Hi, I would like to know how much control do the exploiters have over the scripts in ReplicatedFirst. I mean, they can modify or prevent those scripts from running.
I suppose that the really expert exploiters have complete control, but what about the rest that use the typical programs or prefabricated scripts?
ReplicatedFirst is just a vulnerable as ReplicatedStorage, PlayerGui, PlayerScripts, etc.
Anything ran on the client can be accessed from the client. Meaning, yes they can touch any running client script.
Does not replicate to other clients.
Under circumstances of pre-injected code before client has loaded in. The manipulation does not affect other clients but themselves.
Exploiters don’t necessarily have “control” over ReplicatedFirst, they can see which scripts and objects are in there but that’s pretty much it. They can’t prevent scripts from running unless they’re local, if they’re local exploiters can delete the script and prevent it from running, but only for them, other players are not affected.
Any places in which LocalScripts run can be accessed by exploiters. Just never trust the client and keep everything important on server scripts and you should never face any issue.
@AdjacentPhoenix, @anon81993163, @httpDerpyy
I understand that exploits only have a local effect. In yt I saw that the exploiters need the game to be running to apply their exploits, long after the ReplicatedFirst scripts have run, so I asked this question.
this is something that anyone would do or need to be an expert?
Any exploiters can make scripts run as soon as their game loads in by using autoinject. But you have to remember that any changes will not affect other players at all.
I have spoken to certain exploiters who know a lot about their script executor. Apparently, most of the executions are auto-execution scripts that executes before the game instance has loaded. That said, it goes before ReplicatedFirst as well.
Thank you very much @httpDerpyy and @anon81993163 . You helped me understand more about how exploiters work. I give the solution to @anon81993163 because he explained it a little better