README.md

July 26, 2024 ยท View on GitHub

FOSS Windows 10 & 11 Spoofer

This is a Free and Open Source Windows 10/11 spoofer. It's carefully programmed and thoroughly documented. I've dedicated a significant amount of time to refine it, ensuring smooth functionality across all modules. My motivation came from noticing issues with existing spoofers, such as poor programming, excessive bloat, and unnecessary system actions. Frustrated with the lack of reliable options, I conducted extensive research and programming to develop a truly effective, free, and open-source solution. Inspired by vektort13 and his projects antiOS_batch and AntiOS, I aimed to enhance and expand upon his work, making it 10 times better with additional functionality. Join the new project, Antidetect, and remember to stay elusive!

Important

By using these scripts, you acknowledge and agree that you are doing so at your own risk. The provider of these scripts makes no warranties, either express or implied, regarding their safety, reliability, or suitability for any purpose. You assume full responsibility for any consequences, damages, or loss that may arise from their use. The provider shall not be liable for any direct, indirect, incidental, consequential, or punitive damages resulting from the use of these scripts.

Support ๐Ÿ”ง

  • Supported โœ…
    • Operating System(s)
      • - Windows 11
      • - Windows 10
    • Motherboard Manufacture(s)
      • - ASUS
      • - MSI (Micro-Star International)
      • - ASRock
      • - Gigabyte / Aorus
      • - Biostar
      • - Supermicro
      • - ECS (Elitegroup Computer Systems)
  • Unsupported โŒ
    • Operating System(s)
      • - Linux
    • Motherboard Manufacture(s)
      • - Acer
      • - Dell
      • - HP
      • - Lenovo

Spoofing Functions โš™๏ธ

Spoof FunctionSupport
Local Windows User Accountโœ…
Local Computer Name (Device Name)โœ…
Network Computer Name (NetBIOS Name)โœ…
Custom DNSโœ…
Registryโœ…
MAC Addressโœ…
VolumeIDโœ…
SMBIOS DMIโœ…
Disk (HDD/SSD/NVMe) SerialsโŒ
RAM SerialsโŒ
GPU SerialsโŒ
NVIDIA UUIDโœ…
Monitor SerialsโŒ
PnP Device SerialsโŒ
ARPโŒ

Flushing/Cleaning/Deletion Functions ๐Ÿ—‘๏ธ

Cleaning FunctionSupport
DNS Cacheโœ…
ARP Cacheโœ…
Prefetch Filesโœ…
%TMP%\* Filesโœ…
*.log Filesโœ…
USN Journal ID(s)โœ…
Ubisoft, Valorant, cacheโœ…
Old Windows Backupโœ…

Spoofing Software

UEFI/BIOS Keys by Manufacturer

shutdown /r /fw /f /t 0
ManufacturerKey/Sequence
AcerF2
ASRockF2 or DEL
AsusDEL or F2
DellF2 or F12
GigabyteDEL or F2
HPESC or F10
LenovoF1 or F2
MSIDEL or F2
SamsungF2
SonyF1, F2, or F3
ToshibaF2 or ESC
Intel NUCF2

UEFI/BIOS Key Differences

  • If you use UEFI firmware, use GPT for the partitioning scheme.

  • If you use BIOS firmware, use MBR for the partitioning scheme.

  • UEFI (Unified Extensible Firmware Interface):

    • Modern firmware standard.
    • Supports both MBR and GPT (GUID Partition Table).
    • Operates in 32-bit or 64-bit processor modes.
    • Can have a graphical user interface.
    • Generally faster boot times.
  • BIOS (Basic Input/Output System):

    • Legacy technology.
    • Typically uses MBR (Master Boot Record) for booting.
    • Limited to 16-bit processor mode.
    • Has a text-based user interface.
    • Generally slower boot times.

Guides

Video Guides

Windows7
FFFF800000000000
FFFFFF0000000000

Windows8
FFFF800000000000
FFFFFF0000000000

Windows10(Fast Scan)
FFFF800000000000
FFFFA00000000000

Windows10(Slow Scan)
(Fast Scan Not Found Result)
FFFF800000000000
FFFFC00000000000
# Install the required module if not already installed
if (-not (Get-Module -ListAvailable -Name NtObjectManager)) {
    Install-Module -Name NtObjectManager -Force
}

# Import the NtObjectManager module
Import-Module NtObjectManager

# Get a handle to the current thread
$currentThread = Get-NtThread -Current -PseudoHandle

# Get the TrustedInstaller service
$tiService = Get-CimInstance -ClassName Win32_Service -Filter "Name='TrustedInstaller'"
$tiProcess = Get-Process -Id $tiService.ProcessId

# Open the process with duplicate handle rights
$tiProcessHandle = Get-NtProcess -ProcessId $tiProcess.Id -Access DupHandle

# Get the primary token of the TrustedInstaller process
$tiToken = $tiProcessHandle.OpenToken()

# Duplicate the token as an impersonation token
$impToken = $tiToken.DuplicateToken([NtApiDotNet.NtTokenDuplication]::Impersonation)

# Impersonate the current thread using the duplicated token
$imp = $currentThread.ImpersonateThread($impToken)

# Output the impersonated token
$impToken

# Run a command as TrustedInstaller
Start-Process -FilePath "cmd.exe" -ArgumentList "/c whoami" -NoNewWindow -Wait

# Revert to self after performing the required actions
$currentThread.RevertToSelf()