Hack track

[SHAD]

I was wondering if anyone could make a system for mccodes that tracks any hacking attempts made and give a littile details of where they are made and how they were made, so the owner can take action and fix the problem.

[Danny696]

Hmm, try something like a log user, see what the add to the URL e.g forum/crystal hack both use urls. Thats probabbly your best bet i think.

[sniko]

It would require a lot of edits in some files to insert their inputs into a database, So you could just log a massive money/crystal increase or a change in staff posisition.

[Dave]

It would require a lot of edits in some files to insert their inputs into a database, So you could just log a massive money/crystal increase or a change in staff posisition.

Or you could just log every SQL query? Use regex to get out the data and then dump it in a logs table :) This could be slow though.

[Curt]

There is a free log user system in these forums somewhere that log all url actions from a player while they are on your site.

 

so if they went to this link:

http://www.yourgame.com/crystalmarket.php?hack=hackhere

then it will show in the logs.

I made my system so it automatically logs all new players for a set limit because if someone wants to hack your game, most likely they are not gonna hang out for a few days before they attempt a hack. They usually go right for the hacks.

So my log system will catch the attempts. Only downside to this is you have to manually go through and look at the logs.

Its a nice mod and Thanks for whoever made it :)

I would link you but ive had it for so long im not sure where to find it.

maybe search "log system" ?

hope that helps ya out some.

Cheers

[Dayo]

Only downside to this is you have to manually go through and look at the logs.

try making a filter so it only shows urls that include certian phrases e.g. DROP, UPDATE, user_level etc etc...

[Danny696]

the fre log system doesnt work

[Curt]

the fre log system doesnt work

very strange...it works fine for me ?

[SHAD]

Works perfect, i found it. it logs all the urls player enter.

[Curt]

cool, i was also looking for it but didnt find it :P...

lol but i did find this which im going to check out...

[MMCODES V2] HACKING ATTEMPTS LOGGED

[SHAD]

That works really well also, it gives details of any querys being manipulated.

edit:

here is the link to loging user

[Free] Log Suspicious Users

[Guest Drizzle]

It would require a lot of edits in some files to insert their inputs into a database, So you could just log a massive money/crystal increase or a change in staff posisition.

Or you could just log every SQL query? Use regex to get out the data and then dump it in a logs table :) This could be slow though.

You talking about logging every query into a "example.log", and then using regex to interpret the data and put it in a table? Sounds good, but not many people here know how to use regex that well.

[Jordan Palmer]

Then they'll have to learn or pay someone

[CrazyT]

You can simply edit the class to see if a query fails?

Example...

$rs = mysql_query($sql, self::$link);
if ($rs === false)
{
mysql_query('INSERT INTO `db_logs` (`sql`, `time`) ..... ect');
}

[Jordan Palmer]

Good idea Alan..

 

I totally didn't think of making use off the class lol

[Danny696]

I did, before this topic was even alive. Previously posted on DF, ill bring it here now.

[Danny696]

[mccode v2.x] Log databse errors