![]() ![]() I have proof, the most you have is the BS they've been feeding you guys. PS: I am not mad, I just simply offered him help to fix the security vulnerabilities and they rudely declined, I cracked them and now they're scrambling to put together an auth that's Sub Par at best everytime. He's just lucky that he has a small customer base and that EAC doesn't have Intrusive Dump Policies/Intrusive Privacy Policies like BattlEye because if they did, they would have been detected before even releasing. Not to mention, their new security that they use that goes through their Auth Panel / Dashboard is still vulnable to a similar attack we performed on the first build. ![]() you claim the slotted thing "isn't true" yet theyve pinged me 100+ times about how they're moving over to limited slots and are no longer selling unlimited copies. The cheat has not been rewritten, Ive been keeping a close eye on it. Hello our favorite toxic Boi, you May remember me? Mads, just wanted to tell People not to listen to this Guy, he started of being a Nice Guy in the discord, then the devs themself told us that there was a cracking attempt, we were All shocked, and yes the cheat were trash in the beginning, but the bypass didnt fail anything, this cheat has been rewrote since, its awesome now, The Devs didnt think that this would be as big as is it now, and it was actually a "fun" project in the start, but now its taking more serious, The devs are working on it 24/7, and that "slotted" bs you pulled out is complelty wrong, you are just mad Beacuse you did the wrong Thing. They also market this cheat as Private/Invite Only and they've marked their prices up recently to as high as 100$, they're putting themselves in a position to be cracked and putting their customers in a position to be banned.Īlso, since it's PasteBin and the structure of the PasteBin includes technically no way for them to limit subscription times, any customer on that list basically has it for lifetime. They've failed to protect their cheat in multiple ways, not just the PasteBin Auth system that they used to use. They literally do not download the files or stream them, they give the Driver and the Pasted KDMapper to the customer and tell them to run it. If they used their own server and properly configured their HTTPS requests, they could mitigate this by properly streaming the files instead of handing the files to the user they could properly deliver them and then spoofing their HTTP requests would become useless without the files. The thing that makes it insecure is that they're using HTTP but not properly making sure that their pastebin responses arent being spoofed by a Middle Man Server. Regardless, it's cheap as **** and probably bad so I can see why they wouldn't go through the effort of encrypting their http reqs point out that there's no encryption, not just that it's a pastebin (means nothing in terms of exploitability) No, you tried to use them having a pastebin list of hwids against them but its not insecure, it is just as secure as them having a server with hwids. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |