BE-Handler

BE-Handler is a project that will allow you to create a handle, and maintain it until battleye strips it. (5 seconds)
But, you can always just create a new handle

credits:
-me - coding
-friend( but he doesn't want his name here ) - idea and some help + some code
-vergilius project - structures
-https://github.com/notscimmy/libelevate - a lot of inspiration
-a post by rake about callbacks on his website

Callbacks go brrrr

only tested on 1909*

In its current state its detected.
Even if it is UD, the handle is plainly seen by BE and they will upload it to server for some manual review.
If you would like to use this either change the driver entry to your params, or change your mapper run commands.

Kdmapper ex:
Code:

1. intel_driver::CallKernelFunction(iqvw64e_device_handle, &status, address_of_entry_point, kernel_image_base, image_size)

After compiling, either change your process name that creates a handle to "Meme.exe" or change the usermode_process in driver entry.

NOTE: i have one anti paste i added in driver thread, you will see it.

proof:




compiled:
working driver
working kdmapper
usermode example


source:

??????? BE-Handler is a anti cheat? i dont know what is this??

what is it ?

I don't think it is useful bcz the handle lasts only 5 sec

can you tell me how its work? because the code seems suspicious for me

how does this work?