danielkrupinski/x86RetSpoof danielkrupinski/x86RetSpoof

  • Stars
    star
    160
  • Rank 234,703 (Top 5 %)
  • Language
    C++
  • License
    MIT License
  • Created almost 3 years ago
  • Updated over 1 year ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
danielkrupinski/x86RetSpoof
github

danielkrupinski

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Invoke functions with a spoofed return address. For 32-bit Windows binaries. Supports __fastcall, __thiscall, __stdcall and __cdecl calling conventions. Written in C++17.

x86RetSpoof Windows

Invoke functions with a spoofed return address. For 32-bit Windows binaries.

How to use

  1. Include x86RetSpoof.h in your project.
  2. Find FF 23 byte sequence (gadget, machine code equivalent of jmp dword ptr [ebx]) in the executable code section of the module you want the spoofed return address to appear in. The address of it will be the gadgetAddress and the invoked function will see it as the return address.
  3. Call the function with x86RetSpoof::invoke...() matching the calling convention of the target function.

Example

Calling MessageBoxW function:

x86RetSpoof::invokeStdcall<int>(std::uintptr_t(&MessageBoxW), std::uintptr_t(gadgetAddress), nullptr, L"text", L"title", MB_OK);

More Repositories

1

Osiris

Free and open-source game hack for Counter-Strike 2, written in modern C++. For Windows and Linux.
C++
3,198
star
2

VAC

Source code of Valve Anti-Cheat obtained from disassembly of compiled modules
C
678
star
3

VAC-Bypass

Valve Anti-Cheat bypass written in C.
C
526
star
4

VAC-Bypass-Loader

Loader for VAC Bypass written in C.
C
459
star
5

MemJect

Simple Dll injector loading from memory. Supports PE header and entry point erasure. Written in C99.
C
435
star
6

GOESP

Cross-platform streamproof ESP hack for Counter-Strike: Global Offensive, written in modern C++. Rendering and GUI powered by Dear ImGui + FreeType.
C++
432
star
7

Anubis

Free open-source training software / cheat for Counter-Strike: Global Offensive, written in C.
C
177
star
8

OneByteWallhack

CS:GO wallhack achieved by patching one byte of game memory. Written in Python 3.
Python
161
star
9

vac-hooks

Hook WinAPI functions used by Valve Anti-Cheat. Log calls and intercept arguments & return values. DLL written in C.
C
157
star
10

OneByteLdr

Bypass for CS:GO's LoadLibrary injection prevention mechanism, achieved by patching one byte of game memory.
Python
156
star
11

cs2-anticheat

Anticheat code found in Counter-Strike 2 binaries.
139
star
12

OneByteRadar

CS:GO radar hack achieved by patching one byte of game memory. Written in Python 3.
Python
102
star
13

Inflame

User-mode Windows DLL injector written in Assembly language (FASM syntax) with WinAPI.
Assembly
84
star
14

StringPool

A performant and memory efficient storage for immutable strings with C++17. Supports all standard char types: char, wchar_t, char16_t, char32_t and C++20's char8_t.
C++
49
star
15

KernelProcessList

Example Windows Kernel-mode Driver which enumerates running processes.
C
47
star
16

OsirisInventory

Inventory Changer for CS:GO
C++
36
star
17

Caesar

Open source cheat for Steam version of Counter-Strike 1.6.
C
29
star
18

OneByteMoney

CS:GO hack displaying enemies' money, achieved by patching one byte of game memory. Written in Python 3.
Python
26
star
19

PE2HEX

PE executable to array of bytes converter
Python
21
star
20

KernelPID

Example Windows Kernel-mode Driver which finds process ID by executable file name.
C
16
star
21

mars

An open source Counter-Strike: Global Offensive cheat for Linux.
C
16
star
22

csgo-champion

Champion - external CS:GO cheat for Linux
C++
16
star
23

KernelThread

C
13
star
24

helloworld-driver

C
11
star
25

OneByteQuickDuck

CS:GO quick duck achieved by patching one byte of game memory. Written in Python 3.
Python
9
star
26

fnv-cpp

C++
7
star
27

rusty-csgo

Attempts at internal game hacking (CS;GO) with Rust
Rust
6
star
28

windows-account-creator

Batch script to create user accounts in Windows.
Batchfile
6
star
29

FASM-DLL

Assembly
5
star
30

curiumcheat-cuphead

Curium is an open source cheat for Cuphead game.
C++
4
star
31

no-CRT

C++
4
star
32

winapi-calculator-cpp

WinAPI Calculator written in C++
C++
3
star
33

Feb

Assembly
3
star
34

lennox-engine

Lennox Game Engine
C++
3
star
35

Jector

Assembly
3
star
36

Fet

Assembly
3
star
37

cmake-demo

A collection of CMake scripts for C and C++ projects.
CMake
3
star
38

cpp-playground

C++
3
star
39

helloworld-DLL

Hello world! - DLL
C
3
star
40

helloworld-rust

Rust
2
star
41

helloworld-fasm

Hello world! - FASM
Assembly
2
star
42

zxvnme.github.io

zxvnme's site
CSS
2
star
43

RGBEngine

C
2
star
44

fnv-c

C
2
star
45

php-playground

PHP
2
star
46

ArchiveX

C++
2
star
47

opengl-base

Base OpenGL 4.6 application written in C.
C
2
star
48

snake-cpp

C++
2
star
49

cpp98-playground

C++
1
star
50

BSOD

Assembly
1
star
51

Feg

Assembly
1
star
52

curiumcheat-maxpayne

Curium is an open source cheat for Max Payne game.
C++
1
star
53

colormix-cpp

C++
1
star
54

coinflip-cpp

Coin flip simulation program.
C++
1
star
55

cout-vs-printf

Cout vs printf benchmark
C++
1
star
56

js-playground

HTML
1
star
57

binary-cpp

Binary - decimal calculator
C++
1
star