Author Topic: Signature Bypass  (Read 2294 times)

0 Members and 1 Guest are viewing this topic.

Coronel_Niel

  • Insane Joker
  • ****
  • Posts: 846
  • Why can't I pick my own profile picture...
    • View Profile
Signature Bypass
« on: October 20, 2009, 11:48:19 pm »
Ok, so im currantly trying to rework the SuperCheatPack so I can crash A CL:R server, make unlimited everything ect.

One thing thats stopping me, the only thing, is the Signature check. I cant go into the server ussing the addons without getting kicked for it.

Any helps on how to do it would be nice.

Currently ive got:

Unlimited Bombs

Unlimited Cash

Spawning things that you want (Arma 2 reworked code)

Trying to get into the server config and work on that, so you get massive paychecks, all things for free ect.

Infinite stocks on all items, same problem as above but ill work on that.

Working on a menu that means you dont have to have it all in the action menu, but can go through some super noob friendly menu's.

Blow the HQ, works with the CLR script agianst itself.

Others to be added, more not said.

So bypassing signature check is the next biggest step, coding is easy working with the TKC super cheat pack ingame script running.



More on things for free. Im working it so its for all players, FORCING a restart.
"Now we are going to watch my boys do it" - Joopig

ZOldDude

  • The Unknown Rank!
  • Administrator
  • MasstKer
  • *
  • Posts: 20874
  • Old School TKC
    • View Profile
    • Admin
Re: Signature Bypass
« Reply #1 on: October 21, 2009, 01:04:12 am »
Quote
...so I can crash A CL:R server...
 :unsure

TKC does not crash servers but servers tend to crash themselfs now and then.

Back to the topic...if the server asks for a sig/hash you can always give it what you want rather than what you really have.

Youtube has lots of video of TKC members bypassing BI's sig protection.


« Last Edit: October 21, 2009, 01:10:23 am by ZOldDude »

*While we crash and burn, small, low tech, agrarian societies such as the Hmong in the mountains of Laos will continue on without so much as blinking an eye.*

Coronel_Niel

  • Insane Joker
  • ****
  • Posts: 846
  • Why can't I pick my own profile picture...
    • View Profile
Re: Signature Bypass
« Reply #2 on: October 21, 2009, 01:09:26 am »
Fake signature or sign it? Dont really get it.

Also by crash, I mean if your playing and some idiot admin has a go at you, it isnt a crash as much of a "Total-Owned" and requires a restart. Works only on CL:R, this script is based on it.
"Now we are going to watch my boys do it" - Joopig

ZOldDude

  • The Unknown Rank!
  • Administrator
  • MasstKer
  • *
  • Posts: 20874
  • Old School TKC
    • View Profile
    • Admin
Re: Signature Bypass
« Reply #3 on: October 21, 2009, 01:22:11 am »
If the server "asks" then tell it what you want it to know.

I think WPE is in the d/l section and there was a thread posted on the forum a few months back about the latest version also.

See what it looks like when the server "asks",set a script that sees this and triggers sending the "sig" from a text file rather than the addon/mod it's self.
Anti cheat systems that want to "read" memory size/location are subject to the same concept.

Anyhow without looking at how others have done it this is how I would go at it. The simple ideas seem to work the best.

I spend most of my time/bandwith on my torrent clubs and hardly ever have time to play games other than to test them when they come out.

*While we crash and burn, small, low tech, agrarian societies such as the Hmong in the mountains of Laos will continue on without so much as blinking an eye.*

MrMedic

  • MasstKer
  • ********
  • Posts: 8900
  • programmer/dev/software engineer
    • View Profile
Re: Signature Bypass
« Reply #4 on: October 21, 2009, 03:01:18 am »
its the same as usual it enumerates , md5's the files in order , then sends the md5 hash to the server

just put the pack in after your in the server and load it. or read the md5's from a pre-md5 text file if you want to be clever.

btw i want money for this as its mental property. joke;) do what ya can and good luck.
EnCoded Message: i3iy9yl8kr2xf3g2Txs3pr6ye3ya7jg5ty2z

https://www.youtube.com/watch?v=62_7-AYfdkQ
you need a paypal account for the private versions.

Website:
http://bit.ly/medic101

Teamspeak 3: 85.236.101.5:10157

Coronel_Niel

  • Insane Joker
  • ****
  • Posts: 846
  • Why can't I pick my own profile picture...
    • View Profile
Re: Signature Bypass
« Reply #5 on: October 24, 2009, 09:37:03 pm »
Im not good with C++ ect, tho I can code Arma 2.

I was thinking, theres no point in making the hackpack for arma 2 (Complete rewrite of units, the action menu ect.) if it gets stopped at the first hurdle, joining the server.

So, if you can give me a detailed tutorial, or a nice big helping hand, the best ive done is cheat engine, but I can code Arma 2 quiet well.

Ill make the cheat pack if you make it undetected, it'll have a load of scripts like before, plus some of my own scripts writen just for it.

Note: If your going to help, please say so and ill work on it now. (Or try to help)
« Last Edit: October 24, 2009, 10:33:17 pm by Coronel_Niel »
"Now we are going to watch my boys do it" - Joopig

M. O.

  • Administrator
  • MasstKer
  • *
  • Posts: 9185
    • View Profile
    • http://www.tkc-community.net
Re: Signature Bypass
« Reply #6 on: October 25, 2009, 12:48:15 am »
They looked for the GUI in the Arma1 cheatpack, if that is removed it will be undetected.
Heckling is an art, and game hacking a science.

