2: Running REplay

To run REplay, there are a few things you should know.

REplays initiation

The first thing REplay must do before actually being live to use is first initiate the required data and information. This means downloading the proper files or installing indexes depending on the level and verifying information.

Note that none of these files are actually malicious. It is a bunch of dummy data that is there for the purpose of the exploit code being registered into the program (but due to invalid data, the exploit will fail all the time making it semi-simulation)

So when you start REplay the first time around, it might need to be reloaded.

REplays permissions

for Level 1, elevated permissions are not required, but for level 2 they will be. This is due to-

• Permissions to start local connections

• Permissions to lock files

• Permissions to read processes

• Permission to execute specific commands

• and more

So if you want to be bug free when running it and exploring the GUI, then you need to make sure that it runs in an elevated permission zone.

REplay is technically malware

REplay was designed to mimick a fancy game cheat that was on the market for many different games. This game cheat actually utilizes WinAPI calls such as ReadProcessMemory, WriteProcessMemory, and many other functions and symbols relevant to anti-analysis and more.

Windows defender ill delete REplay as it will detect it as a virus. You will need to whitelist REplay and all of the files it downloads remotely. THIS IS ALSO WHY I SUGGEST USING A ISOLATED DIRECTORY