Page 1 of 2 12 LastLast
Results 1 to 25 of 48

Thread: Script authing & the internet

  1. #1
    Join Date
    Dec 2006
    Location
    Third rock from the sun.
    Posts
    2,510
    Mentioned
    4 Post(s)
    Quoted
    1 Post(s)

    Default Script authing & the internet

    Welcome!

    Where to start, where to start...

    Assuming that you know what script authing is, I'm gonna start out with probably the simplest script auth a person can make. Note, however, that with simplicity comes weakness

    SCAR Code:
    program New;

    var
    UserCode, Code: String;

     procedure UserInput;
      begin
       Code := 'Passcode';
       UserCode := Readln('Please type in the authorization code below.');
       if(Code = UserCode)then
        Writeln('Authorized');
       if(Not(Code = UserCode))then
        Writeln('Not authorized');
      end;

    begin
    UserInput;
    end.

    Yes... This is a very weak auth script. The user can simply go through and take out the authorization part of your script.

    Let's try hosting our auth code on another site...

    SCAR Code:
    program New;

    var
    UserCode, SubCode, Code: String;

     procedure UserInput;
      begin
       SubCode := GetPage('http://Jason2gs.fileave.com/Code.txt');
       Code := Copy(SubCode, 1, 8);
       UserCode := Readln('Please type in the authorization code below.');
       if(Code = UserCode)then
        Writeln('Authorized');
       if(Not(Code = UserCode))then
        Writeln('Not authorized');
      end;

    begin
    UserInput;
    end.

    The reason we have to use the Copy() tag with code, is because the site I'm using to host my auth code on adds a couple of characters to the end of your file. If you used GetPage() it would screw up.

    You can also use the Copy() tag to hide your auth code somewhere inside of the text file. Just to add a bit of (much needed) security to it

    Anyways, we seem to be getting somewhere. Looks like it's time for my favorite part- Obfuscating!

    Let's put this over here, that over there... Oh, this looks like it can fit perfectly over here... Oops, can't forget to one line it!

    *it's in the attachments*

    Alright, that wasn't the best obfuscating. Just be creative. It's a lot of fun once you really get into it

    Try to declare a variable as two different things, twice inc your script. That makes it more confusing.

    Using a variable once in the main script, and once in the obfuscated authorization, will make it very confusing to the person trying to crack the obfuscation.

    Some other things you can do that are kind of in the same boat (that, being having to do with connecting to the internet):

    Script news. Easy to do, but looks impressive.

    Turn a script on and off. Just have something in your script connect to the internet, and check to see if a certain code is there. If it is, run the script. If it's not, terminate.

    With a bit of php, you could probably have progress reports sent directly to you. (Wouldn't know, don't know php )

    There's a lot of stuff you can do. Again, just be creative.

    Thanks for reading!

    -Mike

  2. #2
    Join Date
    Sep 2006
    Location
    New Jersey, USA
    Posts
    5,347
    Mentioned
    1 Post(s)
    Quoted
    3 Post(s)

    Default

    Aha! Firstest Post!


    PS: I got a great auth idea at school today, so expect to get a few pm's

    EDIT:

    You might want to clear up the bit about using two variables with the same name, it's a tad confusing

    Maybe also some different ways to obfuscate?
    Interested in C# and Electrical Engineering? This might interest you.

  3. #3
    Join Date
    Dec 2006
    Location
    Third rock from the sun.
    Posts
    2,510
    Mentioned
    4 Post(s)
    Quoted
    1 Post(s)

    Default

    *clicks tongue*

    We should sell auths...

  4. #4
    Join Date
    Sep 2006
    Location
    New Jersey, USA
    Posts
    5,347
    Mentioned
    1 Post(s)
    Quoted
    3 Post(s)

    Default

    Like...premade auths that people can just pop into a script?

    Ya; that idea passed through my mind the other day, but I really didn't think much of it

    There's really not that many pay scripts, so....
    Interested in C# and Electrical Engineering? This might interest you.

  5. #5
    Join Date
    Dec 2006
    Location
    Third rock from the sun.
    Posts
    2,510
    Mentioned
    4 Post(s)
    Quoted
    1 Post(s)

    Default

    True. Plus, if someone is good enough to make a pay-script, they probably don't need our help making an auth

  6. #6
    Join Date
    Jan 2007
    Location
    In my evil lair!
    Posts
    39
    Mentioned
    0 Post(s)
    Quoted
    0 Post(s)

    Default

    You probably need to add '
    SCAR Code:
    terminate;
    ' after
    SCAR Code:
    Writeln('Not authorized');

  7. #7
    Join Date
    Dec 2006
    Location
    Third rock from the sun.
    Posts
    2,510
    Mentioned
    4 Post(s)
    Quoted
    1 Post(s)

    Default

    Mine didn't need that. In my case, it would already terminate.

    People can add in whatever they need

  8. #8
    Join Date
    Jan 2007
    Location
    In my evil lair!
    Posts
    39
    Mentioned
    0 Post(s)
    Quoted
    0 Post(s)

  9. #9
    Join Date
    Dec 2006
    Location
    Third rock from the sun.
    Posts
    2,510
    Mentioned
    4 Post(s)
    Quoted
    1 Post(s)

    Default

    Did you not read the tutorial? The whole thing?

