⭕️تحلیل و بررسی ادعاهای کلاهبردار "اهواز هکرز" و آکادمی های همکارشون درمورد اینکه چرا پشت سر آقای محمودنیا صحبت میکردن و ایشون رو کلاهبردار خطاب میکردند.
این ویدیو را با صدای مهندس محمودنیا از آکادمیDWORD تماشا کنید.


امیدواریم جامعه امنیت از مدرس های خوب کشورمون حمایت کند تا موجب دلگرمی و پیشرفت همه افراد این حوزه شود

Writing Nimless Nim

Talk that was given at BSIDESKC 2024 about how to write Nim code without the Nim and C Runtime. This repo will serve as a living document to expand on concepts for writing NRT-less and CRT-less code.

Slides and source: https://github.com/m4ul3r/writing_nimless

1. Learn basic C++ and python

Ahh yes, this is the first step to being able to write Game hacks.
Without learning to actually program, you will never become capable of writing your own hacks.
Now C++ is possibly a hard programming language if it's your first.
But I learned it as my first, all it took was trial and error and persistence!
C++ is a high level programming language capable of low memory manipulation,
which is why it is AWESOME when it comes to game hacking.
I recommend having a strong grasp on the basics, as it will only benefit you, and make the learning process so much easier.
When learning the basics of C++, you probably won't make anything super interesting outside of a console. But that's okay you have to be able to code the simple things, before you can move on to more badass projects.
Your operating system is just a big GUI for your command line! So don't be discouraged if you feel as if you're only programming a black box, that black box(console) has power!
I recommend having a strong grasp on functions, control statements, pointers, classes.

2. Learn Debugging/How a debugger works.

3. Learn Win api

Alright this is where the fun begins. The Windows Api has a bunch of useful features necessary for game hacking.
Some of these features include functions that are useful to manipulate the address space of another process.
These functions exist for debuggers.
When you ask the debugger to inspect the memory of the process being debugged, it uses ReadProcessMemory to do it.
When you ask the debugger to update the value of a variable in your process, it uses WriteProcessMemory to do it.
I recommend learning how to make a basic window program. (understand how events and messages work)
Learn processes and threads
Debugging Functions
Toolhelp Functions
Hook functions
Memory Management Functions
DLL - You can find all these at MSDN

OPTIONAL:

Learn D3D This relies on knowledge of the WinApi. D3D is graphics. Games that run on Direct3d you will be able to manipulate the graphics of the client with knowledge of it. For example Chams, wallhack.

4. Learn to use a memory scanner (cheat engine)

Memory scanners are useful for finding addresses, At those addresses are useful values ex: health,ammo, etc.
Learn to find static addresses with Cheat Engine or you'll have to update your source every time you run the game. Memory scanning skills are easy to obtain, if you gotten to this point. You can probably make simple game hacks for simple games like (pinball,minesweeper) or any game that's open source without an anti cheat.
Assault Cube is a great game to hack for beginners.

5. Make basic external game hacks that changes value at a memory address(exe)

Alright basically at this point you can create simple hacks. You can use your memory scanning skills to look for addresses. You can use these addresses alongside your knowledge of C++, WinApi(Process functions, debugging functions. Just start up a console project, at this point you should know how basic WriteProcessMemory works.

- Once you find the address you can use wpm to write to that value

6. Create basic internal game hack (dll)

Okay so basically we get to dll injection, basically you're just injecting your code
directly into the process, by doing so you have easier access within. You don't have to rpm or wpm.
You should have learned about CreateRemoteThread and VirtualAllocEx.

Hooking And DLL Injection

7. Learn Assembly/Reverse Engineering

Assembly is a language, being able to Reverse Engineer is a skill
that acquires knowledge of Assembly. When you don't have access to the source
code of programs, you need to be able to reverse engineer to understand how the game works and what it is doing. Being able to reverse engineer will allow you to find functions,classes, and variables that are useful to you. This is a very powerful skill. It is ESSENTIAL for game hacking. When you know how everything works you can make it or break it.
It is more important to be able to read in Assembly than to write in it. You have C++ to write for you(low memory manipulation remember?) .
I recommend the Art of Assembly, And The Secrets of Reverse Engineering as ebooks for learning.
I also recommend reversing your own programs in C++ while also learning.
For example program a hello world in C++ and reverse it in tools like Ollydbg or IDA.
Then code up a little more complex program with basic variables and reverse it,
then add operations and reverse that, etc.

8. The most important thing is to mess around, and apply the skills you learned.

To be able to game hack, is something you have to learn by doing, trial and error. View other people sources. Just remember, with persistence you will win!

Google is your friend and there are many great threads on this forum.

https://github.com/dsasmblr/game-hacking

https://youtube.com/@guidedhacking?si=yO6hN8ZEn1zc28-2


https://news.1rj.ru/str/Source_byte/1930

If you truly want to be able to create game hacks, then you will get there.

Be Curious and keep learning.




#game

#udemy - Game Hacking: Cheat Engine Game Hacking Basics

@RedBlueHit 💀👀
@RedBlueTM 🔒

GameHackingAcademy.pdf

#game

Cheating in Online Games. A Case Study of Bots and Bot-Detection in Browser-Based Multiplayer Games by Erik Wendel, 2012

Techniques Learned from the XZ Backdoor

The IFUNC feature of GLIBC
Concealing characters using Radix Tree
Obtaining all dependency information
Hooking Functions from Other Dependency Libraries

https://medium.com/@knownsec404team/techniques-learned-from-the-xz-backdoor-74b0a8d45c30

#cve , #CVE_2024_3094

pspy is a command line tool designed to snoop on processes without need for root permissions. It allows you to see commands run by other users, cron jobs, etc. as they execute.

https://github.com/DominicBreuker/pspy

#tool

Embedding encrypted payloads in resource section
Payload

placement: .rsrc section
Adding a resource to our project
Retrieving payload contents
Locating resource
Loading resource contents
Obtain a pointer
Decrypting the payload
Execution

https://ry0dan.github.io/malware%20development/Malware-Development-Crafting-Digital-Chaos-03/

credit : Motawkkel Abdulrhman

#malware_dev