Jump to content

RingSec Shield


AsiaGenius

Recommended Posts


  • Group:  Members
  • Topic Count:  29
  • Topics Per Day:  0.01
  • Content Count:  566
  • Reputation:   34
  • Joined:  11/17/11
  • Last Seen:  

This is really awesome. A shield just like Gepard and it's totally FREE!. Nice one bruh! /no1 +1 rep

Link to comment
Share on other sites


  • Group:  Members
  • Topic Count:  53
  • Topics Per Day:  0.01
  • Content Count:  411
  • Reputation:   260
  • Joined:  04/25/12
  • Last Seen:  

Oh, I will try this one. Thanks! +1

Link to comment
Share on other sites


  • Group:  Content Moderator
  • Topic Count:  22
  • Topics Per Day:  0.00
  • Content Count:  639
  • Reputation:   596
  • Joined:  11/25/11
  • Last Seen:  

Hello @AsiaGenius.
A nice project you have there.

I would love to see a test of it against the well known cheating softwares of RO.
The best of luck!

Link to comment
Share on other sites


  • Group:  Members
  • Topic Count:  1
  • Topics Per Day:  0.00
  • Content Count:  20
  • Reputation:   4
  • Joined:  11/10/11
  • Last Seen:  

Looking forward for this project and good luck !!

Link to comment
Share on other sites


  • Group:  Members
  • Topic Count:  6
  • Topics Per Day:  0.00
  • Content Count:  78
  • Reputation:   12
  • Joined:  05/08/16
  • Last Seen:  

Wooow!!!! good proyect!!!!

You have very future

Link to comment
Share on other sites


  • Group:  Members
  • Topic Count:  68
  • Topics Per Day:  0.02
  • Content Count:  212
  • Reputation:   5
  • Joined:  01/24/12
  • Last Seen:  

Thanks I will try Awesome anti cheat B)

Link to comment
Share on other sites


  • Group:  Members
  • Topic Count:  155
  • Topics Per Day:  0.03
  • Content Count:  535
  • Reputation:   23
  • Joined:  11/19/11
  • Last Seen:  

Thank you so much for this <3

Link to comment
Share on other sites


  • Group:  Members
  • Topic Count:  29
  • Topics Per Day:  0.01
  • Content Count:  99
  • Reputation:   2
  • Joined:  02/23/14
  • Last Seen:  

support all client ?

Link to comment
Share on other sites


  • Group:  Forum Moderator
  • Topic Count:  47
  • Topics Per Day:  0.01
  • Content Count:  796
  • Reputation:   101
  • Joined:  05/23/12
  • Last Seen:  

"Hexed: 2013 until the most recent (2016)"

 

Rynbef~

Link to comment
Share on other sites


  • Group:  Members
  • Topic Count:  3
  • Topics Per Day:  0.00
  • Content Count:  248
  • Reputation:   34
  • Joined:  11/19/11
  • Last Seen:  

NICE, gonna test this, and will update you mate. :D

Link to comment
Share on other sites

  • 2 weeks later...

  • Group:  Members
  • Topic Count:  37
  • Topics Per Day:  0.01
  • Content Count:  108
  • Reputation:   17
  • Joined:  01/23/14
  • Last Seen:  

Thanks! 

Link to comment
Share on other sites


  • Group:  Members
  • Topic Count:  0
  • Topics Per Day:  0
  • Content Count:  2
  • Reputation:   0
  • Joined:  10/08/15
  • Last Seen:  

hello can you make any guide video? 

@AsiaGenius and Thanks for this awesome project.

Got it on git thanks...

Edited by shankar00
Link to comment
Share on other sites


  • Group:  Members
  • Topic Count:  29
  • Topics Per Day:  0.01
  • Content Count:  566
  • Reputation:   34
  • Joined:  11/17/11
  • Last Seen:  

Any live server using this? I'm applying this to my server but I wanted to make a test with some 3PP. Thanks!

Link to comment
Share on other sites

  • 2 weeks later...

  • Group:  Members
  • Topic Count:  18
  • Topics Per Day:  0.01
  • Content Count:  51
  • Reputation:   4
  • Joined:  10/23/16
  • Last Seen:  

Any news about this project?

Link to comment
Share on other sites


  • Group:  Members
  • Topic Count:  12
  • Topics Per Day:  0.00
  • Content Count:  48
  • Reputation:   2
  • Joined:  02/03/12
  • Last Seen:  

very nice !!!!

