DarkstaR
01-18-2013, 05:36 PM
@Amb Motive (http://forums.xenobot.net/member.php?u=12432)
I'm so happy to have you around. As you can see, I am addressing you from my contemplation corner - this is where I publicize my deep thoughts about life, the universe, and everything else. Reading your posts really got me thinking and, since you're a computer science veteran and seem to know so much from your 7 year doctorate, I would love for you to answer some inquiries I have about your posts.
Just to let you guys know - you are not safe. You may have dodged this ban wave. You may have dodged several others and you may even dodge many more to come but eventually you will be deleted.
Did you have any other expectations for this game? My assumption is that, when the game grows obsolete, we will all be deleted. This falls into the category of "eventually", wouldn't you say?
Truth be told, you have already been detected. You can be naive all you want. CipSoft will only delete a certain percentage of botters per ban wave. CipSoft is a business and they want to sustain their revenue without crippling it. They will milk what they can with the current target audience. Take a course in business and you will learn that.
This is likely plausible. Every current bot is very easy to detect, but cipsoft has not made a visible effort to do so. Their community is roughly 95% botters - why would they alienate everyone? Good point. That's one strike against me, you know, saying something I've said a million times and all.
Also, if you take a course in computer programming you will learn that anything that injects a client and/or modifies it, which many bots do including Xenobot, is genuinely detectable.
As I said - any program that injects or modifies the Tibia client is detectable. Be naive, don't believe me - that's fine. Education speaks the loudest.
I would like you to expand on this. First of all, most basic computer classes don't go into reverse engineering, do they? Second of all, can you please give me some example code? Last I checked, both ring-0 and ring-3 rootkits (http://en.wikipedia.org/wiki/Rootkit) (I know a professional like you knows the terminology, but for anybody who doesn't, rootkits are stealth mechanisms which are used by viruses to hide themselves from malware analysts) inject into processes and, on occasion, even the operating system itself. Based on what you say, this is counter-intuitive. Why would a module aiming for optimal stealth use code modification and injection, the obviously most detectable method of stealth? Furthermore, how do you think developers of viruses like Stuxnet (http://en.wikipedia.org/wiki/Stuxnet), Duqu (http://en.wikipedia.org/wiki/Duqu), and Flame (http://en.wikipedia.org/wiki/Flame_(malware)) managed to stay hidden for all those years when they were using injection to hide? Lastly, how is it possible that detecting injection is easier than non-injection? The following line of code can be used to detect any external bot with a main window:
bool botRunning = (FindWindowA("iBot", NULL) != NULL);
On the other hand, detecting XenoBot is a much trickier task (to my knowledge). You can't simply enumerate all modules because I remove myself from the module list. Debugging the bot to find signatures is possible, but very hard due to my anti-reversing techniques. You could look for my code modifications but, honestly, that is much trickier than detecting an external bot window. Please show me the code you're talking about which makes this easy - I would love to see it.
What point are you trying to prove? I said that I am new to the botting world and I don't know how they work, not with how they work with the client.
That's weird. Earlier you said a computer programming course would enable you to realize that injection is easily detectable, but now you're stating you know nothing of reverse engineering (that is all bot development and detection is, after all). What computer class taught you about reverse engineering to detect injected code but not how to actually inject the code? I would like to link CipSoft to that course material if you would share.
Anyone who understands the basics of how the client is injected and how it is detectable will tell you that Xeno is as unsafe as any other injectable bot.
XenoBot is as safe as any other carefully written bot - injected or not. Yes, you heard me, I am saying that non-injected bots are also detectable to a magnitude which is of the same value of XenoBot, maybe greater due to the precautions I take. Feel free to prove me wrong, though.
How can you tell exactly who is and who is not banned? Are you able to virtually see with your own eyes who exactly is banned and who is not, without going by what people are saying on the forums?
You're right, comparing detection rates is all speculation and assumptions. But so is what you're doing. You aren't stating facts, you are stating ideas without backup. Please post code.
You are basing your "facts" off of hearsay. This means that your facts aren't even facts. I am basing my facts off of 7 years of a university degree of computer science. There is a difference.
Education is nice, but I'd appreciate it if you based your facts on code. You seem like an intelligent fellow, so please give some evidence. I'm curious.
You are one of the naive bot users who thinks he's untouchable. That's a very common mindset around here.
I personally tell my users neither I, nor my competition, are untouchable. If a user wants to think that, he is bieng ignorant. Don't use that as a leg in your argument, please.
You have come here to discredit my software, but have made your points with blind, pathetic assaults on my customers, who tend to be young, uneducated gamers. You call what you say fact but you post no source material or code - this is surprising coming from someone who claims to have a degree which would require his entire existence to thrive on the presence of factual evidence. I've confronted you on what you've had to say. I've shown code where necessary and I've provided links to back up my side of the story. I invite you to reverse engineer my software to further prove my point, if you dare. Now grow some fucking balls and back your shit up, you fake, uneducated, unintelligent, pseudo-intellectual fuck.
