To try everything Brilliant has to offer-free-for a full 30 days, visit brilliant.org/cazz/. The first 200 of you will get 20% off Brilliant’s annual premium subscription.

"Look I can even do it backwards." Absolute monster XD

Finding resources this good is extremely difficult, thanks for releasing this content for free legend

I was going to propose to Cazz if he could make slightly longer videos and this man just drops over an hour of content😂 Dude’s already absolutely going off the rails in all the good ways. Definitely gonna watch this whole! ❤ my guy

Why haven't I seen this channel earlier? There is a lot of stuff that I can learn about windows and game cheats. Now I need to watch every single video to know everything. Thanks for your work.

I have no intention to make a kernel cheat, I don't even use windows, and yet here I am anyway

Thanks Cazz! I learned so much from you in the past few weeks. Humanity can be proud to have you. Keep going. You are my main source when it comes to c++ and game hacking in general!

Tutorials like this where things are really spelled out for you are so valuable. Thank you. The game hacking community can be very gatekeep-y at with information and people like me just need things shown to them to understand. Appreciate you.

I figured you were South African but when I heard the "yoh if I could spell" I knew

If anyone has perfomance issues on windows (booting and while using it) after this. Disabling bcdedit with bcdedit /debug off did the job for me

Thank you so much Cazz for sharing all your knowledge with us man 🔥

After "bcdedit /debug on" and rebooting, things can start going crazy. Slow boot, freezes time-to-time. As far as I have read - this is UEFI/BIOS nuances. bcdedit can be slower on UEFI systems due to synchronization between NVRAM (which holds UEFI boot variables) and the BCD (Boot Configuration Data) stored in the registry. If anybody faces this - do not freak out. Just disable kernel debugging. Things should go back to normal 💪

Just the first 30 minutes of the setup is gold -- very well explained, thank you. 🙏

Great Video as always. Where did you learn stuff like that anyway?

MS devs back in the day didn't call the blue screen "blue screen of death". They call it simply blue screen or a BugCheck. BugCheck(or KeBugCheck) is a function down in the NT API that allows to raise the blue screen in the event that something down in the kernel. I'm here mostly for malware development, because the knowledge between cheat development and malware development is interchangeable. Like creating drivers and making malware that is invisible to the antiviurs or an IDS program. Or bypasssing anticheats, that are behaving like antiviruses themselves. The more you live, the more you learn.

Bro this is like a course omg thank you for this knowledge u are the best!

Damn lol, just discovered your channel start of this month when coding for my DMA cs2 cheat, you videos helped with some additional knowledge. pretty convenient how you start uploading now again😂 Welcome back

Thanks!

THE RETURN OF THE KING Welcome back Cazz 👑

Great video! Btw, if someone gets an error about lower version of WDK extension than VS requires, then install WDK through the windows installer (individual component)

how long did it take you to learn all this man, my head explodes just by watching.

"I really hope this doesn't ruin cs2" UD cheats are like 5 bucks a month already lol. Great video, as always. Really appreciate your hard work.

A tutorial for user mode driver (UMDF V2) would be greatly appreciated. This video is invaluable, nevertheless.

I use Linux exclusively on literally all my devices but boy do I enjoy this kind of content, pop corn ready

Crowdstrike should watch this

Amazing video! Thanks for this detailed tutorial!

Thank you for sharing these valuable resources! Much appreciated ❤

I was waiting for this!!! ❤❤

This video is awesome and I learned a lot. Thank you very much cazz! It would be great if you could make more videos about drivers. e.g. minifilters, anti-delete for our cheat solutions or kernel mode bypasses.

thankyou for your hardwork : easy to understand because of your explanation

If anyone has "No certificates were found that met all the given criteria SIGNTASK" then: Go to properties of Kernel Project -> Driver Signing -> General and set Sign Mode to "Off"

Do you know any other articles/tutorials/resources that teach more advanced stuff about kernels?

Hello coded it up yesterday works like a charm I love it. Thanks so much! but I gotta rather picky question just simply why the bool in_air reversed?

DUDE NO WAY I WAS SEARCHING YESTERDAY FOR A TUT AND CAZZ SAVED THE DAY TODAY!!!!!!

great tutorial great for beginners but i would recommend u only use this one usermode anti cheats as its the basic ioctl communication

Thanks, I'm planning on writing a driver api wrapper in the future to minimise differences between linux and msw so this was helpful for that future plan. For now though I'll be focusing on a separate more important project for ending the need for compiling *.exe/*.elf/*.dll/*.so directly (in most cases, certain exceptions apply, underlying wrappers can still be used though)

Thanks this is very informative video but can you make a video for vanguard bypass for Leauge of Legends? or just how to disassemble the vanguard. sys and find how to bypass

If you want to use this without KDMapper (I have AMD chip, so i use disable DSE instead): just write everything in DriverEntry function and delete IoCreateDriver implementation. To load just use (cmd -admin): sc create your_service_name type= kernel binPath= c:\yourDriver\yourDriver.sys then disable DSE sc start your_service_name

wow i have been waiting for this! thank you!

It's incredible. Thanks for your work. Your videos are always interesting but this one is the best. I'm waiting for more 👏

first time in my entire life leaving a comment when a video posted recently

Thank you for your video! It was pretty clear, however, could you please tell me, how did you find the IoCreateDriver and the other if it isn't documented? How can I find the other functions which are not documented? Thank you!

Thank you for making videos man, and not only just making them but putting in so much effort. I just wish I had this level of motivation towards something lol

p2c in shambles after this comes out, good job Cazz !!!

to fix client + client_dll not found, please use the below code! const auto local_player_pawn = driver::read_memory(driver, client + cs2_dumper::offsets::client_dll::dwLocalPlayerPawn); I hope this helps!

