Jump to content
Tuts 4 You

Denuvo Releases Kernel Level Anti-Cheat


Recommended Posts

https://arstechnica.com/gaming/2020/05/doom-eternal-anti-cheat-kernel-driver-is-safer-than-others-denuvo-says/
https://www.pcgamer.com/doom-eternals-first-update-includes-denuvo-anti-cheat/
https://www.gamespot.com/articles/doom-eternals-new-denuvo-anticheat-protection-rais/1100-6477329/

Another game / company to follow suite in the new era of lazy-mode protections by jumping on the kernel-level trend. This time it's Denuvo, the already hated company in the gaming space. 

Can't wait to see what kind of hilarious exploits come from yet another insecure driver!

Link to comment
Teddy Rogers

Bethesda doing what they are good at, getting it wrong.

Aside from the fact there is a driver for the anti-cheat I can understand existing customers being disgruntled at being forced an update with this included.

Unless I am mistaken, please correct me if wrong, I don't think it should be necessary to run in single player mode...

Ted.

Link to comment

According to multiple people, you can't even launch the game itself without the AC installed/running. So this does affect the single player mode too, even if it does nothing while playing single player.

Link to comment

Cant CreateFile, DeviceIoControl, CloseHandle be hooked, the driver logic emulated in user mode and the communication scheme be emulated to work around it in both offline/single player and online/multiplayer mode.  Not that emulating the call logic is going to be trivial, but would make for a very generalized medicine.

Link to comment
  • 3 months later...
On 5/16/2020 at 12:44 AM, Progman said:

Cant CreateFile, DeviceIoControl, CloseHandle be hooked, the driver logic emulated in user mode and the communication scheme be emulated to work around it in both offline/single player and online/multiplayer mode.  Not that emulating the call logic is going to be trivial, but would make for a very generalized medicine.

Just like SSDT can be checked and the 10 anti-DKOM API can be called.

By the way it's funny that there are Denuvo discussions here and there are like a couple dozen Tut4you and SnD people working at Denuvo

  • Like 1
Link to comment

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...