    *sigh*

    Quote Originally Posted by Jason2gs
    You can also use the Copy() tag to hide your auth code somewhere inside of the text file. Just to add a bit of (much needed) security to it
    Must I quote myself?

  10. #10
    Join Date
    Jan 2007
    Location
    In my evil lair!
    Posts
    39
    Mentioned
    0 Post(s)
    Quoted
    0 Post(s)

  11. #11
    Join Date
    Sep 2006
    Location
    New Jersey, USA
    Posts
    5,347
    Mentioned
    1 Post(s)
    Quoted
    3 Post(s)

    Default

    That's why you hide the whole thing in a very lengthly bit of words
    Interested in C# and Electrical Engineering? This might interest you.

  12. #12
    Join Date
    Jan 2007
    Location
    In my evil lair!
    Posts
    39
    Mentioned
    0 Post(s)
    Quoted
    0 Post(s)

  13. #13
    Join Date
    Dec 2006
    Location
    Third rock from the sun.
    Posts
    2,510
    Mentioned
    4 Post(s)
    Quoted
    1 Post(s)

    Default

    Did I not just say that? Hmm...

    Take a look at this:

    http://Jason2gs.fileave.com/AuthCode.txt

    That's one of my auth codes. More accurately, my auth code is inside of that.

  14. #14
    Join Date
    Jan 2007
    Location
    In my evil lair!
    Posts
    39
    Mentioned
    0 Post(s)
    Quoted
    0 Post(s)

  15. #15
    Join Date
    Dec 2006
    Location
    Third rock from the sun.
    Posts
    2,510
    Mentioned
    4 Post(s)
    Quoted
    1 Post(s)

    Default

    Like heck I'm gonna give you that

    It's my favorite and best auth code, I'm keepin' it private for the moment

    I getting tired of Signatures...
    Oh

    Do you mind if I use your old signature? Just modified a bit?

  16. #16
    Join Date
    Sep 2006
    Location
    New Jersey, USA
    Posts
    5,347
    Mentioned
    1 Post(s)
    Quoted
    3 Post(s)

    Default

    Wzoah!

    Was that made with my keygen?

    Looks like it....



    What's nice is that you can use one piece of text with multiple auths, and have each one different
    Interested in C# and Electrical Engineering? This might interest you.

  17. #17
    Join Date
    Jan 2007
    Location
    In my evil lair!
    Posts
    39
    Mentioned
    0 Post(s)
    Quoted
    0 Post(s)

  18. #18
    Join Date
    Dec 2006
    Location
    Third rock from the sun.
    Posts
    2,510
    Mentioned
    4 Post(s)
    Quoted
    1 Post(s)

    Default

    Actually this was made before you made your keygen. A while before

    I took my spammer on JASF and modified it to only type thirty characters, then go down a line. Ran it for a few seconds, and got that

    Quote Originally Posted by smithspsbob View Post
    Sure i don't need it anymore

    Couldn't you i make one up for me?
    Awesome

    That last part is a bit confusing.

    "Could you make one up for me"?

    Edit: Could you get me the image URL?

  19. #19
    Join Date
    Jan 2007
    Location
    In my evil lair!
    Posts
    39
    Mentioned
    0 Post(s)
    Quoted
    0 Post(s)

  20. #20
    Join Date
    Dec 2006
    Location
    Third rock from the sun.
    Posts
    2,510
    Mentioned
    4 Post(s)
    Quoted
    1 Post(s)

    Default

    Ah, alrighty

    I'll plan on doing that later tonight. I think we're gonna eat soon, then go see Wild Hogs

  21. #21
    Join Date
    Jan 2007
    Location
    In my evil lair!
    Posts
    39
    Mentioned
    0 Post(s)
    Quoted
    0 Post(s)

  22. #22
    Join Date
    Dec 2006
    Location
    Third rock from the sun.
    Posts
    2,510
    Mentioned
    4 Post(s)
    Quoted
    1 Post(s)

    Default

    Thanks

    [offtopic]

    You've got a soul stealer too!

    Don't click Michael... Don't click... *tries to resist clicking* Noo! *clicks*

    [/offtopic]

  23. #23
    Join Date
    Jan 2007
    Location
    In my evil lair!
    Posts
    39
    Mentioned
    0 Post(s)
    Quoted
    0 Post(s)

  24. #24
    Join Date
    Sep 2006
    Location
    New Jersey, USA
    Posts
    5,347
    Mentioned
    1 Post(s)
    Quoted
    3 Post(s)

    Default

    I feel left out



    Anyways, you should remember that you're not restricted to text files for authcodes
    Interested in C# and Electrical Engineering? This might interest you.

  25. #25
    Join Date
    Feb 2007
    Location
    USA
    Posts
    667
    Mentioned
    0 Post(s)
    Quoted
    0 Post(s)

    Default

    If somebody wanted to use the script what is stopping them from simply changing this
    SCAR Code:
    if(Code = UserCode)then

    to this so that it always returns true. Doesn't matter how hidden your actual password is then...

    SCAR Code:
    if(5 = 5)then

Page 1 of 2 12 LastLast

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Internet Shut Off. :(
    By Lokito in forum News and General
    Replies: 5
    Last Post: 10-10-2007, 10:49 PM
  2. My Internet...
    By Jason2gs in forum Blogs and Writing
    Replies: 12
    Last Post: 05-06-2007, 08:20 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •