|
@vm_call | |||||
|
Anticheats such as BattlEye have been trying to detect generic hypervisors, in particular those prevalent in the cheating community (DdiMon and hvpp), by using time-based detections. Here's some advice on that for the developers.
vmcall.blog/battleye-hyper…
|
||||||
|
||||||
|
Oliver Baumgart
@OliverBaumgart
|
15. sij |
|
Awesome article, Carl!
|
||
|
|
||
|
Oliver Baumgart
@OliverBaumgart
|
15. sij |
|
One issue though - there is a trend to actually virtualize your gaming-environment, e.g Google Stadia. I have a few friends who actually play their games legitimately in a QEMU environment.
|
||
|
|
||
|
Dima Kostenich
@dm_kostenich
|
15. sij |
|
But you still can handle rdtsc calls in root mode and provide corrected values back to caller to avoid time-based detection. So this method doesn't guarantee anything
|
||
|
|
||