I don’t know, but the amount of hackers in OW is pretty crazy. We had a low diamond ana in our masters game today who was literally tracking our sombra and tracer through walls (like literally following them through walls) and tried to play it off. Then everyone watched the replay and was like “That is blatant wallhacking lol”.
And anytime you call out obvious hackers in chat everyone is so quick to defend them and say ‘you are bad’ then they watch the replay and eat some crow. Then you do things like see sleep dart bots, or cooldown bots in general that exist to use the cooldown perfectly.
My favorite is in QP (Yeah, hackers in QP, it is funny) when you see a hacking hitscan player struggling to target you cause someone else jumped infront of you and their cursor keeps microsnapping between the heads of both players lol.
And those reasons are why you have cheaters in your games and to accept it to accept that at a growing and larger number. If you think it is bad now, they are starting to truly get a feel for how to use these cheats. You let it go unabated it will get so much worse.
Valorant’ Santiago-cheat was circumvented once players were invited to attempt beating it. I think I saw the Reddit post on how it was circumvented within like a day or 2.
There are people out there that pay for cheats - some pay monthly subs to programmers who make cheats. The sad truth is, there really isn’t a way to stop cheaters from cheating, especially those motivated to make cheats for money or those willing to pay to cheat.
soon the cheat will replace the human-in-the-loop.
i remember in my undergrad sys.engr class years ago some guys made an aimbot that worked the mouse/kb/screen FROM THE OUTSIDE
in fewer ms than humans it recognized the targets, and actuated the M+kb for a snipe. it was like a $1000 setup but who knows where that tech will be in a few years. basically no amount of ring0 will detect it. worst case some ai would see the i/o looks too clean/linear/nonhuman but no assurances.
not only is it intrusive but i think valorant and riot are owned by tencent. china company who owns the game which has a 0 kernal anti-cheat. kind of sounds scary
I despise cheaters. but it needs to be server sided not client sided. As long as clients have access to those files. They can and always will be exploited.
Kernel level anti-cheat is too far and very intrusive.
I’d say yes, as the anticheat has been successful so far in reducing cheaters to almost 0 in that game while also not being in the way when doing day to day things.
If I boot up Valorant, it will show the anti cheat in my taskbar, and when I close it it goes away. If I had to guess, they either changed it so it does actually not run all the time anymore, OR it runs all the time, just in the background.
That is absolutely right. You should always think carefully about what you want to run on your computer. But when it comes to privacy, protection rings won’t help you much.
You can get all the interesting stuff if you ask nicely. In some cases, this may trigger a UAC prompt. But let’s face it, most people would just press “Allow” if Blizzard is the publisher.
All privacy concerns are already a theoretical problem that occur in user mode.
what do you mean by that? What specific rules are you talking about? have you ever looked at an Asus driver?
i completely agree. BUT that doesn’t mean that we cannot have kernel mode software.
In fact, we need it, and for some applications it is not even questioned.
Remote exploitation is very unlikely. Local exploitation of a vulnerability in such software is somewhat more likely.
So this mostly concerns public computers and workplace computers. Do not install games on such devices, that’s my advice.
First of all, there is no war. This is just an expression to make players believe that tough action will be taken against cheaters. In reality, they can’ t do anything if they have less privileges than the cheat software running on the computer.
Sure, you can do all the cool trickery in user mode, like guard pages, some dynamic pointer juggling, but all of that is worthless as soon as the cheat developers know about it. And from my experience, they know about it before the update is even rolled out.
There will be no escalation of the war between cheat developers and companies. The only point behind this is that the game publishers get on the same level as the cheat developers.
I wasn’t joking. Maybe we should go further than what Valorant is doing at the moment. Maybe game publishers should introduce special hardware for gamers. Maybe even something like a management engine on the cpu for anticheat in games would be a good idea.
That’s a good idea, too bad it doesn’t work for practical reasons. Just ask Valve.
I also can’t play games on my OpenBSD (atleast i have wireless-lan),
for this reason I have another computer.
The portrayal of it being a cat-and-mouse game is just wrong.
It’s more like the mouse is already in the house and the cat is not allowed to come in.
im ok with ring0 anticheats…
i dislike all 3rd party anticheats because they create situation when hackers have more access to anticheat source code than game devs
i hate most when anticheat works while im not in the game… and im avoiding some very good games because of that
These are all important techniques that have evolved over many years. None of them brings ultimate security, the combination of these techniques makes it more difficult for hackers /cheat developers.
I never said that all problems are solved in ring 0, I said that it is too easy to cheat in games running anticheat exclusively in user mode.
No doubt, you can have bad ring 0 anti-cheats, same as you can have bad ring 3 anti-cheats. I have never suggested anything to the contrary.
we got nothing, if we don’t know for sure, that the process checking the data is working correctly and for that you need to race against all the other processes. that’s the whole point.
It has nothing to do with obfuscation, the obfuscation takes place in the game memory and is largely defeated for quite some time.
The goal is to drive up the production costs and the work on the cheats so that cheating is not affordable for the masses.
Good luck detecting kvm guests in user mode if configured correctly.
Since you haven’t come up with a solution yet, why not use the obviously better approach than user mode detection?
Thankfully, that’s not right.
Malware sandboxes, for example, are based on this concept.
I don’t know how much you’ve looked into this, I also don’t want to take the topic too far in the wrong direction.