It's such a whelsome feeleing trying to learn something while U understand only 10% of what's going on there))

Would this be the same for EAC?

!!!!!! IMPORTANT If you making driver for Tarkov, be carefully with "bcdedit /debug on" and dont forget write "bcdedit /debug off" after debugging on VM, because you can catch game freezes completely

Wow dude, what a brilliant video!!!

Me: wow, really cool NoOne: CS2 devs watching carefully

everything worked just fine until 19:23 when I launch VMware to test the connection & I get an error message that reads: Transport (VMDB) error -14: Pipe connection has been broken. I google the error & did everything suggested but nothing worked. Guess I'm just not gonna use VMware then

Cazz gives me a tingly feeling with these videos

could you do a part 2 on this for injecting a DLL into a process from the kernel driver?

Could you do a video on either MmMapIo Managing / Usage or creating a loader/mapper tool for the drivers like say using a DSE Bypass to load a driver over NtLoad and then using that driver to map the other driver into kernel space with a pre-defined object and then calling the OEP and starting a thread out of the mapping driver to bypass Ps Module Lists in the NTOSKRNL Structs? I've been studying this and a lot of other people do too so it would be cool.

In offsets there is no dwForceJump now. So what to do?

im unable to find FoceJump in the offsets have they changed?

LOVE YOUR CHANNEL , Please please please keep it up.

Hey man! Tysm for the video, truly appreciate it. Just wanted to ask how to go about a driver that works for AC’s that run on KM and not UM, for example EAC. Asking because I want to code a driver for Apex

You are awesome, keep going and i hope you success

thank u so much brother this is exactly the video i needed

you forgot the part where I try running it in my host and it bluescreens and bootloops But honestly, great content! Though I'm not into C++, still love your videos ❤

tried and followed everything, all was good until 1:13:26, when i dropped km.sys into kdmapper, the terminal was not showing anything. the debugger was not showing any of the 4 messages as well. what could be the problem?

BRO THIS VIDEO IS AMAZING

Thank you cazz ❤🔥🔥

You should do a part 2 continue building on this driver. Swap out IOCTL for UM-KM shared memory, pointer/function hooking, callbacks. Maybe impersonate a PatchGuard thread? ;)

im too incompetent to make a cheat, nor do i want to make one, but youtube continues to recomend me this channel

Bro please make a video that how to make Bypass for those games that need Emulator like PUBG. love you bro from Afghanistan!

Make a video on how you learned assembly

Well, driver working, my cheat is working, but any idea to fix the "Failed to create the driver handle" after restarting the PC ? If i want it to work again after rebooting i need to modify the 4 names of the driver and use Kdmapper again... Any fix to this ? I don't want to rename it everytime and map it everytime with kdmapper if their is a way for both, please let me know.

This is amazing, Thanks you for this video.

great stuff!! 🥰 One anticheat i am trying to brake hopefully with this guid is using TLS callback as way to know if user is doing sketchy stuff. Would this method bypass the check? Is there another way i could bypass the TLS callbacks?

Amaizing tutorial! Thanks.

1:21:07 how u enabled showing "vKey" near VK_SPACE ?

legend is spoon feeding us, watch it whole dont skip u dont wanna miss anything important

Nice video would you do that same thing for a Normal Injector ?

Gratitude be upon thee for bestowing thy wisdom without demand of coin

i suck at coding, thanks for making that clear again

34:57, that's NOT what a pid (process id) is, that is a handle to a potentially zombified process. A pid is a DWORD and it is possible for it to change which process it references if the referenced process closes between getting that pid and using it to try and open said process. For the sake of others reading this, it is however correct to use the HANDLE since there's only one process it can refer to while the handle is open, unlike the pid which is only useful when you've yet to open a process handle. Once the handle is open you're supposed to verify the handle is to the process you intended (excluding situations where the user is directly involved like Cheat Engine) just in case the process you intended closed and new one took over the pid you had found.

Thats a good tutorial actually. Its very helpful. Definetely Recommend this guy!

I liked your vid before started watching

I've been waiting for this for so long, very anticipated, can't wait to start. Thanks cazz!

new to this all, will this work on win11?

I’m getting an errors- violated CI chase policy and Failed to create driver kernel. Why. Code was built successfully

thank you just what I've been looking for i'm early:)

you should make more videos on kernel gh

thanks for the upload

You have a great voice !

no wonder you’ve been quiet can only imagine how long this took

I’m getting a “No certificate were found that met all the criteria” error in km. How do I fix it

what do you do if serial port has no number? does that matter? is it default 1 or do i leave the pipe like this: \\.\pipe\com_

Do you have any resources for studying how to bypass kernel level anti-cheats?

[-] Failed to establish symbolic link. What should I do?

does this work with EAC/BE/Cr3/UAC/Fortnite? like for example tourneys?

hello, for me the driver was warking fine only for the frist time that i mapped it , when i restarted the pc for the first time it stopped working showing Failed to create our driver handle. if i change the name of the driver i can map it another one time until i reboot again.

Your visual studio looks awesome how can i do it like this?

Can you make a tutorial on kernel's for kernel anti-cheats?

thanks a lot for this.

How can I call the game function? I couldn't find any resources on this topic. For example, I want to call the jump function. Could you create a video about it?

hey bro i want to ask u is visual studio not anymore safe which alternative should i use?

Amazing content!! As a side note, i was wondering: I got a firewire soundcard that has no drivers for the latest Windows.. Considering we know what is the FireWire chip you think we could code one ourselves? Is there such a thing as reverse engineering a driver already made and then updating it?