Link to comment
Share on other sites


  • Group:  Members
  • Topic Count:  5
  • Topics Per Day:  0.00
  • Content Count:  11
  • Reputation:   0
  • Joined:  11/03/12
  • Last Seen:  

I can't seems to add the dll to the client and make it work.

I tried to add it from Nemo and also using LordPe.

But the client won't start after i add the dll it just crash.

 

Link to comment
Share on other sites

  • 4 weeks later...

  • Group:  Members
  • Topic Count:  0
  • Topics Per Day:  0
  • Content Count:  2
  • Reputation:   7
  • Joined:  10/09/13
  • Last Seen:  

I would recommend staying away from this "shield".

  • The only server change is a custom login packet that includes your hardware id + mac + a static key. There is no packet encryption or server-side logging.
  • They are distributing a pirated copy of exe/dll packing software (Molebox) https://github.com/AsiaGenius/ring-0/tree/master/Tools/MoleBox (portable)/INSTALL LICENSE
  • The client dll connects to their web server to verify everything, if their web server is down; you won't be able to use your client.
  • Their website / report server is vulnerable to SQL injection, there is 0 input validation.
  • ... etc

If they can't do basic input validation on their web server, I really doubt they're capable of doing advanced cheat detection, or delivering many of the features they claim to support.

 

Here is a snippet from the report server (http://guard.ringsec.net/) after passing a bit of invalid data. You could compromise all of their accounts / data / etc, and based on the register form showing the password in plaintext; I highly doubt they actually hash your account passwords.

Quote

Error: INSERT INTO logs (hwid, date, cod, descript, ip) VALUES ('wat', 'Monday 13th of February 2017 11:56:25 PM', 'wat', 'wat', '' OR 1=1 --')
You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '')' at line 1

 

Please stay far away from this software until they resolve all of these issues. Do not use it in production.

  • Upvote 6
Link to comment
Share on other sites


  • Group:  Members
  • Topic Count:  5
  • Topics Per Day:  0.00
  • Content Count:  11
  • Reputation:   0
  • Joined:  11/03/12
  • Last Seen:  

We need feedback regarding Zigara post as soon as possible!

Link to comment
Share on other sites


  • Group:  Members
  • Topic Count:  19
  • Topics Per Day:  0.01
  • Content Count:  193
  • Reputation:   41
  • Joined:  07/21/16
  • Last Seen:  

Took a look at their reset.php from their repo link~

There is no sign of any prepared statements or any input validation. Basically this certain function on their website is a vulnerability.

Whatever query you input doesnt get cleaned out, going directly into the server and is very dangerous.

I don't have the best PHP knowledge, but I know a vulnerable script when I see one.

The solution would have been quite easy and having prepared statements could have made it a lot harder to hack.

Unless they give provide a solution to this issue, I highly suggest not to use their services until they secure their files. As Zigara has expressed, he can help in fixing this so I hope they will do something.

P.S: I'm not sure if they closed down their Discord channel, because it has disappeared from my joined channels.

  • Upvote 2
Link to comment
Share on other sites


  • Group:  Members
  • Topic Count:  0
  • Topics Per Day:  0
  • Content Count:  2
  • Reputation:   7
  • Joined:  10/09/13
  • Last Seen:  

I did a bit more digging around, and I can confirm; ringsec.net stores all passwords in plain text.

If you signed up at ringsec.net using a password you've used for other services; change all your passwords NOW!

  • Upvote 1
Link to comment
Share on other sites


  • Group:  Developer
  • Topic Count:  36
  • Topics Per Day:  0.01
  • Content Count:  587
  • Reputation:   431
  • Joined:  01/26/16
  • Last Seen:  

Dear rAthena users who may have used this so-called hackshield,

It has become known that the site of this hackshield has a major security vulnerability that allows malicious attacker to read and/or change
the data on its database. In addition, the creator of this hackshield, who should have been someone with knowledge in field of computer security,
should know that passwords should not be stored in plain-text. Yet, your passwords are stored as plain-text in ringsec.net.

We don't have any evidence that the data has been leaked, although if you use the same password as the one you used on RingSec somewhere else, change your password now!

As a side note, rAthena does not encourage or support any attacking attempt at a third party site.

Regards,

Secret.

  • Upvote 9
Link to comment
Share on other sites

Guest
This topic is now closed to further replies.
×
×
  • Create New...