I'm so happy to have you around. As you can see, I am addressing you from my contemplation corner - this is where I publicize my deep thoughts about life, the universe, and everything else. Reading your posts really got me thinking and, since you're a computer science veteran and seem to know so much from your 7 year doctorate, I would love for you to answer some inquiries I have about your posts.
Just to let you guys know - you are not safe. You may have dodged this ban wave. You may have dodged several others and you may even dodge many more to come but eventually you will be deleted.
Did you have any other expectations for this game? My assumption is that, when the game grows obsolete, we will all be deleted. This falls into the category of "eventually", wouldn't you say?
Truth be told, you have already been detected. You can be naive all you want. CipSoft will only delete a certain percentage of botters per ban wave. CipSoft is a business and they want to sustain their revenue without crippling it. They will milk what they can with the current target audience. Take a course in business and you will learn that.
This is likely plausible. Every current bot is very easy to detect, but cipsoft has not made a visible effort to do so. Their community is roughly 95% botters - why would they alienate everyone? Good point. That's one strike against me, you know, saying something I've said a million times and all.
Also, if you take a course in computer programming you will learn that anything that injects a client and/or modifies it, which many bots do including Xenobot, is genuinely detectable.
As I said - any program that injects or modifies the Tibia client is detectable. Be naive, don't believe me - that's fine. Education speaks the loudest.
I would like you to expand on this. First of all, most basic computer classes don't go into reverse engineering, do they? Second of all, can you please give me some example code? Last I checked, both ring-0 and ring-3 rootkits (http://en.wikipedia.org/wiki/Rootkit) (I know a professional like you knows the terminology, but for anybody who doesn't, rootkits are stealth mechanisms which are used by viruses to hide themselves from malware analysts) inject into processes and, on occasion, even the operating system itself. Based on what you say, this is counter-intuitive. Why would a module aiming for optimal stealth use code modification and injection, the obviously most detectable method of stealth? Furthermore, how do you think developers of viruses like Stuxnet (http://en.wikipedia.org/wiki/Stuxnet), Duqu (http://en.wikipedia.org/wiki/Duqu), and Flame (http://en.wikipedia.org/wiki/Flame_(malware)) managed to stay hidden for all those years when they were using injection to hide? Lastly, how is it possible that detecting injection is easier than non-injection? The following line of code can be used to detect any external bot with a main window:
bool botRunning = (FindWindowA("iBot", NULL) != NULL);
On the other hand, detecting XenoBot is a much trickier task (to my knowledge). You can't simply enumerate all modules because I remove myself from the module list. Debugging the bot to find signatures is possible, but very hard due to my anti-reversing techniques. You could look for my code modifications but, honestly, that is much trickier than detecting an external bot window. Please show me the code you're talking about which makes this easy - I would love to see it.
What point are you trying to prove? I said that I am new to the botting world and I don't know how they work, not with how they work with the client.
That's weird. Earlier you said a computer programming course would enable you to realize that injection is easily detectable, but now you're stating you know nothing of reverse engineering (that is all bot development and detection is, after all). What computer class taught you about reverse engineering to detect injected code but not how to actually inject the code? I would like to link CipSoft to that course material if you would share.
Anyone who understands the basics of how the client is injected and how it is detectable will tell you that Xeno is as unsafe as any other injectable bot.
XenoBot is as safe as any other carefully written bot - injected or not. Yes, you heard me, I am saying that non-injected bots are also detectable to a magnitude which is of the same value of XenoBot, maybe greater due to the precautions I take. Feel free to prove me wrong, though.
How can you tell exactly who is and who is not banned? Are you able to virtually see with your own eyes who exactly is banned and who is not, without going by what people are saying on the forums?
You're right, comparing detection rates is all speculation and assumptions. But so is what you're doing. You aren't stating facts, you are stating ideas without backup. Please post code.
You are basing your "facts" off of hearsay. This means that your facts aren't even facts. I am basing my facts off of 7 years of a university degree of computer science. There is a difference.
Education is nice, but I'd appreciate it if you based your facts on code. You seem like an intelligent fellow, so please give some evidence. I'm curious.
You are one of the naive bot users who thinks he's untouchable. That's a very common mindset around here.
I personally tell my users neither I, nor my competition, are untouchable. If a user wants to think that, he is bieng ignorant. Don't use that as a leg in your argument, please.
You have come here to discredit my software, but have made your points with blind, pathetic assaults on my customers, who tend to be young, uneducated gamers. You call what you say fact but you post no source material or code - this is surprising coming from someone who claims to have a degree which would require his entire existence to thrive on the presence of factual evidence. I've confronted you on what you've had to say. I've shown code where necessary and I've provided links to back up my side of the story. I invite you to reverse engineer my software to further prove my point, if you dare. Now grow some fucking balls and back your shit up, you fake, uneducated, unintelligent, pseudo-intellectual fuck.