VELOCITY | Rust Cheat | Cheap & Undetected

Your disocrd link is wrong. Please update.

Is this the same velocity as deadringer is selling?

Quote:

Originally Posted by dmp21 Is this the same velocity as deadringer is selling?

Yes, id beware of their cheat.
They auth customers using a PasteBin Link, very unsecured cheat.
[Only registered and activated users can see links. Click Here To Register...]

I had been in Velocity's Discord for some time, waiting and looking at reviews and eventually it looked good enough to justify the price. I Purchased the cheat directly from Velocity using their Website, when I purchased I got a key in my email and a link to register and activate. I tried to use the key, it failed to work. I provided a video to the owner and the key/reciept. The owner provided no steps to help me, they also deactivated my Velocity account. I tried to get help from the other owner "Smash", he was in general talking to someone else and totally ignored me.

[Only registered and activated users can see links. Click Here To Register...]
[Only registered and activated users can see links. Click Here To Register...]

Quote:

Originally Posted by MaverickTreats Yes, id beware of their cheat. They auth customers using a PasteBin Link, very unsecured cheat. [Only registered and activated users can see links. Click Here To Register...]

not really, if requests/responses aren't encrypted it doesn't matter if they auth using pastebin or their own servers; the problem is that you can just open up httpdebugger and view the request, not that its a pastebin

Quote:

Originally Posted by xodev not really, if requests/responses aren't encrypted it doesn't matter if they auth using pastebin or their own servers; the problem is that you can just open up httpdebugger and view the request, not that its a pastebin

Well obviously this is why I stated this, their auth is still exploitable after their update.

Quote:

Originally Posted by MaverickTreats Well obviously this is why I stated this, their auth is still exploitable after their update.

no, you tried to use them having a pastebin list of hwids against them but its not insecure, it is just as secure as them having a server with hwids. point out that there's no encryption, not just that it's a pastebin (means nothing in terms of exploitability)

regardless, it's cheap as fuck and probably bad so I can see why they wouldn't go through the effort of encrypting their http reqs

Quote:

Originally Posted by xodev no, you tried to use them having a pastebin list of hwids against them but its not insecure, it is just as secure as them having a server with hwids. point out that there's no encryption, not just that it's a pastebin (means nothing in terms of exploitability) regardless, it's cheap as fuck and probably bad so I can see why they wouldn't go through the effort of encrypting their http reqs

There is encryption, SSL.

The thing that makes it insecure is that they're using HTTP but not properly making sure that their pastebin responses arent being spoofed by a Middle Man Server.

If they used their own server and properly configured their HTTPS requests, they could mitigate this by properly streaming the files instead of handing the files to the user they could properly deliver them and then spoofing their HTTP requests would become useless without the files.

They literally do not download the files or stream them, they give the Driver and the Pasted KDMapper to the customer and tell them to run it.

They've failed to protect their cheat in multiple ways, not just the PasteBin Auth system that they used to use.

They also market this cheat as Private/Invite Only and they've marked their prices up recently to as high as 100$, they're putting themselves in a position to be cracked and putting their customers in a position to be banned.

Also, since it's PasteBin and the structure of the PasteBin includes technically no way for them to limit subscription times, any customer on that list basically has it for lifetime.

Hello our favorite toxic Boi, you May remember me? Mads, just wanted to tell People not to listen to this Guy, he started of being a Nice Guy in the discord, then the devs themself told us that there was a cracking attempt, we were All shocked, and yes the cheat were trash in the beginning, but the bypass didnt fail anything, this cheat has been rewrote since, its awesome now, The Devs didnt think that this would be as big as is it now, and it was actually a "fun" project in the start, but now its taking more serious, The devs are working on it 24/7, and that "slotted" bs you pulled out is complelty wrong, you are just mad Beacuse you did the wrong Thing.

