Tower of Flaws: Dismantling Tower of Fantasy's Anti-Cheat Driver While Waiting for The Game to Install
Summary
The piece analyzes Tower of Fantasy's anti-cheat kernel driver, exposing weak authentication and full BYOVD capabilities. It details how arbitrary process termination and protection can be triggered via IOCTLs, and how existing security controls can be undermined, including references to CVE-2025-61155. The article offers lessons for kernel driver developers and security teams on tightening authentication and reducing attack surface.