Problem:
Battleye checks .text section for patches.
Solution:
Get rid of them.
Problem:
Getting rid of them.
Solution:
Get rid of problem.
Battleye loaders their dll (beclient2) into the game they are protecting using LoadLibraryA. They download this dll and place it in the %temp% folder were it is then loaded and deleted.
But thankfully, for us, windows has this great feature that prevents 80 year old stinkers from deleted system32 to download more ram.
"This file is being used by another application"
Do you see were im going with this?
Battleye tries to load there dll to do their crc checks, but how will they even download said file if its being opened by another program? How would they load it?
All we need to do is open said file using (fopen) and proper commands, "wb"
Code:
Battleye checks .text section for patches.
Solution:
Get rid of them.
Problem:
Getting rid of them.
Solution:
Get rid of problem.
Battleye loaders their dll (beclient2) into the game they are protecting using LoadLibraryA. They download this dll and place it in the %temp% folder were it is then loaded and deleted.
But thankfully, for us, windows has this great feature that prevents 80 year old stinkers from deleted system32 to download more ram.
"This file is being used by another application"
Do you see were im going with this?
Battleye tries to load there dll to do their crc checks, but how will they even download said file if its being opened by another program? How would they load it?
All we need to do is open said file using (fopen) and proper commands, "wb"
Code:
- fopen(((std::filesystem::temp_directory_path().string() + _xor_("BEClient2.dll"))).c_str(), "wb");
