Share how awesome the crackme was or where you struggle to finish it! Stay polite and do not spoil the solution/flag!
Please keep the comments section English-only.
Author:
DeadEye707
Language:
C/C++
Upload:
2026-04-12 05:59
Platform:
Windows
Difficulty:
6.0
Quality:
6.0
Arch:
x86-64
Downloads:
74
Size:
160.94 KB
Writeups:
0
Comments:
0
Description
TryBypassMe (TBMKEv1) - Advanced Crackme Game Description and Goal: Welcome to TryBypassMe! This is a custom-built, educational top-down shooter designed specifically to test your reverse engineering skills. Your goal is to successfully reverse engineer the protections and create a working bypass/trainer (e.g., infinite health, infinite ammo, or score manipulation) without triggering the game-over kill switch or crashing the application. Because of the heavy integrity checks, simple memory patching or basic injections will not work. A valid writeup must detail exactly how you neutered the tamper guards, bypassed the kernel/watchdog communications, and successfully cheated. Features and Protections to Defeat: Ring 0 Kernel Driver (TBMKD.sys): Implements VAD scanning, handle stripping, remote thread blocking, and driver self-integrity checks. Encrypted Watchdog: User-mode watchdog process communicating via named pipes with strict HMAC validation and sequence numbering. Anti-Analysis: Aggressive debugger checks (PEB, HW Breakpoints, NtQueryInformationProcess), blacklisted process/window scanning, and TLS callback monitoring. Memory Defenses: .text section CRC hashing, IAT integrity checks, encrypted variables (shadow copies + canaries), and 24+ active tamper guards monitoring thread liveness and execution flow. Instructions and Warnings: USE A VIRTUAL MACHINE: This crackme installs a custom kernel-mode driver and system service. DO NOT run this on your host OS. Use an isolated, snapshotted VM. Extract the archive completely. The main executable, WatchdogMain.exe, and TBMKD.sys must all reside in the exact same directory. Run the game as Administrator (required to load the driver). Note to Moderators: This is an educational crackme built from scratch, not a commercial indie game. All "malware-like" behavior (driver loading, handle stripping) is strictly for the anti-cheat simulation. Dependencies: Windows (x64) Microsoft Visual C++ Redistributable (x64)