MrMedic

  • MasstKer
  • ********
  • Posts: 8900
  • programmer/dev/software engineer
    • View Profile
Re: Signature Bypass
« Reply #7 on: October 25, 2009, 12:59:33 am »
you dont need script's , well you do in a way but i kept this a secret but seeing as i dont play it anymore and i will never install it again so...

 its dead simple to bypass checks , hook the sendto function and send your scripts through it you can get the ip and port from the game, read each line of the script and send it to the server , it's like a remote controll script addon , rcon can be controlled this way also ( i bet it gets patched now ) and as far as i know they never figured it out.

i used the same method to bypass dooacs on arma 1 while everyone else was playing with the gui , loved that guy doolittle :)
« Last Edit: October 25, 2009, 01:10:30 am by MrMedic »
EnCoded Message: i3iy9yl8kr2xf3g2Txs3pr6ye3ya7jg5ty2z

https://www.youtube.com/watch?v=62_7-AYfdkQ
you need a paypal account for the private versions.

Website:
http://bit.ly/medic101

Teamspeak 3: 85.236.101.5:10157

ZOldDude

  • The Unknown Rank!
  • Administrator
  • MasstKer
  • *
  • Posts: 20874
  • Old School TKC
    • View Profile
    • Admin
Re: Signature Bypass
« Reply #8 on: October 25, 2009, 01:33:09 am »
Doolittle was actually a pretty cool guy in real life...even tho he thought I was "setting him up" when I told him of the Brazilian BBQ place near his work (I lived about 1 1/2 mile from his work before I moved to the ranch).

*While we crash and burn, small, low tech, agrarian societies such as the Hmong in the mountains of Laos will continue on without so much as blinking an eye.*

Scing

  • Relentless Teamkiller
  • **
  • Posts: 90
    • View Profile
Re: Signature Bypass
« Reply #9 on: October 28, 2009, 07:45:48 am »
Exactly how do you do this? I'll admit im a tard.

XJ

  • Online Villain
  • ***
  • Posts: 246
  • Find what you love and let it kill you.
    • View Profile
Re: Signature Bypass
« Reply #10 on: October 28, 2009, 08:11:54 am »
Would this work as injected dll for hooking send?



Code: [Select]
#include <windows.h>
#include <detours.h>

#pragma comment( lib, "Ws2_32.lib" )
#pragma comment( lib, "detours.lib" )
#pragma comment( lib, "detoured.lib" )

int ( WINAPI *Real_Send )( SOCKET s, const char *buf, int len, int flags ) = send;
int WINAPI Mine_Send( SOCKET s, const char* buf, int len, int flags );

int WINAPI Mine_Send( SOCKET s, const char *buf, int len, int flags ) {
    // do stuff

    return Real_Send( s, buf, len, flags );
}

BOOL WINAPI DllMain( HINSTANCE, DWORD dwReason, LPVOID ) {
    switch ( dwReason ) {
        case DLL_PROCESS_ATTACH:          
                DetourTransactionBegin();
                DetourUpdateThread( GetCurrentThread() );
                DetourAttach( &(PVOID &)Real_Send, Mine_Send );
                DetourTransactionCommit();
                break;

        case DLL_PROCESS_DETACH:
                DetourTransactionBegin();
                DetourUpdateThread( GetCurrentThread() );
                DetourDetach( &(PVOID &)Real_Send, Mine_Send );
                DetourTransactionCommit();
                break;
    }

    return TRUE;
}
« Last Edit: October 28, 2009, 08:31:18 am by XJ »

penisbum

  • Intentional Cheater
  • **
  • Posts: 27
    • View Profile
Re: Signature Bypass
« Reply #11 on: October 28, 2009, 01:53:49 pm »
I too am interested in this very much, there no chernarus servers that allow you to have any mods anymore. Good luck!

Coronel_Niel

  • Insane Joker
  • ****
  • Posts: 846
  • Why can't I pick my own profile picture...
    • View Profile
Re: Signature Bypass
« Reply #12 on: October 28, 2009, 05:55:23 pm »
Im new to C++ editing, but I can work my way around Arma 2 scripting quiet well.

Ive looked at the coding, the stock change's work, very handy for buying a cop chopper on CL.

I need a big help, like a code with comments on it to show what it does.

I normally learn by looking at others work, I never coded Arma before, or any other game before. It was a big step.

Released maps and some custom scripts, but this is really all thats holding me back.

I get the "Tell the server I dont have an addon / Tell it its a different addon" just dont know how.

Side Note: I would like to put it in the script packege, as a DLL and Injector or just a script so it works.

"Now we are going to watch my boys do it" - Joopig

MrMedic

  • MasstKer
  • ********
  • Posts: 8900
  • programmer/dev/software engineer
    • View Profile
Re: Signature Bypass
« Reply #13 on: October 28, 2009, 07:04:40 pm »
Would this work as injected dll for hooking send?

yep that should work , but you will have to read from the script files and send the commands 1 by 1.
EnCoded Message: i3iy9yl8kr2xf3g2Txs3pr6ye3ya7jg5ty2z

https://www.youtube.com/watch?v=62_7-AYfdkQ
you need a paypal account for the private versions.

Website:
http://bit.ly/medic101

Teamspeak 3: 85.236.101.5:10157

Skull1Death

  • Relentless Teamkiller
  • **
  • Posts: 87
    • View Profile
Re: Signature Bypass
« Reply #14 on: November 07, 2009, 05:56:27 am »
how do you do this like what would you put in the text file are you talking about WPE when it comes to hooking send?