I was just wondering about this:

What is better? to use your hack on PB and if you are cought take your 2min ban or whatever or,
tamper with the screenshot feature used by PB and risk Global Ban.

Actualy has anyone got a foolproof way of getting around the SS without tampering with the EULA?

Just a thought.

Originally posted by CaptainCox on 4th April 2004 at 05:54
Actualy has anyone got a foolproof way of getting around the SS without tampering with the EULA?

Not possible.

could it possibly be that pb recognized daz hack, which openly stated that it got around the SS, and banned you on that knowledge, instead of recognizing the actual SS prevention? In that case it wouldn't matter. it's a gamble

Its a gamble if you ask me. Even if they did detect DazHack another way, if they ever find a way to detect your hack exactly or that they detect a method that you use that others use which they use to detect you. If they ever decide to do a major ban on a hack that uses the same method and that hack uses the SS feature, then your screwed too. I dont know, I think it is possible to put the SS protection in your hack without being caught but you still put yourself at risk. Specially if they ever find a way to detect just the SS protection. If I were them I would learn to detect the stuff being put in hacks that break the EULA. I would also log the people that use that feature to do the global ban, not 2 min ban.

it takes a few minutes for a well seasoned reverser to take a public hack or cheat and debug/disassemble it and see what it does, specifically. if any of the pb files or dlls are listed i think your hack will immediately be put into the global ban category. that's why having a private hack is the best way to keep their grubby little hands and eyes off of your code. they can only try to detect in memory what you did to the bf1942 program or their dll's.

Exactly, I think thats more the case. Them scanning in memory to see if your hack is messing with screenshots. Think of this, for any kind of screenshot protection you need to setup something to watch for incoming screenshots. PB only has to look for something like that to know your using a hack that violates their EULA, thus globalban

however much better private hacks are, there are a lot of people who have 0 coding experience and find the whole thing damn confusing. i think its damn cool of ppl hu make public hacks for non pb servers, seeing as ther is a lot of em

Originally posted by Spontaneous
Its a gamble if you ask me. Even if they did detect DazHack another way, if they ever find a way to detect your hack exactly or that they detect a method that you use that others use which they use to detect you. If they ever decide to do a major ban on a hack that uses the same method and that hack uses the SS feature, then your screwed too. I dont know, I think it is possible to put the SS protection in your hack without being caught but you still put yourself at risk. Specially if they ever find a way to detect just the SS protection. If I were them I would learn to detect the stuff being put in hacks that break the EULA. I would also log the people that use that feature to do the global ban, not 2 min ban.

Once again, the way to defeat the SS is to hook/disable your cheat.

Evil Bert Provided wonderful DX hooking source, it is written in C++. Most of the peeps in the forum tinker around with programming. There are many gaps between the knowledge of EvilBert and most of the VB programmers. Things like re-entrant code and thread safe code, which are basic coding techniques, escape the scope of most of the programmers here.

Hooking the SS routine, to a code cave to disable your hacks(the same offset that you would use to turn them off, via a call {offset}) would accomplish the goals. This would also require it to be written in asm. I could be completely wrong.

it sure escape the scope of my skills, but well i can try to learn. but i follow a saying: "necessity is the mother of invention" so i think i'll avoid this stuff for now

Bubb Rubb, your wrong. There are other ways. There is no need to hook in or turn off your cheat. Did you ever use dazhack 1.6.8? Well that had SS protection. It did not hook into the DX. It did not turn the cheats off. What it did, is intercept the SS call and focus the bf1942 process to the back so the active process was no longer bf. This in turn allowed a screenshot to be taken, but it would be nothing but black sayying the bf process is not active. This very much works because if the bf process isnt active, it would be taking a SS of your desktop. If it SS your desktop, it would be able to get private info, including convos, password info, whatever, which is very much illegal for them to do. This is just ONE way of doing it, as there are many more.

