Tutorials and code pertaining to the development of anti-cheats.
Sticky Threads
After many rewrites and varying looks at how the library functions, I've finally decided I need to scrap the original design and redesign it entirely, for it was too volatile and unstable. Download: http://www.sendspace.com/file/fqk4ge Everything in the main.cpp source file is just...
I had a new idea for obfuscating all variations of operations possible on integers, float values, etc. It basically uses operator overloading as a way to convert basic operations, such as addition, a comparison, etc, to allow easy obfuscation of said functions. So, for example, while you may...
Released under the GPL... Some Anti-Cheat code i wrote a half year ago... ZORT
Normal Threads
http://0xf4.blogspot.com/2010/07/anaconda-my-first-packer.html I haven't worked on this project in almost two months now. It's messy, but, it gets the job done for now. Code is fairly self-explanitory, you'll find some of what I did was dumb (e.g. Stored the original EXE as a resource XOR'd...
Hey my names Adam, I have been lurking quite a bit around these forums trying to gain a better knowledge into what goes into developing an anti-cheat. But I think I need a bit of help getting started, I know basic C++ etc. But I am lost from the start, the thing I am trying to create would be...
What would be that best way for an anticheat tool to communicate with a server? Currently I am using Windows API to post to a php script on a webserver (SSL), however this is not really an elegant solution, so I am looking for suggestions on how to do it properly. I was thinking on writing a...
Nvm, found a thread on this forum :D
Hello experts of cheats! I have a simple for you significant than the modest request of a user DAU AC tools in Ring 0 level. Payment of course ... Please contact me to discuss further arrangements. _____________________________________________________________ Hallo Fachmann der Cheats!...
Hello, I was thinking maybe i could relie on the crc of .text section to be static but i was wrong. Everytime i run another instance of my program, its CRC of .text section changes. The Characteristics of the .text section are CODE|EXECUTE|READ. maybe there is something i don't know ? How...
Would it be safe to assume, that any reference to the game engine interface (Source Engine) from any MEM_IMAGE or Mapped region outside of the game modules, is a cheat or atleast unwanted? (In the source engine, references to the engine interface can be found in GameUI.dll, engine.dll and...
Ive been triyng for over 6 hours already to find out how i can scan kernel32.dll memory against kernel32.dll file. Ive tried to OpenFile kernel32.dll Readfile, walk the section to find the readonly ones << worked, but the first byte of the .test section in the file is not the same as the one in...
Does scanning the regions of MEM_IMAGE && (PAGE_EXECUTE_READ || PAGE_READONLY) is a reliable way, i started to have doubts since when i attached olly to my program and it detected a memory change in one of those type of regions. Thanks you.
I was actually reversing the VirtualQuery function and i seen that it calls ntdll.ZwQueryVirtualMemoryEx, which calls a weird function that is totally new to me. mov eax, 0x20 xor ecx, ecx lea edx, call dword ptr fs: add esp, 4 I can assume this is a kernel call, eax and ecx are the...
Is there any alternative to list modules instead of CreateToolHelp32Snapshot ? Im trying to use the less API i can, maybe there is a way to enumerate the all the regions of the process then call GetMappedFileName on them ? Thank you.
Is there a way to do this from ring3? thx!
About ----------------------------------------------------------- I'm currently writing an engine to convert from x86/x64 code to a one instruction set computer, using the SUBLEQ instruction as my only opcode, in order to prevent analysis of your code. Ideology...
OK so can someone send me or show me code of dll that can protect the parent procces from injection. I want to inject that dll in some process and that dll should protect the process. Does someone have this kind of dll ? Thanks.
I've done a lot browsing the forums and first off wanted to say, I'm impressed with the amount of information and that it has definitely broadened my knowledge of cheat, and anti-cheat functionality. Now, I'm about to begin coding an anti cheat program (specifically for CS:S or FPS games). I...
If you hit someone before the xhair reaches them, what exactly does that mean? Hitting someone before my xhair got to them would only be possible through the use of an aimbot right? Would this be a good indication of an aimbot if i saw someone else doing it while spectating them? Or can it...
Basically, I found a way to do compile-time string encryption using macros. Usage is like so: EncryptString("String here", name_of_string); Then the macro will allocate space for name_of_string using a character array.
Well I would like to know how to go about hiding a process, like gameguard does. So if you were to try attach the process using something like CE, you wouldn't be able to find it in the process list. Also how would I go about detecting if any new memory has been allocated, and what are some...
I had another idea for obfuscation - this one relying on the modification of EFLAGS through unconventional means. http://unixwiz.net/techtips/x86-jumps.html For example, a jump if equal instruction will execute if the zero flag is set; I could rely on a variation of this to, for example,...
Hello. Excessive Gaming League has a new league starting Mid March 2010. We have a professional coder coding our website for us. All that we are missing right now is an anti-cheat client similar to Cevo or the old CAL ACS. Any help that anyone could provide us would be greatly appreciated. Please...
Hey, I'm currently thinking about the ways an AC could work... My idea is, that I want to collect ideas and then write example codes (just for excercise) So far I've come up with these facts: Anti-Cheat: Hook LoadLibrary, GetProcAddress, VQuery, what else? Do (of course) Screenshots...
Does such a thing exist? Why don't games stop sending player locs if they aren't reasonably visible, or perform sanity checks on player view angles? There's a million other checks that could be made. To me this is just basic stuff. If you record a player's input, with and without hacks, it would be...
Hello. Excessive Gaming League has a new league starting Mid March 2010. We have a professional coder coding our website for us. All that we are missing right now is an anti-cheat client similar to Cevo or the old CAL ACS. Any help that anyone could provide would be greatly appreciated. Anyone...
Certain cheats works by patching the memory using WriteProcessMemory. In hl2 you can do it with like sv_cheats 1 and other cvars. How would I go about detecting this without false positives? Hash the modules .data section and check it against the real? ~Acid
I am making a small anti-cheat tool and I have a problem, I can easily detect JMP hooks (and the likes) by simply checking a hash of a the .text section of the module. How would I go about detecting a VMT hook (or other hooks like it), I would love some pointers on where to look and what to look...
#include <windows.h> #include "distorm.h" #pragma comment(lib, "distorm.lib" ) CONST DWORD_PTR CODE_BEGIN = 0x00401000; CONST DWORD_PTR CODE_END = 0x00406569; LONG NTAPI ExceptionProcedure( PEXCEPTION_POINTERS exc ) {
#include <windows.h> #include <intrin.h> DWORD_PTR CODE_BEGIN = 0x00401000; DWORD_PTR CODE_END = CODE_BEGIN + 0x95E; DWORD_PTR INV_CODE_BEGIN = ~CODE_BEGIN; DWORD_PTR INV_CODE_END = ~CODE_END; DWORD_PTR DATA_BEGIN = 0x00403000;
I am looking to hire an experienced cheat detection designer for Valve based games. They will also need to be capable of making a deamon as well. PM me or aim me at : cashmoney32008
To mask what code is being executed, I had the idea of having threads which modify eachother interchangeably. For example: #include <windows.h> #pragma comment( linker, "/SUBSYSTEM:WINDOWS" ) #pragma comment( linker, "/ENTRY:main" ) DWORD CurrentThread = 1;
There are currently 1 users browsing this forum. (0 members & 1 guests)
Use this control to limit the display of threads to those newer than the specified time frame.
Allows you to choose the data by which the thread list will be sorted.
Order threads in...
Note: when sorting by date, 'descending order' will show the newest results first.
Forum Rules
