NoX Server Shield

So, everyone has heard of the NoX Server Shield. Hearing that it is the best ever and no one can hack against it. Well, when I didn't have internet I decided to reverse engineer it and figure out what was going on with it. The NoX Server Shield completely relies on the client to have the hooks generated into it. There are a total of two hooks that the client uses, one being on send (to store the socket) and the other on the decryption function to scan the packet for a certain one recieved. When a packet is recieved from the server the DR client scans throught he packet looking for a certain operation inside the packet at +0x8. If the operation is in range of what it needs to be, it will execute some shell code. Most of this shell code will add another hook on a function, such as chat output or ZPostSkill. The hooks being placed just check the address is < 0x00600000 or somewhere in that range. Knowing this we can just virtualallocate memory at 0x5E0000 or do a JMP with a fake return address. The DR anti-hack is a nice idea, but was implemented in a very bad manor. If Kolie wanted to actually work on something, he would know that checking the return address of a function isn't merly enough.

Code:

---

he would know that checking the return address of a function

---

Durrrrrrrrrrrrrrrrrr.

Why post this here? This is a development forum, not one to brag about hacking another server.

Quote:

---

Originally Posted by Team Zebra

Why post this here? This is a development forum, not one to brag about hacking another server.

---

I guess it's to warn DR that their Anti-Cheat is still too ez.
so that they maybe notice it :P

Quote:

---

Originally Posted by Team Zebra

Why post this here? This is a development forum, not one to brag about hacking another server.

---

It's not bragging about hacking. It's an analysis of another servers anti-hack.

But it's something that should be taken up with the devs themselves, or posted on their forum. It has nothing to do with RZ.

Quote:

---

Originally Posted by Team Zebra

But it's something that should be taken up with the devs themselves, or posted on their forum. It has nothing to do with RZ.

---

Actually, it gives pros and cons for people looking for an anti-hack to use. Also, mind unblocking me from MSN? (Phail@LegionGaming.net) : <

Why do you want me unblocking you? I have no reason to talk to you.

Quote:

---

Originally Posted by Team Zebra

Why do you want me unblocking you? I have no reason to talk to you.

---

I have a few questions for you, but okay then. I guess I'll just spend a few more hours trying to figure out whats wrong. Thanks anyways.

/sigh

why cant the people of this forum ever get along

Quote:

---

Originally Posted by BetrayedAcheron

/sigh

why cant the people of this forum ever get along

---

Who isn't getting along? I simply asked for an unblock and he asked why, but if I he doesn't want to be friendly, then I see no reason in me asking him a few questions. I'll continue to attempt at figuring it out on my own. Until then, who knows.

Quote:

---

[02:08] IzeOfTheState: well i unblocked him to see what the hell he wanted
[02:08] Thievingffg: lol what was it?
[02:08] IzeOfTheState: Josh "El Peligro" Holmes says:
huh
Phail says:
Never mind now. Just forget it.
Josh "El Peligro" Holmes says:
alrighty
[02:08] * Thievingffg facepalms
[02:09] IzeOfTheState: Phail says:
Not even going to bother with it.
[02:09] IzeOfTheState: he's like trying to bait me into asking him more but i don't play that shit

---

Lies =O

Quote:

---

Originally Posted by ThievingSix

Lies =O

---

I used to pull the same shit, hahahah.

Quote:

---

Originally Posted by ThievingSix

Lies =O

---

No, that's me saying I'm just going to figure it out on my own. Just like I said, if he has no reason to talk to me, the I won't bother with him.

Nothing wrong with posting how it works, good job guy.

hhhh i was laughing why reading the whole thread XD oh well good job

why don't you analysis more important stuff >_> like drift city