GitHub - VeryElusive/kernel-hack-base: wreakin' havoc

Test implementation of a kernel game hack.

Comes with the driver project and driver manual map.

Plenty of spaghetti code here- I wrote this purely as a test implementation.

Communication between usermode and kernel is done through a buffer allocated in the usermode process (no callbacks, and thus less detection vector)

Usermode process loads the kernel driver through the following method:

Run a vulnerable intel driver which has access to allocating/writing to kernel through IOCTL control, and the ability to call function.
Get the vulnerable driver to allocate the buffer in kernel space.
Manually map the driver (solve relocations, fix imports etc.) and then write it into memory.
Create a JMP to the driver's entry function by modifying the memory of a kernel function (NtAddAtom since it has a call instruction near the beginning)
Unload the vulnerable driver and remove all traces of it to prevent detection

We then draw by creating a transparent window which overlays on top of the game and draw using D2D.

Kernel driver reads/writes physical memory. Way stealthier.

Name		Name	Last commit message	Last commit date
Latest commit History 45 Commits
Kernel		Kernel
Usermode		Usermode
kernel/kernel/utils		kernel/kernel/utils
usermode/game (TEMP MOVE THIS TO DLL)		usermode/game (TEMP MOVE THIS TO DLL)
.gitignore		.gitignore
Havoc-Kernel-Cheat-Base.sln		Havoc-Kernel-Cheat-Base.sln
README.md		README.md
shared_structs.h		shared_structs.h
xorstr.h		xorstr.h

Provide feedback