Anti Peek Poke

[kiwi2014566 DF Member Posts:172 Threads:32 Reputation 2]

This is a much cleaner way better than fucking with xbdm Enjoy!

Content Unlocked


typedef void* object;

__declspec(naked) object MmDbgReadCheckStub(...)
{
__asm
{
li r3, 60
nop
nop
nop
nop
nop
nop
blr
}
}

__declspec(naked) object MmDbgWriteCheckStub(...)
{
__asm
{
li r3, 61
nop
nop
nop
nop
nop
nop
blr
}
}

PVOID AntiRead(DWORD ReadAddress)
{
if ((ReadAddress & (0xFFF00000)) == 0x91E60000) return 0;
if ((ReadAddress & (0xFFFF0000)) == 0x900A0000) return 0;
else return MmDbgReadCheckStub(ReadAddress);
}

PVOID AntiWrite(DWORD ReadAddress)
{
if ((ReadAddress & (0xFFF00000)) == PUTYABASEADDRESSHERE) return 0;
if ((ReadAddress & (0xFFFF0000)) == GUESS ;)) return 0;
else return MmDbgReadCheckStub(ReadAddress);
}
byte OriginalRead[0x10];
byte OriginalWrite[0x10];
void StartHooks() {
memcpy(OriginalRead, (unsigned long*)resolveFunc("xboxkrnl.exe", 0x1AB), 0x10);
memcpy(OriginalWrite, (unsigned long*)resolveFunc("xboxkrnl.exe", 0x1AD), 0x10);
HookFunctionStart((unsigned long*)resolveFunc("xboxkrnl.exe", 0x1AB), (unsigned long*)MmDbgReadCheckStub, (unsigned long)AntiRead);
HookFunctionStart((unsigned long*)resolveFunc("xboxkrnl.exe", 0x1AD), (unsigned long*)MmDbgWriteCheckStub, (unsigned long)AntiWrite);
}

void StopHooks() {
memcpy((void*)resolveFunc("xboxkrnl.exe", 0x1AB), OriginalRead, 0x10);
memcpy((void*)resolveFunc("xboxkrnl.exe", 0x1AB), OriginalWrite, 0x10);
}

[jay360mods Guest Posts:N/A Threads: Reputation]

Careful, king always wins

[xcryptic DF Member Posts:48 Threads:1 Reputation 3]

Why are people focusing on anti-debug/anti-disasm when they don’t even know how to last?

[jewishnose12 DF Member Posts:21 Threads:1 Reputation 0]

wow this seems coolio

[BIGMARK DF Member Posts:170 Threads:7 Reputation 0]

This is a much cleaner way better than fucking with xbdm Enjoy!

Hidden Content
You must register or login to view this content.

nice

[Darkdos04 Banned Posts:59 Threads:38 Reputation -7]

yyyyyyyyyyyyyyyyyyyyyyyoooooooooooooooooooooooooooooooooooooooooo NICE

---

yooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo

[Venom_Modz DF Member Posts:308 Threads:26 Reputation 10]

thanks for this im going to look at it

[PapaHypervisor Banned Posts:6 Threads:3 Reputation 4]

wtf is this lol

[Tom DF Member Posts:71 Threads:28 Reputation 32]

old, easy to bypass and most of all, not your research. How about ya stop leaking shit and instead put it to use? make some money out of your time.. this scenes gone fucking retarded, beyond levels I could of EVER imagined.

[TheUnknown Emerald Member Posts:57 Threads:2 Reputation 37]

old, easy to bypass and most of all, not your research. How about ya stop leaking shit and instead put it to use? make some money out of your time.. this scenes gone fucking retarded, beyond levels I could of EVER imagined.

I 100% agree with you this scene is fucked beyond repair now I believe and will only continue to get worse sadly.