How can I look in the heap?

Askofep · December 22, 2024, 3:22am

how can I access things in memory like getnilinstances() to detect cheats

Judgy_Oreo · December 22, 2024, 4:03am

You can’t directly look in memory, that would be a massive security oversight. getnilinstances has no implementation in standard Luau, only in exploits. There are plenty of Client-side detection methods publicised on this very Dev Forum, you just need to search for “detection” in #resources, but you should also look into Server-side mitigations as they are impossible to circumvent.

Askofep · December 22, 2024, 4:03am

like glitches in luau

sponguswastaken · December 22, 2024, 4:48am

What exactly do you even mean by this message??

Askofep · December 22, 2024, 4:49am

I want to be able to find every instance and all of it’s properties via a luau glitch

sponguswastaken · December 22, 2024, 4:53am

Don’t make client-sided anticheats, they won’t really work well and can be bypassed easily
You can’t directly access memory because of security issues as the other guy mentioned
Why are you asking how to circumvent this in the DevForum?? You do realize that bad actors could use such a thing to execute malicious code and access the underlying system, right?
This “luau glitch” doesn’t exist

Askofep · December 22, 2024, 5:04am

I can bypass the bypasses via making my own key system

sponguswastaken · December 22, 2024, 6:37am

What you just said doesn’t exactly make sense, detail what a “key system” would do, exploits have way much more control over the client than your scripts will, they run on a higher context, have direct control over the memory, have special functions and can load before even the server manages to replicate anything

Askofep · December 22, 2024, 6:37am

not over the luau vm if they choose the easy route

sponguswastaken · December 22, 2024, 6:42am

The Luau VM just interprets the compiled bytecode, so, I ask yet again, what does this message you now sent mean, and what is a “key system,” please utter a word that makes sense

sponguswastaken · December 22, 2024, 6:42am

You realize not all of your replies are limited to 15 words right?

Askofep · December 22, 2024, 1:34pm

key system as in some sort of verification that the event wasn’t spoofed

Askofep · December 22, 2024, 1:35pm

the memory of the game scripts should be obfuscated

Askofep · December 22, 2024, 1:45pm

this is getting off topic, I want to get the function/module for it

_{I’ll permban anyone who injects a dll/so, after I can hack into corescripts and press the nonexistant leave button}

sponguswastaken · December 22, 2024, 6:33pm

That won’t exactly help, you’re limited here, while exploits have complete control over the client
Also, are you a child? I don’t think they’d accept you even in v3rm

“after I can hack into corescripts” yeah, sure, you can dream