• Welcome to Valhalla Legends Archive.
 

Hack detection

Started by shout, May 22, 2005, 07:47 PM

Previous topic - Next topic

shout

While driving home, I came up with an idea for hack detection for my bot, and I would like comments.

Some background: My bot is a 'tournament bot', and will interconnected to other bots. The bots will set up  tournament trees and such, and I wanted a way to make sure no one is hacking in these tournaments.

So, I was thinking I could have the bot load the data from some known hacks, (as far as I know most hacks are dll injection) and read the game process, looking for the hack data. I am not quite sure how to implement this at the moment, but I'm sure it can't be to hard. Then if it detects a hack it will message the other bots that the client is hacking.

Soul Taker

And the hacker intercepts the message saying he is hacking.

shout

Kill the game process then?

Kp

Write a clone of your bot that always announces "Not cheating" without actually checking whether the user running it is cheating.  Then he can run any hacks he wants and not get caught.  Alternately, instead of cloning your bot, hack your bot so that any time it attempts to read game locations which the hack has modified, it instead receives the "correct" data.  This would be fairly straightforward to do, probably not more than a few days work.  With some cleverness, it could even be made version independent.
[19:20:23] (BotNet) <[vL]Kp> Any idiot can make a bot with CSB, and many do!

R.a.B.B.i.T

If you could inject the anti-hack into the game, however, it would work better (sort of like how Valve's VAC works, but that's built in).

Kp

Quote from: rabbit on May 22, 2005, 10:22 PM
If you could inject the anti-hack into the game, however, it would work better (sort of like how Valve's VAC works, but that's built in).
Why would it work better?  Any code running on the client machine can be overridden with code that behaves in the interest of the client's user, not in the interests of the software owner.
[19:20:23] (BotNet) <[vL]Kp> Any idiot can make a bot with CSB, and many do!

iago

You could make it very difficult to override, with encryption and such, but in the end anything running on your machine is overridable.
This'll make an interesting test for broken AV:
QuoteX5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*


shout

#7
The point of my orginal plan is not modifying the game process at all. You also have to remember that most people are not that smart good at reversing/hacking, they just use the ones that other people make.

Kp

Quote from: Shout on May 23, 2005, 11:03 AMYou also have to remember that most people are not that smart good at reversing/hacking, they just use the ones that other people make.

Sure, but what happens when someone makes and releases something of the quality I described above? :)
[19:20:23] (BotNet) <[vL]Kp> Any idiot can make a bot with CSB, and many do!

shout

Quote from: Kp on May 23, 2005, 11:47 AM
Quote from: Shout on May 23, 2005, 11:03 AMYou also have to remember that most people are not that smart good at reversing/hacking, they just use the ones that other people make.

Sure, but what happens when someone makes and releases something of the quality I described above? :)

At that time I deal with it.

hismajesty


Joe[x86]

If anybody thinks highly of you enough to reverse engineer and re-write your software just to use a maphack (what more of a hack is there, anyhow?) let them just do it.
Quote from: brew on April 25, 2007, 07:33 PM
that made me feel like a total idiot. this entire thing was useless.

Warrior

or not. If they exploit software, fix it.
Quote from: effect on March 09, 2006, 11:52 PM
Islam is a steaming pile of fucking dog shit. Everything about it is flawed, anybody who believes in it is a terrorist, if you disagree with me, then im sorry your wrong.

Quote from: Rule on May 07, 2006, 01:30 PM
Why don't you stop being American and start acting like a decent human?

shout

If someone wanted to take the time to reverse engineer a bnet bot, and exploit it, I'd say they need to get some help.

I could also go the blizzard way and do a checksum on the files, and am some sort of authorization check.

Soul Taker

I don't see why the thought of people making hacks (including hacks to get around anti-hacks) is such an outlandish and hard to grasp concept.