SkillAgentSearch skills...

KEPaboo

Neutralize KEPServerEX anti-debugging techniques

GenerateConvertImprove

Install / Use

/learn @0vercl0k/KEPaboo
About this skill

Quality Score

0/100

Supported Platforms

Universal

README

KEPaboo - Neutralize KEPServerEX anti-debugging techniques

Builds

<p align='center'> <img src='pics/kepaboo.gif'> </p>

Overview

KEPaboo is a utility that neuters anti-debugging techniques used by KEPServerEX to prevent people from debugging their code. It is not a security issue, and it has been tested against on the version 6.12.361.0 (February 2023) on Windows 10 64-bit.

Usage

Download KEPaboo binaries from the Releases section and run it as an Administrator to register it as KEPServerEX's Debugger via Image File Execution Options. By doing so, KEPaboo can start automatically when KEPServerEx is launched.

When you start the KEPServerEx service, KEPaboo acts as a small proxy layer that performs the following tasks:

  • Starts the server_runtime.exe process and debugs it
  • Hooks into NtSetInformationThread and NtQueryInformationProcess by modifying ntdll's Export Address Table
  • Listens for a debug event generated by an INT 2D instruction, and patches the code to restore the expected execution flow
  • Detaches itself from the server process, allowing you to attach your favorite debugger
  • Waits until the server process ends

To unregister KEPaboo without rebooting, run it as an Administrator again, and it will detect that it was previously registered and remove itself.

Note that the registry modification is volatile, which means that it will disappear after a reboot. If you want to use KEPaboo again, you will need to re-run it.

Build and debug

Clone the repository with:

(base) > git clone https://github.com/0vercl0k/KEPaboo.git

You can open the Visual Studio solution KEPaboo.sln or build it via the command line with:

(base) KEPaboo>msbuild /p:Configuration=Release src\KEPaboo.sln
Microsoft (R) Build Engine version 16.7.0+b89cb5fde for .NET Framework
Copyright (C) Microsoft Corporation. All rights reserved.

[...]

Build succeeded.
    0 Warning(s)
    0 Error(s)

Time Elapsed 00:00:00.42

Use the debug configuration, attach a debugger to KEPaboo.exe. You should see debug outputs in the console window of the debugger.

Authors

Related Skills

node-connect

342.5k

Diagnose OpenClaw node connection and pairing failures for Android, iOS, and macOS companion apps

frontend-design

85.3k

Create distinctive, production-grade frontend interfaces with high design quality. Use this skill when the user asks to build web components, pages, or applications. Generates creative, polished code that avoids generic AI aesthetics.

openai-whisper-api

342.5k

Transcribe audio via OpenAI Audio Transcriptions API (Whisper).

qqbot-media

342.5k

QQBot 富媒体收发能力。使用 <qqmedia> 标签,系统根据文件扩展名自动识别类型(图片/语音/视频/文件)。

0vercl0k

View profile

View on GitHub
GitHub Stars33
CategoryDevelopment
Updated2mo ago
Forks5
0vercl0k/KEPaboo

Languages

C++

Security Score

95/100

Audited on Jan 10, 2026

No findings