Deep Dive Research.
We don't just paste code. We figure out how the OS actually works under the hood.
Hypervisor Hooks
Writing EPT hooks to trap memory execution silently. If you don't patch actual bytes, you leave way fewer detection vectors for anti-cheats to find.
- Hyper-V
- VT-x
- AMD-V
EDR Blinding
Patching ETW-Ti and unregistering kernel callbacks so the EDR goes completely blind to whatever our processes are doing.
- ETW-Ti
- Callbacks
- Direct Syscalls
Advanced Persistence
UEFI bootkits and nasty COM hijacks to make sure our payloads stay running, even if someone tries to clean the system.
- UEFI DXE
- COM
- SMM