BlindEye: BattlEye kernel module bypass

logo

Overview

BlindEye is a kernel module that prevents the BattlEye kernel module from reporting abnormal data.

Mechanism

By hooking the ExAllocatePool and ExAllocatePoolWithTag functions imported by the BattlEye kernel module, the memory allocation requests of the “report” function are dropped and the kernel detections are bypassed.

Details

中文

English

GitHub

View Github