Lmst

Anticheat Update Tracking | Hacker News

Link

Tracking Anticheat Updates
https://not-matthias.github.io/blog/anticheat-update-tracking

📌 Summary:
本文深入探討多款熱門遊戲反作弊（anticheat）系統的更新追蹤方法與內部結構。作者以 EasyAntiCheat（EAC）、Battleye、EA Anti-Cheat、Vanguard 等遊戲反作弊系統為例，分析其更新機制、 CDN 分發方式及檔案加密解密流程。透過逆向工程與二進位分析，揭露更新檔案的結構與加密演算法，並分享如何進行模組載入與解包。此外，討論反作弊軟體在保護遊戲過程中強調保護模組內容勝於加密 CDN 的策略，因為即使能下載模組，核心保護依然有效。文章最後也涵蓋少數其他反作弊系統如 EQU8、FACEIT、ESEA 的情況。整體來說，揭示了反作弊技術背後的更新追蹤不只是為了破解，而是促進安全研究與防護改進，提供了反作弊系統設計與逆向分析的重要參考價值。

🎯 Key Points:

★ EasyAntiCheat (EAC)
→ 曾使用自家 CDN 但被 Epic Games 收購後改為 EpicGames 的 CDN，改變了 URL 與參數結構。
→ 下載模組呈現高熵資料，透過自訂解密演算法可以還原為 PE 影像檔，但仍受到 VMProtect 保護，需要透過模擬或本機執行 (LoadLibraryA) 完成解包。
→ 解包後，可進一步定位並解密內嵌的驅動程式及模組。

★ Battleye
→ 主要透過獨立 CDN，使用 Unix 時間戳作為版本號碼。
→ 下載的模組中需剔除前段非 PE 資料，以正確取得核心模組。
→ 保留多版本舊檔，具備回溯能力，但部份舊版本已被刪除。

★ EA Anti-Cheat (EA-AC)
→ 2022 年推出，支援 FIFA 及 Battlefield，官方提供安裝檔直鏈，亦可使用 7z 解壓分析。
→ 新版不直接包裝驅動，須動態擷取或逆向下載流程。

★ Vanguard (Riot Games)
→ 用於 Valorant、League of Legends，具公開 API 提供版本與模組下載 URL。
→ 安裝包中含完整驅動與用戶端模組，不需額外解包程序。

★ 其他反作弊系統
→ EQU8 針對 Splitgate 遊戲，採 JSON 更新列表，可解析並下載執行檔。
→ FACEIT 主要服務職業聯賽，下載包僅含前端，檢測詳情少。
→ ESEA 下載需帳號與 CAPTCHA 控制，反作弊強度及策略另有不同。

★ 反作弊 CDN 與保護策略
→ 不同反作弊系統採用多樣 CDN 架構與加密方式，但非完全依賴 CDN 安全。
→ 反作弊重點在於保護檢測模組與執行時行為，而非純粹阻斷更新檔案的下載。

🔖 Keywords:
#反作弊系統 anticheat #EasyAntiCheat #Battleye #Vanguard #更新追蹤 update_tracking

❌ CRSED: Cuisine Royale dropped Linux support & REVIEW BOMBING appears to have started 🔥

Linux continues receiving new users in rapid pace now. Ppl want to just play their games on a preferred system as earlier.

◉This is not a technical issue - it is a "✔️ check box issue".

Played this title? You can react here 👉 https://steamcommunity.com/games/884660/announcements/detail/546735912086668872

#Anticheat #CRSED #CuisineRoyale #reviewbombing #Linux #compatibility #activism #BattlEye #Steam #SteamDeck #gaming

Neste vídeo, mostro como o Ravendawn rodava no Linux em 2024 com o Proton 8.0. Em 2025, ainda abre, só que agora com o Proton Experimental — e passou a usar o anti-cheat BattlEye, o que complica pra quem é usuário Linux.

#Ravendawn #battleye #anticheat #heroicgameslauncher #steamplay #gimpeditor #Kdenlive #inkscape #linux #gnome42 #pop_os #system76

https://www.youtube.com/watch?v=LHoRMbTH_q4

El anti trucos es #BattlEye. Solo requiere activación por parte del editor. Por ejemplo #RidersRepublic lo usa (y está activo para #Proton) y juego perfectamente. Y encima el juego lo compré en #Epic.

#battleye echt die grösste scheisse dies gibt!!
#GTAOnline kann ich vergessen weil VM gilt als cheaten

und dann läuft das teil erst noch auf kernel level

anstatt dass sie das zeugs auf ihren eigenen servern unterbinden müssen nun alle spieler #spyware installieren
fuck you #rockstar !
#gaming

Gaming | BattlEye anti-cheat in War Thunder enabled for Linux ✅

War Thunder: a free-to-play, cross-platform, MMO dedicated to aviation, armoured vehicles and naval craft - old & modern.

So - things are looking up also on the anti-cheat enabling front for Linux!

More developers should join in for the new era (where people want to move away from Windows even in gaming requiring AC) 🙂

👉 https://warthunder.com/en/game/changelog/current/1702

#gaming #Linux #WarThunder #BattlEye #anticheat #MMO #developers

War Thunder gets BattlEye anti-cheat enabled for Linux #WarThunder #BattlEye #Linux #SteamOS

War Thunder gets BattlEye anti...