Originally posted by Spontaneous
Bubb Rubb, your wrong. There are other ways. There is no need to hook in or turn off your cheat. Did you ever use dazhack 1.6.8? Well that had SS protection. It did not hook into the DX. It did not turn the cheats off. What it did, is intercept the SS call and focus the bf1942 process to the back so the active process was no longer bf. This in turn allowed a screenshot to be taken, but it would be nothing but black sayying the bf process is not active. This very much works because if the bf process isnt active, it would be taking a SS of your desktop. If it SS your desktop, it would be able to get private info, including convos, password info, whatever, which is very much illegal for them to do. This is just ONE way of doing it, as there are many more.


Lol....i think Bubb Rubb knows how Dazz did it....... Daz didn't really figure out SS himself :) or anything else ...

Bubb's Tai Chi is also very strong :)

man you guys crack me up.

i read somewhere in here ..cant find it now..grrrrr that EA released Vietnam with an uncompressed version of pb on the cd..now i have vietnam and on cd3..there low and behold is pb..now what i wanna ask u guys is..is this true..as someone posted this b4..and a coder i know wants this pb uncompressed from me..
Now here is the problem..there is installshield data.cab files on there..where u cant extract unless u using something called ishield or something from sourceforge..
so basically 2 questions..
1- is it true that this is the uncompressed/unencrypted pb
2- how do i extract (just the pb.dll) or everything..cab files etc..
this is nothing i am gonna release as i read forum rules on posting pb uncompression files..i just want to know what to extract..and whether its true about this..
thanks anyway..

if you do an install of the game and install pb, then you got the uncompressed files where the normal pb files are. The second you play online with pb on, the files get updated to the compressed files. So you need to delete the whole vietnam dir and do a fresh install if you want the right files. Anything more then this info I do not have.

its much easier: you do not need to reinstall BF. Simply deinstall Punkbuster (control->software panel) and open the PB setup-file in a seperate folder on CD3 - then just install it again...

hmm ok

MarlonB cracks me up! Him and Looney both. Is Tai Chi a dance or a martial form? That is always a running joke.

Yes, I ran ILDasm on his stuff but I didn't ever use it(before I play hide and seek with an enemy, I have to know their bounds). I only looked at the source. I mentioned early that told him that .Net had a glory hole that could be repeatly shafted if not covered.

The perfect, SS detection is the way that I described, it doesn't matter which interface Pud Buster is used.

Daz only received his SS recommendation from Looney and MarlonB. A.K.A. 2 Live Crew

Originally posted by Bubb Rubb
MarlonB cracks me up! Him and Looney both. Is Tai Chi a dance or a martial form? That is always a running joke.

Yes, I ran ILDasm on his stuff but I didn't ever use it(before I play hide and seek with an enemy, I have to know their bounds). I only looked at the source. I mentioned early that told him that .Net had a glory hole that could be repeatly shafted if not covered.

The perfect, SS detection is the way that I described, it doesn't matter which interface Pud Buster is used.

Daz only received his SS recommendation from Looney and MarlonB. A.K.A. 2 Live Crew

Actually, all credits go to Looney on this one....i wasn't involved in finding SS-avoidance for 1942(well, i was, but not actively :D ) .... I did however manage to replicate it for Nam, and it works a charm :)

And you also mention the reason i wouldn't give such info to a guy as blunt as daz....it is minutes work to reverse engineer it, and add it to the PB scanlist :/ ..... ofcourse Looney didn't tell him everything ;)

thanks Spontaneous and Test0r..much appreicated with the help..i already knew about the auto update pb did when u went on a server to correct the uncompressed pb issue..so i have uninstalled and reinstalled..saving contents of pb dir now..
Its still encrypted though right? Just someone did a ss bypass on an older version of pb..i find that taking stuff apart and reassembling things..makes you understand the processes it goes thru..so with this..it should help understand the ways of pb..helping us all to make great hacks..

Ok another thing..its not universal is it..different offsets for different games obviously..but the overall pb engine must be configured for each individual game.but still have the base functions..just like the quake engine was modified for different games..but still the same 'shell' if u know what i mean..:confused:

i haven't even begun to hack ss or pb in general. to be honest i haven't even thought about where i would start. other than olly and tsearch, what tools do you guys reccommend for messing with the pb files and looking at them, modifying them, etc., and also to detect pb code built into the bfvietnam.exe. i'll start by getting the proper tools and then go from there. thanks again for the input, guys-