Prac - Little Anti Cheat

ptitloup132 · January 17, 2024, 10:55am

Hello developers !

I tried to create a little anti cheat : GitHub - Progoblox/Prac: Program Anti Cheat

My first goal is to identify and preventing cheating activities in a roblox game.

If you find a vulnerability, something to fix / change etc. tell me here :>.

TheBoysPlay_YT · January 17, 2024, 12:18pm

It’s funny how people make anti-cheats even though there are some admin systems such as Adonis Admin and more that have a built-in anti-cheat.

Artzified · January 17, 2024, 12:25pm

github.com

Progoblox/Prac/blob/main/checker.lua

local rs = game:GetService("ReplicatedStorage")
local plr = game:GetService("Players")
local mouse = plr:GetMouse()
local char = plr.Character or plr.CharacterAdded:Wait()
local humanoid = char:FindFirstChild("Humanoid")

humanoid:GetPropertyChangedSignal("WalkSpeed"):Connect(function(onWalkSpeedChanged)
    if rs.isSpeedHack:InvokeServer(humanoid.WalkSpeed) then
        rs.warnings:FireServer("1")
    end
end)

humanoid:GetPropertyChangedSignal("Health"):Connect(function(onWalkSpeedChanged)
    if rs.isHealthHack:InvokeServer(humanoid.Health) then
        rs.warnings:FireServer("2")
    end
end)

local function onMouseMove()
    local target = mouse.Target

This file has been truncated. show original

in your checker script. I immediately noticed errors that would break the script; such as

local plr = game:GetService("Players") -- should be the localplayer, not the service
local mouse = plr:GetMouse()

it also relies on server-client communication which exps. can tamper the remote with

        if rs.isNoClip:InvokeServer(plr.Character) then
            rs.warnings:FireServer("3")
        end
        -- Fly
        if rs.isFlying:InvokeServer(plr.Character) then
            rs.warnings:FireServer("4")
        end

xChris_vC · January 17, 2024, 12:27pm

Exploiting is pretty much done rn, but there are still a lot of bypasses made for Adonis’ Anti-cheat.

And besides, it’s primarily learning experience. Best anticheat is validating data in remotes on the server.

bluebxrrybot · January 17, 2024, 1:00pm

Exploiters are going to keep trying, so eventually, they’ll come back.

Ask yourself: Will the anti-cheat still work as intended if the exploiter…

Deletes the script
Tampers with remotes
Prevents client sided kicking
Hangs calls to FireServer
Pauses connections
Uses a hack that isn’t visible (aimbot, esp, remotespy)

sombolian · January 17, 2024, 1:06pm

Adonis anti cheat doesn’t exist, its just a type of joke

ptitloup132 · January 17, 2024, 1:12pm

Yeah I know, going to fix today.

ptitloup132 · January 17, 2024, 1:13pm

It is visible (aimbot for ex) and they can not delete a script in ServerScriptService.

ptitloup132 · January 17, 2024, 1:16pm

You know, we learn that in EH (Ethical Hacking) but in my opinion you are not well aware: everything must be tested, from the most basic to the highest in terms of security.

thedauser · January 17, 2024, 1:25pm

Thats crazy how you can get the entire anticheat bypass with a single google search.

xChris_vC · January 17, 2024, 1:28pm

They actually have an anti-cheat, that’s not a joke.

Adonis → Client → Anti_Cheat.lua

github.com

Epix-Incorporated/Adonis/blob/master/MainModule/Client/Plugins/Anti_Cheat.lua

--!nolint DeprecatedGlobal
--# selene: allow(deprecated)
script.Archivable = false
task.spawn(function()
	if not game:GetService("RunService"):IsStudio() then
		script.Name = "\n\n\n\n\n\n\n\nModuleScript"
	end
end)

GetEnv = nil

return function(Vargs)
	local client, service = Vargs.Client, Vargs.Service
	local env = GetEnv(nil, {script = script})
	setfenv(1, env)

	local _G, game, script, getfenv, setfenv, workspace,
		getmetatable, setmetatable, loadstring, coroutine,
		rawequal, typeof, print, math, warn, error,  pcall,
		xpcall, select, rawset, rawget, ipairs, pairs,

This file has been truncated. show original

Adonis → Server → Anti_Cheat.lua

github.com

Epix-Incorporated/Adonis/blob/master/MainModule/Server/Plugins/Anti_Cheat.lua

server = nil
service = nil
cPcall = nil
Routine = nil
GetEnv = nil
origEnv = nil
logError = nil

--// Anti-Exploit
return function(Vargs, GetEnv)
	local env = GetEnv(nil, {script = script})
	setfenv(1, env)

	local server = Vargs.Server;
	local service = Vargs.Service;

	local Functions, Admin, Anti, Core, HTTP, Logs, Remote, Process, Variables, Settings
	local function Init()
		Functions = server.Functions;
		Admin = server.Admin;

This file has been truncated. show original

foodman54 · January 17, 2024, 1:42pm

Clientside anticheats are always going to be able to be bypassed one way or another. I don’t understand why people continue to push these when the best thing you can do is just be smart with your remotes and quit relying on client data.

xChris_vC · January 17, 2024, 3:22pm

Exactly, I said that in my first reply:

However, an additional anticheat never hurts. If your remotes are sanitized, why would it hurt to have a client-based anticheat alongside your current detections?

DaDude_89 · January 17, 2024, 3:43pm

Clientside anti cheats aren’t that much of a bad thing. I don’t understand why people think clientside anti cheat shouldn’t exist at all.

They’re capable of detecting some common signs of an exploit loaded, and the average exploiter will have no clue how to magically kill a clientside script with whatever cheap exploit they found in a google search.

HKcat5100 · January 17, 2024, 4:06pm

Does it matter? He could be making this as a fun way to cool down and relax while getting practice for future projects.

RickAstll3y · January 17, 2024, 4:15pm

You need to change FindFirstChild to WaitForChild. 90% of the time, it errors.

Here’s the place file:
test.rbxl (400.0 KB)

And here’s a bypass I made in 3 minutes:

--!strict

local ReplicatedStorage = game:GetService("ReplicatedStorage")
for _, name in {"aimingAtPlayer", "isFlying", "isHealthHack", "isNoClip", "isSpeedHack", "kick", "warnings"} do
	local remote = ReplicatedStorage:FindFirstChild(name)
	if remote then remote:Destroy() end
end

local character = game:GetService("Players").LocalPlayer.Character
character.Humanoid.WalkSpeed = 123
--ect.

CCTVStudios · January 17, 2024, 4:25pm

The only real use case for client side anti cheats being usefull are for those that are impossible to patch from the server like aimbot and such (latency makes it impossible to verify this from the server acurrately)

Asides from those, yeah people need to trusting the client.

MrJake092209 · January 18, 2024, 10:17pm

It’s funny how you likely think that those same anticheats are better than anything else out there (They aren’t)

foodman54 · January 21, 2024, 11:13am

Because they are practically pointless?

foodman54 · January 21, 2024, 11:15am

Its a waste of time to open that can of worms. Clientside cheat engines will always be able to be stopped, and in my opinion its better to allocate your resources to actually hardening your game, because at that point you don’t need a clientside anticheat.

My reason for disliking executor detections is the fact that they rely on bugs in cheating software or make hacky workarounds that devs often fix fairly quickly, and they are also just like clientside anticheats, where they are able to be bypassed.