Valhalla Legends Forums Archive | Battle.net Bot Development | Hack detection

AuthorMessageTime
shout
While driving home, I came up with an idea for hack detection for my bot, and I would like comments.

Some background: My bot is a 'tournament bot', and will interconnected to other bots. The bots will set up  tournament trees and such, and I wanted a way to make sure no one is hacking in these tournaments.

So, I was thinking I could have the bot load the data from some known hacks, (as far as I know most hacks are dll injection) and read the game process, looking for the hack data. I am not quite sure how to implement this at the moment, but I'm sure it can't be to hard. Then if it detects a hack it will message the other bots that the client is hacking.
May 23, 2005, 12:47 AM
Soul Taker
And the hacker intercepts the message saying he is hacking.
May 23, 2005, 1:09 AM
shout
Kill the game process then?
May 23, 2005, 1:44 AM
Kp
Write a clone of your bot that always announces "Not cheating" without actually checking whether the user running it is cheating.  Then he can run any hacks he wants and not get caught.  Alternately, instead of cloning your bot, hack your bot so that any time it attempts to read game locations which the hack has modified, it instead receives the "correct" data.  This would be fairly straightforward to do, probably not more than a few days work.  With some cleverness, it could even be made version independent.
May 23, 2005, 2:43 AM
R.a.B.B.i.T
If you could inject the anti-hack into the game, however, it would work better (sort of like how Valve's VAC works, but that's built in).
May 23, 2005, 3:22 AM
Kp
[quote author=rabbit link=topic=11670.msg113479#msg113479 date=1116818552]
If you could inject the anti-hack into the game, however, it would work better (sort of like how Valve's VAC works, but that's built in).
[/quote]Why would it work better?  Any code running on the client machine can be overridden with code that behaves in the interest of the client's user, not in the interests of the software owner.
May 23, 2005, 2:55 PM
iago
You could make it very difficult to override, with encryption and such, but in the end anything running on your machine is overridable.
May 23, 2005, 2:58 PM
shout
The point of my orginal plan is not modifying the game process at all. You also have to remember that most people are not that [s]smart[/s] good at reversing/hacking, they just use the ones that other people make.
May 23, 2005, 4:03 PM
Kp
[quote author=Shout link=topic=11670.msg113510#msg113510 date=1116864182]You also have to remember that most people are not that [s]smart[/s] good at reversing/hacking, they just use the ones that other people make.[/quote]

Sure, but what happens when someone makes and releases something of the quality I described above? :)
May 23, 2005, 4:47 PM
shout
[quote author=Kp link=topic=11670.msg113511#msg113511 date=1116866877]
[quote author=Shout link=topic=11670.msg113510#msg113510 date=1116864182]You also have to remember that most people are not that [s]smart[/s] good at reversing/hacking, they just use the ones that other people make.[/quote]

Sure, but what happens when someone makes and releases something of the quality I described above? :)
[/quote]

At that time I deal with it.
May 23, 2005, 7:11 PM
hismajesty
Deal with it how?
May 23, 2005, 8:03 PM
JoeTheOdd
If anybody thinks highly of you enough to reverse engineer and re-write your software just to use a maphack (what more of a hack is there, anyhow?) let them just do it.
May 23, 2005, 9:27 PM
Quarantine
or not. If they exploit software, fix it.
May 24, 2005, 1:19 AM
shout
If someone wanted to take the time to reverse engineer a bnet bot, and exploit it, I'd say they need to get some help.

I could also go the blizzard way and do a checksum on the files, and am some sort of authorization check.
May 24, 2005, 1:59 AM
Soul Taker
I don't see why the thought of people making hacks (including hacks to get around anti-hacks) is such an outlandish and hard to grasp concept.
May 24, 2005, 3:15 AM
Lenny
Well, like iago said earlier, a program that runs locally on a machine can never completely protect itself on that machine.  This topic is very similar to an older discussion a while ago where someone was trying to protect his or her program from unauthorized users.

Your best bet is to make your program dependent on some remote resource. 
May 24, 2005, 3:33 AM
Ban
And then they just modify a hosts file, create a simple prog that always verifies as true, etc.
May 24, 2005, 2:43 PM
Soul Taker
He said make it dependant on a remote resource, not make it verify itself to one.
May 24, 2005, 8:04 PM
KkBlazekK
Couldn't you just feed this remote source false info about yourself while in game?
May 24, 2005, 8:23 PM
iago
It would have to be set up in such a way to make that difficult.  As I said before, it'll never be impossible :)
May 25, 2005, 12:12 AM
shout
So if it's impossible, there is no point in doing it, which means I wasted ~200 hours so far, which means I should just kill myself?

Wow flawed logic sucks.

[ontopic] Does anyone have any tangible suggustions? If you do, please explain them. This may be a topic people can use later. ;D
May 25, 2005, 2:38 AM
Kp
[quote author=Shout link=topic=11670.msg113671#msg113671 date=1116988723]So if it's impossible, there is no point in doing it, which means I wasted ~200 hours so far, which means I should just kill myself?[/quote]
No, just go engage in more useful pursuits.  For instance, go earn additional cash and donate it to vL in gratitude for our forums having shown you the error of your ways. ;)
May 25, 2005, 4:02 AM
Quarantine
*rofl* I'd atleast make it hard for them, yanno make them work =D
May 25, 2005, 4:27 AM
raylu
[quote author=Shout link=topic=11670.msg113671#msg113671 date=1116988723]Wow flawed logic sucks.[/quote]

Gee, really?
June 1, 2005, 6:03 AM
Ban
[quote author=raylu link=topic=11670.msg114367#msg114367 date=1117605787]
[quote author=Shout link=topic=11670.msg113671#msg113671 date=1116988723]Wow flawed logic sucks.[/quote]

Gee, really?
[/quote]
Never underestimate the power of stupid people in large groups.
June 1, 2005, 2:46 PM
shout
[quote author=Ban link=topic=11670.msg114386#msg114386 date=1117637186]
[quote author=raylu link=topic=11670.msg114367#msg114367 date=1117605787]
[quote author=Shout link=topic=11670.msg113671#msg113671 date=1116988723]Wow flawed logic sucks.[/quote]

Gee, really?
[/quote]
Never underestimate the power of stupid people in large groups.
[/quote]

Never underestimate the power of geeks [s]in large numbers[/s].
June 1, 2005, 4:03 PM

Search