Hack Detection

**[MPGH]AVGN** · 06-17-2011

Do you think a person at ahnlabs manually enters md5's from the dlls in to the hacksheild database, or do you think it is an automated program of some kind?

How do you think they detect strings? Do they got a guy sitting around reverse engineering the hacks all day?

And if so.. this guy must be a lazy rat.. lucky for us.

**flameswor10** · 06-17-2011

Originally Posted by AVGN

Do you think a person at ahnlabs manually enters md5's from the dlls in to the hacksheild database, or do you think it is an automated program of some kind?

How do you think they detect strings? Do they got a guy sitting around reverse engineering the hacks all day?

And if so.. this guy must be a lazy rat.. lucky for us.

I reckon each time a hack is used, the md5 hash gets sent to the servers.
And if the md5 is used alot of times, it gets stored in database.

**[MPGH]AVGN** · 06-17-2011

But if you are playing undetected, how would it even know its there?

**supercarz1991** · 06-17-2011

yeah...why if u keep a hack 100% private to only yourself...can you use it for a month, but pubs need updated once a weekish

**freedompeace** · 06-17-2011

Originally Posted by flameswor10

I reckon each time a hack is used, the md5 hash gets sent to the servers.
And if the md5 is used alot of times, it gets stored in database.

Fraps, Hypercam, detoured.dll

Originally Posted by AVGN

Do you think a person at ahnlabs manually enters md5's fro the dlls in to the hacksheild database, or do you think it is an automated program of some kind?

How do you think they detect strings? Do they got a guy sitting around reverse engineering the hacks all day?

And if so.. this guy must be a lazy rat.. lucky for us.

Manually? Fuck no, imagine how long that would take and thus how much they'd have to pay the poor guy D:

They don't actually give a shit about individual hacks.

**flameswor10** · 06-17-2011

Originally Posted by freedompeace

Fraps, Hypercam, detoured.dll

I meant crashed

**.::SCHiM::.** · 06-17-2011

Man, if I were ahnlabs /nexon I'd do so much better.
Starting with PEB module checker, every dll that doesn't belong there gets thrown out, md5/cr32 messages get sent.
Check my no recoil addresses for bytes that don't belong there: nop/others
Build 2 separate builds 1 with and 1 without console. Impend a proper hardware/ip ban system. Make the driver start the engine.exe and not the other way around (as to block injection from the very start of execution) etc. etc, ahnlabs sucks dick. M

**[MPGH]AVGN** · 06-17-2011

I guess nobody knows the answer.

**freedompeace** · 06-17-2011

Originally Posted by AVGN

I guess nobody knows the answer.

@AVGN i kinda answered it up there ... you know, kind of?

**[MPGH]AVGN** · 06-17-2011

Originally Posted by freedompeace

@AVGN i kinda answered it up there ... you know, kind of?

say you worked at ajob 40 hrs a week..

how long would it take you to get all the md5's from all the hacks from popular hack sites?

cmon.. I could do that in like 30 minutes or less like dominos

and they have enough damn money that they could afford $20/month to buy a vip and detect it. considering the employees probably make $20/hour

**freedompeace** · 06-18-2011

Originally Posted by AVGN

say you worked at ajob 40 hrs a week..

how long would it take you to get all the md5's from all the hacks from popular hack sites?

cmon.. I could do that in like 30 minutes or less like dominos

and they have enough damn money that they could afford $20/month to buy a vip and detect it. considering the employees probably make $20/hour

But they don't. And if they do, it takes them ~2 weeks to do so, which doesn't sound very effective to me. In my opinon, its responsible of them to not to do that. Not having something is far better than a cure. Improve the technology, not build a 50MB list of hashes.

AhnLab are responsible for the technology. They are responsible for preventing game hacking in general, not just Combat Arms. Adding hashes for Combat Arms hacks makes no sense when they also serve another 200 games...

**nucks** · 06-18-2011

@AVGN you know when alot of people inject the hack the hash strings go into there database and if the same hash goes into the database too many times they move the hash to the black list.

**[MPGH]AVGN** · 06-18-2011

So its nexons job to update HS? not ahnlabs?

That explains it... nexon lazy rats

**markoj** · 06-18-2011

Originally Posted by AVGN

So its nexons job to update HS? not ahnlabs?

That explains it... nexon lazy rats

You just wait for NexonGUARD mothafucka

**[MPGH]AVGN** · 06-19-2011

Originally Posted by markoj

You just wait for NexonGUARD mothafucka

Thread: Hack Detection

Thread Tools

Display

Hack Detection

The Following User Says Thank You to .::SCHiM::. For This Useful Post: