Posted on 03 May 2015 - 07:14 PM

I'm going to talk about a few things in this post. This is a special type of developer log, where we focus heavily on one topic. Today I'm focusing on client-sided Anti-Cheats. If you haven't noticed, GCheat hasn't been receiving updates for a while now, as we've been working on an actual optional client anticheat - and actually doing it correctly. I'm going to be focusing today on three subjects - our anticheat's future, common misconceptions about the hacking community, and why MineHQ's anticheat will fail/you shouldn't trust it (Yes I'm going to talk about a blacklisted server).

Our Anti-Cheat's Future

It has been well known in the private skype chats + the competitive minecraft chats I've been part of that Badlion has been working on an optional anticheat for our most competitive plans - tournaments + leagues. This is probably why a "competing copycat server" rushed out a half-assed version of it, to get ahead. If anything has taught you about badlion, we don't half ass stuff that is related to security. All players will be able to tell when someone is running the client - and it'll never be forced on other then for tournaments/leagues/extreme special occasions. That's all the information I'll release so far as other servers have no shame and like to copy.


Common misconceptions about the hacking community

1. Client side hacks will eventually be undetectable from a server side - This is true. Client side mods will eventually evolve to the point where they are 100% undetectable from a server side. However, this hasn't happened yet - every hacked client out there IS DETECTABLE. Badlion has about 15 hacked client checks that aren't active(or don't ban) currently. We purposely don't enable these until they become a huge problem as an attempt to slow down the inevitable while we've been working on our client anticheat - this is also why we automatically IP ban after a few hacked client detections too. Right now our Mods keep the "undetected" hacked clients down well enough, so we don't activate more checks until it becomes a problem.
2. The hacking community likes ghost clients - False. Most of the hacking community fucking HATES ghost clients, and everything to do with them. Most of the hacking community says if they are cheating, they need to actually cheat and not act like they are legit. Cheating to them is for fun, not for acting like a legit player to grow the e-peen.
3. The hacking programming community can't program - Kinda true/false. Most of the hacking community are just skids, who copy and paste code from other clients and edit it a bit. There are real programmers inside of the hacking community though, most of which either do it for money or boredom - while most of them have moved onto programming hacks for games with real anticheats. These people will be able to bypass MineHQ's anticheat within days, if not hours.
4. You can build an effective anticheat client inside of minecraft - false. It's been tried and it was worse then AntiCheat + NCP, which is why it was scrapped. Any client sided mods are going to be 100% bypassed.


Why MineHQ's anticheat will fail and why you also shouldn't trust it

1. It is a forge mod. This is all I need to say about security - it's basically going to be non-existence as forge mods have to be able to be read by the mod loader, which means they can be read by human eyes (might be obfuscated, but it's still readable). If I can read your code, I can fake your security. You guys can put two and two together.
2. The owner of MineHQ has been caught red-handed DDoSing people and paying people to steal players/spam other servers for them, and has been accused with pretty strong circumstantial of spam botting other servers and encouraging/assisting players to exploit + grief competing servers. There are also other claims, but they are purely speculation so they won't be included. If you think there isn't a RAT, a zombie process (to create a botnet), or a session stealer in this project you are going to be sadly mistaken, as they have been caught doing every underhanded thing in the book when it comes to Minecraft. If it's not in the first release, it will be added secretly in an update.
3. Forcing players to install a mod will KILL your server. This is why modded servers never took off.
4. There are some blatant lies in their posts regarding it. I won't point out them all, but the point where they said they spoke to industry officials is 99% false. Badlion has a direct connection to an anticheat developer from a past game we played - and him and his business contacts in other companies all agree and point out that ANY anticheat programmed in java is going to absolutely fail, especially when it's human readable. Name one game programmed in Java that has a client side anticheat that works (and no Runescape's anticheat is built into the server side). Please go ahead.
5. They said even if you have the source code to their client, it is impossible to bypass. LOL, they just did something several multibillion dollar corporations can't do even with correctly secured code. Let me go ask for the source code to Punkbuster, Warden, VAC, ESEA. Oh wait, they all say hidden source code is the MOST IMPORTANT/STRONGEST part of an anticheat. And they ALL aren't programmed in Java.
6. Since they are doing waves, I speculate well known players who are caught hacking will be made exempt if they are friends with the ownership. It's not like friends of owners over there don't get away with stuff already, amirite?
7. There are some things mentioned that are basically virus like, and the fact that it's built directly into minecraft but only works on one operating should worry you, as they say they only interface with programs that affect minecraft. Minecraft is cross system compatible. Just some food for thought.
8. There are other flaws/lies, but I plan on exploiting some of those later (more information in conclusion #4)


Conclusion

1. Badlion Staff and all future staff candidates and hereby banned from using MineHQ's third party service as the origin of the service has been known to exploit + perform illegal activities. If you've been discovered to have it installed, you will be demodded/banned if you were a staff member for compromising the security of our server, or will be permanently denied if you apply for staff as a non-staff. Several networks plan on implementing this too, so we are not alone in this.
2. Badlion has been developing an anticheat that you will now start publicly hearing about in the near future.
3. What MineHQ have been programming would take us maybe a day to program, and we've already completed all they have mentioned and even more. There is more to do, as Gberry and I have both worked on Anti-Cheats before minecraft (I have bypassed pretty much every major hack system in online gaming just to prove I could, and Gberry has worked with an actual Anti-Hack developer in the past). They are not accounting for several things, as one of the bypasses would have deterred them from Java instantly.
4. For all the shit MineHQ and company has done to badlion and our friends, if the hacking community can't figure out bypasses after a week or so, I'll hand them over free of charge, legally as I'm allowed, to the hacking community. Fuck you :)

I have to catch a plane, so I'll answer questions brought up tomorrow. I'm not going to go into details about exploits in their system, so don't bother.

