code for CVE-2022-24125 and CVE-2022-24126.
Mhyprot2DrvControl - A lib that allows using mhyprot2 driver for enum process modules, r/w process memory and kill process.
Karabiner-Elements - Karabiner-Elements is a powerful utility for keyboard customization on macOS Sierra (10.12) or later.
ViGEmBus - Windows kernel-mode driver emulating well-known USB game controllers.
DeauthDetector - Detect deauthentication frames using an ESP8266
GarHal_CSGO - A project that demonstrates how to screw with CSGO from Kernel Space. (CSGO Kernel Cheat/Hack) All cleaned up, and with updated offsets.
CVE-2020-15368 - CVE-2020-15368, aka "How to exploit a vulnerable driver"
BsodSurvivor - This project aims to facilitate debugging a kernel driver in windows by adding support for a code change on the fly without reboot/unload, and more!
herpaderping - Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.
MhyprotDriver - [UnavailableForLegalReasons - Repository access blocked]