Jump to content

Epoch 1.0.6.1 TP Hack


Pvt Joker

Recommended Posts

I was on my friend's server last night and there were two players - me and my buddy.  A third person joined and goofed around in chat and flew some planes, etc.  All of a sudden, we are all on the shore and he is shooting us.  I killed him and we banned him.  The question I have, could that person be an "innocent" victim?  There were no other players recorded in DART at that time.  He was obviously playing dumb...saying..what is happening, etc.  I know it wasn't me or my friend, so that leaves this guy.  My question is for this type of hack to work, does the hacker have to be playing, or can someone set this hack to TP players randomly?

My friend is going to investigate further after work, but I am just trying to help out and understand this better.  I think we banned the right guy, but just checking to see if there is more we should do.

Mike

 

Link to comment
Share on other sites

So there are two kinds of hacks that are popular currently, the first is basic script injections, you want to make sure you have your BattlEye Filters up to date, then you can make exceptions and additions as needed, https://github.com/DayZMod/Battleye-Filters, you stop most of the hacks but some slip thru, another option (if you have a lot of time to adjust the filters) is to log all execVM in the server which can be done by 1 execVM, the exceptions can be made accordingly, you post the log in this tool https://chilloutbude.eu/bef/, and put it in the line.  so it would look like !"xxxxxxxxxxxxx".  The second kind of hacks is memory hacks, or known as dll injections, these cannot be stopped, not until BattlEye updates their signature check.  Otherwise you are doing the right thing, just ban them as they come, but dont get discourage, be persistent.  Not sure if this helps you but I hope you get something out of it.

Link to comment
Share on other sites

On 8/5/2017 at 3:18 AM, Expherion said:

So there are two kinds of hacks that are popular currently, the first is basic script injections, you want to make sure you have your BattlEye Filters up to date, then you can make exceptions and additions as needed, https://github.com/DayZMod/Battleye-Filters, you stop most of the hacks but some slip thru, another option (if you have a lot of time to adjust the filters) is to log all execVM in the server which can be done by 1 execVM, the exceptions can be made accordingly, you post the log in this tool https://chilloutbude.eu/bef/, and put it in the line.  so it would look like !"xxxxxxxxxxxxx".  The second kind of hacks is memory hacks, or known as dll injections, these cannot be stopped, not until BattlEye updates their signature check.  Otherwise you are doing the right thing, just ban them as they come, but dont get discourage, be persistent.  Not sure if this helps you but I hope you get something out of it.

you are linking to the wrong filters. You should use the ones in the Epoch server pack, not the Vanilla DayZ filters. logging all execVM with 1 execVM is a really bad idea, your log will be insanely large, but you can use these two filters to monitor compile and execVM https://github.com/EpochModTeam/DayZ-Epoch/blob/master/Server Files/Battleye/scripts.txt#L77-L78

also, you don't need to copy paste log exclusions to a website as there's a tool which will automatically generate verbose filter exceptions. https://github.com/eraser1/BE_AEG

Link to comment
Share on other sites

The hacker story grows....somehow, all the vehicles in the bases have been destroyed...in at least 7 bases all the locked cars and helicopeters were destroyed.  Many of the locked cars on the map were also destroyed.  Not sure anyone would have enough time to drive around and destroy one at a time.  Also, not sure how multiple cars can get destroyed inside locked cinder bases.  It seems as if a hack has been performed.  

Any tips on detecting a hack/hacker for blowing up all vehicles?  Will it be a "wrong signature / .pbo message" - or might it be something else that shows the guilty party?  One guy that has been on for a while logged in and out like 7 times in around 8 hours.  He is far from the server, and his ping seems to be high.  Is this a sign of hacking/duping or just unfortunate high ping?

Mike

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Advertisement
  • Discord

×
×
  • Create New...