README.md

ScyllaHide Detector

NEW Version

Check here version 2 https://github.com/lurumdare/ScyllaHideDetector2 with restore bytes.

Allows you to find the use of ScyllaHide, if your program will debug.

TODO

• win32u.dll signatures
• support x86

Done

• NtSetInformationThread
• NtSetInformationProcess
• NtQuerySystemInformation
• NtQueryInformationProcess
• NtQueryObject
• NtYieldExecution
• NtCreateThreadEx
• NtSetDebugFilterState
• NtClose
• NtQueryPerformanceCounter
• NtGetContextThread
• GetTickCount
• GetTickCount64
• OutputDebugStringA
• FindWindowA
• BlockInput
• NtUserQueryWindow
• NtSetContextThread
• GetLocalTime
• GetSystemTime

Screenshots

Detection

Thanks

Kirie Motoba (inject.ws russian re forum)