Explore the underground world of anti-cheat systems in this Black Hat conference talk. Delve into the state of the cheating market, examining interesting cases and their implications. Gain a deep understanding of various anti-cheat techniques through detailed explanations and real-world results. Learn about hijacking scenarios, named pipes, screenshot analysis, and fine mapping. Discover anti-write implementations, hooking examples, and the role of DLLs in cheat prevention. Investigate kernel drivers, memory manipulation, and the use of memory scanners in anti-cheat systems. Suitable for both newcomers and experts in the field, this comprehensive presentation covers market analysis, financial implications, and practical demonstrations, concluding with valuable insights and access to GitHub repositories for further exploration.
Overview
Syllabus
Introduction
AntiCheats
Numbers
Apex
Server
Driver
dll
External Process
Cheating on Glasses
Market Analysis
Money on the Table
The Numbers
Setting Goals
Hijacking
Scenario
Named Pipes
Screenshot
Fine Mapping
AntiWrite Implementation
Hooking Examples
DLLs
Cold Caves
Name Pipes
Kernel
Drivers
Call EC
Apex with EC
Memory Manipulation
Demo
Memory Scanner
Conclusions
GitHub repositories
Taught by
Black Hat