Edit 1
I've been accused of slander, which essentially is UNTRUTHFUL creation and spread of lies to damage a reputation, and has to have substantial evidence of damage to sue for slander, and typically results in little or no financial gain. Here's some public links for more reading that will back up my claims about the owner of MineHQ's LLC, and some will also give you a more accurate representation of the public opinion of him (be sure to PM me links you want added)
You know, for freedom of press/reporting and science, of course!

HighlifeTTU's accusation of paying players + using spambots
https://www.reddit.com/r/hcfactions/comments/2kkrpq/on_other_servers_and_those_of_you_getting_banned/

DDoS'ing Ratarta (and using fake, ILLEGAL DMCA claims against him)
http://puu.sh/dShr5/fda18e9756.mp4
https://www.reddit.com/r/hcfactions/comments/2qwe3x/psa_itsjhalt_is_spreading_rumors_dont_believe_them/
https://www.reddit.com/r/hcfactions/comments/2ueosi/wtf_happened/co7q4ez

Him banning suicide jokes (He deleted it after the above video was posted)
http://puu.sh/dQi0h/a0a155f3df.png
https://www.reddit.com//r/hcteams/comments/2pqcfq/if_you_make_suicide_comedyjokes_you_will_be_banned/

Community Opinion of him, featuring players from Badlion, Kohi, and HCF
https://www.reddit.com/r/hcfactions/comments/2qvakm/submit_jhalt_memes_here/
https://www.reddit.com/r/hcfactions/comments/2qyie8/the_funny_thing_about_jhalt/

And about not being part of an LLC until this March. He of all people knows thats a lie (as he has been contacted by a previous co-owner) as we were part of another LLC (that we no longer have any association with) since June 16, 2013 and recently just broke off and formed our own LLC due to reasons.

Edit 2 - Thanks to my new buddies at the hack forums
Direct quote taken about the FAQ on their subreddit about what their anticheat does https://www.reddit.com/r/hcteams/comments/34p3wr/heres_everything_you_need_to_know_about/
Last paragraph
http://i.gyazo.com/0d9e2d6ceeda7e58d80822621de0e6f6.png
So if the only files you care about are in the minecraft folder, why does your EULA say this?
http://i.gyazo.com/bc1348f23d7e69fed36585de957cebbc.png
Direct contradiction to your post, as we have to forfeit all privacy and give you the right to examine and/or take ANY file on the operating system, and you have the right to take anything found in memory(possible example - the password we just typed that's still in RAM). If you only cared about the minecraft files, it would explicitly state it in the EULA.

RAT = Remote Access Trojan
http://en.wikipedia.org/wiki/Trojan_horse_%28computing%29
First line -
A Trojan horse, or Trojan, in computing is generally a non-self-replicating type of malware program containing malicious code that, when executed, carries out actions determined by the nature of the Trojan, typically causing loss or theft of data, and possible system harm.

Posted on 03 May 2015 - 07:31 PM

Thats how archybot rolls

Posted on 03 May 2015 - 08:22 PM

Best post ever.

Posted on 03 May 2015 - 08:52 PM

ditto

Posted on 03 May 2015 - 08:52 PM

RIP MineHQ

Posted on 03 May 2015 - 08:53 PM

Posted on 03 May 2015 - 08:54 PM

also HYPE


I understood 30% of this

Posted on 03 May 2015 - 09:01 PM

yeah baby

Posted on 03 May 2015 - 09:17 PM

went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in went in

Posted on 03 May 2015 - 09:29 PM

Savage

Posted on 03 May 2015 - 10:05 PM

this topped it off for me.


just make sure none of the features bypass gcheat LOL

Posted on 03 May 2015 - 11:15 PM

If you dont trust in archy, here, check "The Best Anticheat" webpage, they telling you that the have a privacy policy, but the dont have a page of the policy http://www.cheatbreaker.com/privacy :D

-jhalt is a bitch <3

Posted on 03 May 2015 - 11:36 PM

Most hacking communities are already talking about bypasses that are going to work as Java has flaws as a language, and pretty much consider it a complete joke. One even mentioned a remotely similar method to my favorite style of bypass.

This is what happens when you rush into something that you're not good at, you make it difficult for the real programmers to do work.

RIP

Posted on 04 May 2015 - 02:10 AM

This is why I love badlion <3

Posted on 04 May 2015 - 03:27 AM

this was savage I love it

Posted on 04 May 2015 - 08:45 AM

Posted on 04 May 2015 - 10:06 AM

Another reason why i love badlion :P

Posted on 04 May 2015 - 01:51 PM

than*

Posted on 04 May 2015 - 02:01 PM

GO BADLION!

Posted on 04 May 2015 - 09:38 PM

gf