Reveal Scanner is the most thorough FiveM screenshare tool on the market. One PowerShell command pulls a full forensic report — even on renamed, fileless, and projector-hidden cheats — and surfaces every piece of evidence in your browser.
Most screenshare tools dump a wall of registry text and call it a day. Reveal Scanner gives you a verdict, a reason, and every piece of evidence pre-categorized — so you can rule on a screenshare in minutes, not hours.
Finds cheats even after the EXE is deleted. Scans BAM, Prefetch, MuiCache, UserAssist, vulnerable kernel drivers, DNS cache, hosts file, and PowerShell history — the places nobody cleans.
Detects window-mirror projectors used to render game content onto a hidden display. Catches DWM thumbnail, Windows Graphics Capture, and stream-proof flags — even with the cheat closed.
Inspects each binary's embedded PE metadata, version-info, and imported Win32 APIs. Detects cheats even when renamed to `1234.exe` and stripped of obvious identifiers.
Every finding is a clickable card — open the registry key in regedit or the file in Explorer with one click. No copying paths into other tools.
Each verdict comes with a written analysis explaining what was found, why it matters, and what the cheater would have had to do to wipe it. Train new staff faster.
The player runs one PowerShell command. Nothing to install, nothing to download, nothing to refuse. The forensic logic runs locally on their machine and reports back in seconds.
Sign in with your license key, click Start session. You get a unique one-liner that's valid for 7 days.
iex (irm app.revealscanner.cc/run/…)Drop the command in screenshare. They open PowerShell as Administrator and paste. The forensic script runs entirely on their machine.
Verdict, evidence chips, full reasoning, and clickable cards appear in your browser the moment the script finishes. No refresh, no email, no waiting.
Every plan includes every detection. No "premium tier" gates, no per-session fees, no surprise renewals.
For active screenshare crews
One payment, every future update
No. They open PowerShell as Administrator and paste one line. The script runs from memory, collects forensic evidence, and uploads the report. Nothing is written to disk on their machine.
That's the most common scenario and exactly what Reveal Scanner is built for. BAM, Prefetch, MuiCache, UserAssist, AppData config folders, Defender exclusions, Windows Error Reports, vulnerable kernel driver registrations, and the DNS resolver cache all persist long after the cheat is closed. We scan every one.
Renaming the EXE doesn't touch the embedded PE version-info (CompanyName, ProductName, OriginalFilename) or the imported Win32 APIs that the cheat depends on. Fileless cheats still need a kernel driver to bypass anti-cheat — we detect those by name from a curated list (RTCore64, kdmapper, KsDumper, Process Hacker, mhyprot2, etc.).
The script is open source — you can inspect the entire forensic logic at our public mirror before pasting it. It uses standard Windows APIs (registry reads, fsutil, Get-MpPreference, etc.). It does not modify the system. It does not install anything. It does not transmit anything except the final JSON report to your private session URL.
Most tools (PureIntent, RedLotus, etc.) give you a wall of registry text and expect you to interpret it. Reveal Scanner returns a categorized verdict (OBS / Projector / Nvidia-AMD), three filterable evidence lists, plain-English reasoning for every finding, and clickable cards that jump straight to the file or registry key.
Reports are stored on our server for 7 days then auto-purged. Only the admin who started the session can view them. The script does not collect browser history, documents, personal files, screenshots, or anything beyond the forensic registry/filesystem traces needed to verify recording activity.
Click Buy lifetime or contact us on Discord for monthly access. Keys are HWID-locked to one machine and arrive immediately after payment.
Sign in with your license key — the next screenshare runs in 60 seconds.
Sign in →