Quote:
Originally Posted by LukeManolia
We have never been detected in this way and we have been running for over a year now, so I would like to say that it is HIGHLY improbable but it is possible, and this is only if the developer does not continuously track the anti-cheat updates and update his spoofer accordingly.
I am not claiming to change every serial number. It is certainly impossible to modify all serial numbers thus our hardships on game such as Valorant, although we are modifying all of the more important serials *atleast in our experience* such as disks, mac, smbios, etc…
I don’t really understand this point, as our method of spoofing cannot be detected, and acted upon due to the simple fact that it is a permanent HWID change.
This is completely untrue, otherwise data collection would be a complete waste of time. Serial numbers are not always 100% unique identifiers and they are ALWAYS in some type of hash with some other serials.
I stand by my statements fully, and it is not false advertising since it is true.
It is certainly not possible to change all serials but it is also not needed, as the serials are almost always in a hash. While there are always ways to stop the spoofer from functioning, I stand by my statement that it is quite basically impossible to accurately detect and ban a user that has already spoofed and has been playing for a while.
|
Although I do not want to engage in this discussion, I find some of your points to be valid. However, it is possible for anti-cheat software to detect new identifiers at any time, even if you have been running for a year without detection. The only way to avoid detection when a big update hits is to constantly monitor and reverse engineer the updates of the anti-cheat system, which can be a daunting task.
There are so many identifiers on a computer to choose from that reading through them will make your eyes bleed, trust me.
As for the IOCTL comment you dont implement a new IOCTL and poof theres a new serial.
Permanently spoofing an identifier on a device will modify all copies of that specific identifier, but if the device only contains one useful identifier, there is no way to generate or fetch a new one. In that case you'd have to move to a new device to fetch a new and different identifier
Serial numbers are typically not hashed together but encrypted in a blob and sent to the anti-cheat server, where they are decrypted and used to identify players. Hashing them together would weaken the identifier because changing one part would alter the entire hash. However, anti-cheat software can still detect other identifiers, such as monitor identifiers, and there may be some identifiers that cannot be permanently spoofed.
However, there are other sneaky things they're pulling but not using and not issuing bans for, such as monitor and other stuff. Additionally, there are several identifiers that cannot be spoofed permanently, which EAC may decide to pull and execute in the future. If they choose to observe the situation for a while after implementing a new identifier, a delayed ban is likely to happen regardless of whether you're using temporary or permanent spoofing. If you're not ready for this, it can lead to your downfall.
Then again, it all depends on if they add new identifiers, what they add, how they choose to uphold and ban on those as standalone identifiers.
In conclusion, both permanent and temporary spoofing can be effective, but it depends on your play style. If you want to play legitimately and don't care if you have to reinstall your OS and are prepared to do some work to get it done, permanent spoofing may be the way to go. However, if you are a continuous cheater that needs quick spoofing with little to no work that handles all identifiers, temporary spoofing may be more appropriate for you? It's sort of a double edged sword really.
TLDR; This became way too long, have a nice day
