Crap crap crap, and again crap.
It seems that everyone have ideas, and know how to make a good antihack, but non of you focus to see what the latest hacks look like, and how they work.
TGH, have been developing pretty advanced hacking tools, that have nothing to do with packets, or memory writing, they use hooks on windows api, or write into the game`s memory (using openprocess) and change whatever they want.
I will tell you whats is wrong, and what is right, and what do you actually need for a mu-online server (and it`s not enough):
1)Packet encryption to avoid packet hacks. - yes, that is correct, but not every kind of encryption works, or protects 100%, and i did not see anyone to encrypt the whole packet(s) yet (with headers) for everykind of server files (especialy IGCN), but i did. (LiveGuard encrypts the whole packet, making decryption impossible, and using a custom crypto system, wich is not Google, or anywhere else)
And speed is essential also, everything must go as fast as webzen`s XOR, because it will ruin your game (lagging, unexpected d/c etc).
2)Virtuallization to avoid memory hacks. - incorrect, that won`t work properly, not on every server files, and not on every OS, and not with some AV engines. You have to consider something that will actually work everywhere, on any OS, for everyone. (LiveGuard makes this possible)
3)Protecting files from alteration (hash) - indeed this is needed, and it can be bypassed, but not if you know how to check it. (LiveGuard makes files replacing impossible)
4) Packet rate limitation - beleive it or not, even though you encrypt packets, if i make a hook, and send for example a login packet back to your GameServer 50 times in 1 second, well you know what`s gonna happen. (LiveGuard prevents that)
5) Prevent deep WINDOWS HOOKING - well some of you know, some of you just never heard of it, but AV engines, have special lib`s wich hook into NTAPI and use functions like:
So what this means, hooking kernel32.dll function make no difference, because with these functions, they can intercept a process or any function they like before kernel32.dll even knows it.
This is what tools like Process Hacker use, so you can write into the game`s memory, use functions, do whatever you like. (LiveGuard prevents this)
6)Preventing running certain hack tools in Ring0 mode - well, some of you may never even heard of it, but hackers and some viruses run in ring0 mode, so making it impossible to detect/block/intercept.
About ring0 mode here:
You must be registered to see links
And of course, LiveGuard prevents this.
7)Avoid hooking GameServer - this is crucial, because some server files are packed, some or not, but either way, i am 100% sure you will ruing something. A gameserver stands in many functions, and any kind of modification should be made by Source code, not addons and crap,
(LiveGuard uses the most advanced proxy system out there, without touching the gameserver, and as an added bonus, it provides Load Balancing with 1 or more backends).
8)Memory DUMP detection - well, you tell me i am writing a cheat program in ring0 or ring3 mode, and run it, how will you block it? is your AH system like NOD32 ? or KasperSky ? (i don`t think so).
NOTE: these are only a few stuff i can mention, because i don`t have time to make you a poem.
Let me read that again, so do you even know what heuristic means? Or have you seen sources from AV engines to actually say that your code works like them? Well i did, and beleive me, you are far away my friend... Oh, and i forgot to mention, why did you copy my proxy structure system? You just appeard a few months later, after i released my first version, and a friend of mine, showed me your software, all i can say, shame on you my friend, you should come up with your own ideas, not looking at others and making a copy in c#.
Let me explain that for you, "real time" means that it uses threads, executed at a specific time, and threads can be suspended, remmeber ?
Well beleive it or not, i have friends that can make you rethink that, there is alwasy a way to hack/exploit something, and if you are good enough, then you will even enjoy it.
What`s my point? Use my AH system, because we had the time to study, code, and prevent cheating. There are 99 ways to cheat, and i really don`t have time to explain.
Don`t bother hooking, and searching offsets to touch your gameserver.
You need really good knowledge to prevent 100% cheating, you need to understand WINDOWS functions, you need to understand how the MU works.
What`s recommended?
-Make you AH fast, stable, and imune to exploits
-Your AH should not *touch* the gameserver at all
-Your AH should be able to detect speed alteration upon OS level
-Your AH should be able to detect hack programs packed with Themida or WinLicense
-Your AH should be able to detect rootkits (ring0 mode processes)
-Your... crap i don`t have time, just use LiveGuard.
Cheeers~