Quote:

Originally Posted by MaverickTreats There is encryption, SSL. The thing that makes it insecure is that they're using HTTP but not properly making sure that their pastebin responses arent being spoofed by a Middle Man Server. If they used their own server and properly configured their HTTPS requests, they could mitigate this by properly streaming the files instead of handing the files to the user they could properly deliver them and then spoofing their HTTP requests would become useless without the files. They literally do not download the files or stream them, they give the Driver and the Pasted KDMapper to the customer and tell them to run it. They've failed to protect their cheat in multiple ways, not just the PasteBin Auth system that they used to use. They also market this cheat as Private/Invite Only and they've marked their prices up recently to as high as 100$, they're putting themselves in a position to be cracked and putting their customers in a position to be banned. Also, since it's PasteBin and the structure of the PasteBin includes technically no way for them to limit subscription times, any customer on that list basically has it for lifetime.

Btw that message was for you

Quote:

Originally Posted by MadsFc Hello our favorite toxic Boi, you May remember me? Mads, just wanted to tell People not to listen to this Guy, he started of being a Nice Guy in the discord, then the devs themself told us that there was a cracking attempt, we were All shocked, and yes the cheat were trash in the beginning, but the bypass didnt fail anything, this cheat has been rewrote since, its awesome now, The Devs didnt think that this would be as big as is it now, and it was actually a "fun" project in the start, but now its taking more serious, The devs are working on it 24/7, and that "slotted" bs you pulled out is complelty wrong, you are just mad Beacuse you did the wrong Thing. Btw that message was for you

Your comment made literally no sense.

The cheat has not been rewritten, Ive been keeping a close eye on it. you claim the slotted thing "isn't true" yet theyve pinged me 100+ times about how they're moving over to limited slots and are no longer selling unlimited copies. Lmao.

Not to mention, their new security that they use that goes through their Auth Panel / Dashboard is still vulnable to a similar attack we performed on the first build.

He's just lucky that he has a small customer base and that EAC doesn't have Intrusive Dump Policies/Intrusive Privacy Policies like BattlEye because if they did, they would have been detected before even releasing.

PS: I am not mad, I just simply offered him help to fix the security vulnerabilities and they rudely declined, I cracked them and now they're scrambling to put together an auth that's Sub Par at best everytime.

I have proof, the most you have is the BS they've been feeding you guys. :)

Quote:

Originally Posted by MaverickTreats Your comment made literally no sense. The cheat has not been rewritten, Ive been keeping a close eye on it. you claim the slotted thing "isn't true" yet theyve pinged me 100+ times about how they're moving over to limited slots and are no longer selling unlimited copies. Lmao. Not to mention, their new security that they use that goes through their Auth Panel / Dashboard is still vulnable to a similar attack we performed on the first build. He's just lucky that he has a small customer base and that EAC doesn't have Intrusive Dump Policies/Intrusive Privacy Policies like BattlEye because if they did, they would have been detected before even releasing. PS: I am not mad, I just simply offered him help to fix the security vulnerabilities and they rudely declined, I cracked them and now they're scrambling to put together an auth that's Sub Par at best everytime. I have proof, the most you have is the BS they've been feeding you guys. :)

Pinged you, that's a lie. Edit : Also you didn't crack them, i got a good laugh when i saw you trying to use it, it had zero protection but now it does, and you couldnt even crack it when it had no security, and you dont even know if its been rewriting, since you dont have acces to any of the buyers only channels, but keep lying, PS. also if you had a full team to crack a non protected cheat, then you must not have been good at doing what you did hehe.

Quote:

Originally Posted by MadsFc Pinged you, that's a lie. Edit : Also you didn't crack them, i got a good laugh when i saw you trying to use it, it had zero protection but now it does, and you couldnt even crack it when it had no security, and you dont even know if its been rewriting, since you dont have acces to any of the buyers only channels, but keep lying, PS. also if you had a full team to crack a non protected cheat, then you must not have been good at doing what you did hehe.

The cheat was protected, it was VMProtected and it had a basic AntiDebug protection on it as well.

Proof of the crack:
[Only registered and activated users can see links. Click Here To Register...]

Proof that I was tagged:
[Only registered and activated users can see links. Click Here To Register...]

+rep good people

discord link is outdated