Exploit Prevention Update

Mimibienv · January 3, 2024, 1:12pm

Try to counter that lmao

MrJake092209 · January 4, 2024, 12:22am

Uhh sorry, what about Spyware

Mimibienv · January 5, 2024, 8:26pm

roblox is a spyware while this exploit isn’t.

nolimitcircuit · January 10, 2024, 3:06am

I feel like with what synpase gave to roblox players, eh Idk If I would trust em to help.

irgiurm · January 10, 2024, 6:47am

ROBLOX has been finding Server Side models for ages, though there isn’t anything major about them and not really worrying

irgiurm · January 10, 2024, 6:47am

Pretty late but, money is everything to 3ds and louka

prostoRobot · January 10, 2024, 8:47am

Since their developers and 3ds himself is getting money, which is basically being their work either alternate part-time job, and since their filthy attempts to do something to Roblox client has successfully failed, and every place has been taken by skids such as jayy with his executor, aswell as Nano who successfully failed after getting nuked and lost all devs; they have decided to partner with Roblox since the benefits are huge plus the money they give to their workers is incredibly big, so that’s exactly a tasty steak for them especially when they get paid thousands of dollars. And exploiting is already semi-dead now, but Cheat Buddy has recently released his “Guardian” variant that can inject dlls via the same thread method, but y’know i semi-believe into his success actually since it works pretty bad i see.

irgiurm · January 10, 2024, 9:02am

Cheat Buddy is 100% someone who can do something on ROBLOX’s client (reputable person honestly)
Hyperion is really good but people will find out how hyperion works, just like what happened to EAC/BAC

I don’t believe in other people like (Co), the cheat that he developed had major security issues and was detected instantly

FrostNovazz · January 10, 2024, 9:06am

Co wouldve succeeded if he just sold the dll instead of both and allowed buyers to use different injectors. hyperion will be useless as soon as someone focuses on releasing a dll instead of bypassing it

prostoRobot · January 10, 2024, 9:10am

Well, that’s true, although he promised to make a RC7 remake, however all he has now is some random dll that seemingly just tries to activate aimbot (or kill all script) for that game he tested it on, he could’ve tried something bigger like injecting actual old dll exploit which cannot be detected because its extremely outdated, but that’ll be very believable if he had it done so.

irgiurm · January 10, 2024, 9:41am

The issue with a Older Exploit’s DLL is the Addresses being completely invalid, and Functions on ROBLOX being changed overtime (e.g. how people get the Luau State or Execution)

irgiurm · January 10, 2024, 9:45am

What do you mean “of both” sorry?

Co only really proved a point of that execution is still possible but got a ton of people banned on ROBLOX as they’ve been logged.

FrostNovazz · January 10, 2024, 9:46am

injector + dll any public injector will just get detected but if they only release dll they wont be responsible for bans but will be responsible for execution

irgiurm · January 10, 2024, 10:00am

I must be dumbfounded right now.

Not “every” public injector will get detected because there are always going to be method and automation to Injectors, Kernel Injector for example won’t get detected (afaik) and there are various methods to hide Applications as well.

Anyways Co is responsible for bans that they caused w/ their Exploit that got detected because Co didn’t do any safety at all.

FrostNovazz · January 10, 2024, 10:02am

kernel injectors are detected by hyperion so is mmcopyvirtualmemory and hiding an application wont do anything since you still need to inject the dll

irgiurm · January 10, 2024, 10:15am

I know hiding an app won’t make it any better but it does help, anyways someone will end up finding a method like how Joe (JoeIsGod), Immunelion and other people have

FrostNovazz · January 10, 2024, 10:16am

because they are private hyperion aint playing as soon as a new injector releases it will get detected which is why new ones will prob be dlls only

shadowmaster940 · January 10, 2024, 10:41pm

Something like that can be solved by just signature scanning and then caching offsets to a file

prostoRobot · January 13, 2024, 3:39am

Well pattern scanning is better than signature scanning, “Netflix” used it at most, but it does nothing than just scanning through the whole memory finding a text, int or something else which was hexified, doing a pattern scan is not that hard if you know how to hexify letters, as Netflix’s aob aka pattern they use which is " 496E6A656374???06 " if dehexified will output word “Inject” which is a script which they transfer that contains every instance that’s being transferred via teleportservice, although recently i’ve recieved a screenshot where Bitdancer joined one of those “Netflix executor transfer game” which signifies that probably DFFlagPatchTeleportExploit will be back again but this time forcefully implemented rather than being an fflag that could be disabled.
Although “Netflix” just transfers not only “Inject” but a tool instance with script with empty functions inside it which are “onActivate”, “onEquip” so when the inject script bytes being moved into target script it will write the bytes of those functions so when you activate the tool, the injected script will be executed after.

shadowmaster940 · January 13, 2024, 8:18pm

Pattern scanning and signature scanning are the same thing… Also idk what you mean by hexify, what it does is scan bytes in the process which are assembly instructions, it just looks for a matching set of instructions