[Loki]

Hidden Content

You must register or login to view this content.

On a virtual machine, this returns a hypervisor-specific string across EBX, ECX, and EDX, such as "VMwareVMware," "Microsoft Hv," "VBoxVBoxVBox," or "XenVMMXenVMM.

[sinking]

I'll check this against the hiddenvm I posted.

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching | https://breachforums.ai/Forum-Ban-Appeals if you feel this is incorrect.

[Elrode]

hello than you for that

[notagh0st]

This is a neat little trick, but can also be easily thwarted by modifying the VM configuration file to set the CPUID to be whatever you want, such as a legit machine's CPUID. This shouldn't be used by itself, but along with several other anti-vm/anti-detect methods.

[Loki]

This is a neat little trick, but can also be easily thwarted by modifying the VM configuration file to set the CPUID to be whatever you want, such as a legit machine's CPUID. This shouldn't be used by itself, but along with several other anti-vm/anti-detect methods.

certainly, this is just one of the tricks

[laksor]

other than the cpuid if i remember correctly there are environment variables that are set by default by the hypervisor

[Nukemaster1113]

Making a custom protector so thanks

[Loki]

Making a custom protector so thanks

that sounds like a cool project!

[ricky_bobby]

learning more on vm shit so this is helpful thanks

[Nukemaster1113]

Making a custom protector so thanks

that sounds like a cool project!

It’s really fun man just takes a ton of time because I’m trying to one up vmp