If they’re placing blocks and editing it server side. That can be players hats. Which you can detect.
If they’re deleting blocks. That another scenario.
If they’re kicking players. Then clearly you have either a VERY bad remote problem. Or a VERY bad server side.
Remember that they can take advantage of your remotes in order to do stuff. If you have a remote to let’s say. Edit a property. Then they can exploit that. If u have a remote to change a name. They will exploit it.
Send the script, I’ll try and understand it and see what you can do to fight/combat against it
Edit. You posted c#, I’ll decode the program and see what I an do from there. DO NOT RUN THE PROGRAM.
They basically have more control over a server in-game than I would with devconsole.
And we’re using Adonis for our admin cmds system. Adonis has recently wiped data across all games because they claim there’s a new exploit that lets anyone access a game as any player.
This is absolutely a backdoor - there is no other way someone would be able to perform such actions server-side. In the studio of your game, hit CTRL+SHIFT+F and type require, this will show you if there are scripts in your games requiring potential backdoors. Note that not all requires are bad, as legitimate systems such as your Adonis admin also use it.
I’d also make sure that you have a legitimate copy of Adonis, if you’re using one from anywhere other than this model remove it immediately: Adonis Loader [Sceleratis/Davey_Bones] - Roblox
This is definitely a backdoor, or possibly this new level 8 exploit (Can make serverside calls), but I doubt it’s a level 8, I haven’t seen a single one yet
I have done this already and there is not a single script requiring a model ID in my game. I have also checked the scripts requiring modules and the modules have nothing that would be a vulnerability.
Perhaps there’s another form of backdoor then? Try to use the same method to search for getfenv - it would be impossible for these people to execute server-side things like you are describing without a backdoor somewhere so there’s definitely something malicious within the game.
If they are able to delete parts WITHOUT a remote event, idk what you can do as it might be a serverside exploit. If a level 8 exploit exists, it can be game breaking and there is practically nothing you can do about it. Also, do you run your shutdowns, admin commands, etc using remote events? If so, the exploiter is easily able to access those scripts and run them at any time.
EDIT READ: Try and temp disable all your gamepasses, it might be because people who buy the stuff are able to access all of those things. I’m not trying to be rude at ALL, just a suggestion. If the hackers are still able to do all of these things, contact roblox to see if there is any fix to it.
Yah, good on him for actually owning up to his mistake and apologizing.
A problem still stands though, you have some type of backdoor somewhere in your game still.
I’ve looked endlessly every way possible. Backdoor doesn’t exist.
I’ve searched every httpservice, insertservice, require, and getfenv. I even disabled httpservice. Not a single thing in my game could be the cause. I also searched all the scripts manually. I also created a script to print all my remotes and any added children to see if there’s anything I missed. Nothing out of ordinary.
If what you are saying is true then, make sure to check that everyone that is working on your game doesn’t have a malicious plugin disguised as the real thing. I suspect that maybe someone has used a malicious plugin disguised as the real thing by accident, and it inserted a script into the hidden parts of studio.
Enable these and check to see if there are any scripts anywhere.
Make sure to first check the CSGDictionaryService as it can be a primary target of these sorts of things.
