sin

@weezerOSINT larp sahur

@sinfulrawr The post does not claim this is a new exploit nor is it dedicated to game cheats, it is more to shine light on windows broken architecture and how it is used in malware currently.

the same technique giving cheaters wallhacks in Valorant is the same one being used in malware to pwn you. Still working no patch, undetected from AV's and AC's. I pulled the source from a cheating forum, built it, and ran it on my fully patched Windows 11 machine. it reads memory straight out of another running program without needing admin, without loading a driver, without calling any API that your EDR monitors. it just uses two normal Windows functions that have existed since the 90s, SetWindowsHookEx and SendMessage. I reversed the root cause in Ghidra. two functions that ship in every copy of Windows ntdll.dll and shell32.dll will blindly execute whatever function pointer you hand them through a window message. Microsoft's own exploit protection CFG signs off on it because they're legitimate functions. no CVE. no patch. 279 stars on GitHub. Microsoft won't fix it because they consider same-privilege process interaction "by design." Chinese researchers found the same technique in live malware back in 2023.

@0xFracks this guy is a preacher of Benjamin Netanyahu and will attempt to silence you at any cost.

nooo mr beast no ☹️☹️☹️☹️☹️

@0xChloride @0xFracks +1

@0xFracks can you put a disclaimer next time