Garry's Mod

How to detect backdoors?

Submitted by Asepia, , Thread ID: 95422

Thread Closed
14-07-2018, 11:31 AM
#1
I want to know what's the best way to spot a back door in a leak so I don't get tricked

RE: How to detect backdoors?

#2
I don't know but i think a goodanti cheat can spot a back door

RE: How to detect backdoors?

This post was last modified: 14-07-2018, 09:43 PM by kasselschaden
#3
Basicly,
- Read and understand all code you run on your servers.
- Do NOT put workshop add-ons on a server directly, unpack and check them instead
- Override RunString/RunStringEx/CompileString to prevent running remote HTTP payloads.
- maps may have backdoors
- encrypted and/or obfuscated code is encrypted and/or obfuscated for a reason, a very bad reason.

For leaks, begin with searching for encrypted code patterns, like _G[, http, RunString(Ex), CompileString, \12\34\56 (regex \\\d+)

also a lot of backdoor examples: https://github.com/RyanJGray/Backdoor_Busting_2015

p.s. and if you spotted a backdoor in a leak - please share your findings!

RE: How to detect backdoors?

#4
14-07-2018, 11:31 AM
Asepia Wrote:
I want to know what's the best way to spot a back door in a leak so I don't get tricked

Yeah I needed some help with this stuff too incase I got Backdoor Content

RE: How to detect backdoors?

#5
14-07-2018, 11:31 AM
Asepia Wrote:
I want to know what's the best way to spot a back door in a leak so I don't get tricked

All you really need to do is skim through the code and make sure it doesnt say anything like ulx grant this dude bs or make sure it isnt leading to a database giving someone permission to delete the server. To sum it all up make sure you have a person by your side to help you with your backdoor needs.

RE: How to detect backdoors?

#6
I would say you have to test around. You cant basically say how to detect any backdoor if you dont know where one could be

RE: How to detect backdoors?

#7
I read all the replies and found it helpful, I need to start just putting workshop addons on my server, its always annoying when you find the last working LEAK and it has a backdoor for an addon you love.

RE: How to detect backdoors?

#8
Never thought of checking the leaks or addons I download from the workshop, your post made me think again on how I deal with custom content for sure. Are they that common though?

RE: How to detect backdoors?

#9
If you know lua, you can just read trough all the code.

If you don't know lua, don't download leaked addons.

RE: How to detect backdoors?

#10
Well the usually their like run console command bla bla then ulx adduser STEAM ID superadmin , just look in every script and in gamemode just every where , there is no back doors in CL

Users browsing this thread: 14 Guest(s)