War Thunder gets BattlEye anti-cheat enabled for Linux https://www.gamingonlinux.com/2025/01/war-thunder-gets-battleye-anti-cheat-enabled-for-linux/

#WarThunder #BattlEye #Linux #SteamOS

War Thunder is moving away from Easy Anti-Cheat to BattlEye #BattlEye #WarThunder #AntiCheat #EasyAntiCheat

War Thunder is moving away fro...

War Thunder is moving away from Easy Anti-Cheat to BattlEye https://www.gamingonlinux.com/2024/12/war-thunder-is-moving-away-from-easy-anti-cheat-to-battleye/

#BattlEye #WarThunder #AntiCheat #EasyAntiCheat

Back in 2021 #Valve made it incredibly easy for #BattlEye to work in Linux. All the devs have to do is ask BattleEye to enable Linux support for their specific game. I have no idea why #Bungie #Ubisoft and #Rockstar have not done this when the solution is so simple.

https://store.steampowered.com/news/group/4145017/view/3104663180636096966

GTA V Online for Linux with BattlEye (anti-cheat) RESOLVED ✅❓

Valve (Steam) pushed out series of updates that apparently fix this problem ( https://linuxrocks.online/@Linux/113157970015361531 )

*Run validation of local files* for GTA V / BattlEye to trigger these updates.

Confirmations on this much appreciated 🙂

#Linux #BattlEye #fix #GTAV #Online #anticheat #Valve

Der nachträgliche Einsatz von #BattlEye in GTA V ist perfide. Ich werde, so viele Jahre nach Kauf und nach so vielen Spielstunden, eine Erstattung bei #Steam beantragen.

#GrandTheftAuto #Steam #Rockstar #Battleye #Linux #LinuxGaming #SteamDeckOLED #SteamDeck #TakeTwo #GTA #GTAV #GTAOnline #Bazzite #RogAlly #LegionGo #Lutris #Wine #Proton #VideoGames #AntiCheat #ShareYourGames #Gaming #GamersUnite

A "not recommended" review for Grand Theft Auto V, with the review text "Linux isn't compatible with leaving a positive review for this game."

Thanks for everyone who has left a review so far. The negative reviews in the grand scheme of things are a drop in the bucket, but sustained pressure will hopefully encourage Rockstar, Battleye and Valve to work together to resolve this shit show.

#GrandTheftAuto #Steam #Rockstar #Battleye #Linux #LinuxGaming #SteamDeckOLED #SteamDeck #TakeTwo #GTA #GTAV #GTAOnline #Bazzite #RogAlly #LegionGo #Lutris #Wine #Proton #VideoGames #AntiCheat #ShareYourGames #Gaming #GamersUnite

A screenshot of the "recent reviews" section of the Grand Theft Auto V steam page, showing Very Positive but with a significant portion of reviews being negative over the last two days.

GTA V Online denied from Linux / Steam Deck users 🔥

◉Asking for refunds en masse (won't get one) sends a message
◉Bypassing BattlEye is NOT a major difficulty
◉Other games with same AC; community servers are used (official swarmed with cheaters)
◉BattlEye risks kernel access to ppl's PC's
◉Gamers were actually safer with NO anti-cheat at all?
◉BattlEye IS Linux supported
◉Rockstar could eventually send that email to Valve to make Linux a go?

#Linux #BattlEye #GTAV #Online #anticheat #Rockstar

Rockstar Games broke the Linux compatiblity with BattleEye 😭

And some Windows players have lost performances

https://www.gamingonlinux.com/2024/09/grand-theft-auto-v-gets-battleye-anti-cheat-breaks-online-play-on-steam-deck-linux/

#linux #linuxgaming #gaming #gta5 #anticheat #battleye

Parece ser que #Rockstar está respondiendo (a jugadores) que le vamos a comer los huevos si queremos jugar en línea al #GTAV en GNU/Linux. No piensan activar #BattlEye para #Proton. Eso, al menos, están contando los habitantes de #reddit.

A mí me la suda pues no tengo interés en su en línea; ni otros la verdad. Pero, oye, tenemos que hacer presión, ¿no? Nos deben tomar en serio.

If you own #GrandTheftAuto V on #Steam, please take a moment to let #Rockstar know that their laziness in implementing #Battleye removes your ability to play the game (if you use #Linux) or makes you unable to play with your friends (if you don't).

This is not review bombing. This is genuine criticism of failure.

#LinuxGaming #SteamDeckOLED #SteamDeck #TakeTwo #GTA #GTAV #GTAOnline #Bazzite #RogAlly #LegionGo #Lutris #Wine #Proton #VideoGames #AntiCheat #ShareYourGames #Gaming #GamersUnite

A not recommended review for Grand Theft Auto V on Steam, with the narrative:

"Rockstar have made a decision to lock Linux users out of the game despite allowing them for a decade, which unfortunately means I'm no longer able to play this game and thus cannot recommend it.

Rockstar can with practically no effort allow Linux users to access the game, but they are declining to do so."

I think the most bizarre part of #Rockstar screwing over #Linux and #SteamDeck owners with kernel-level #Battleye is that it's been done so far into #GTAV / #GTAOnline 's lifecycle.

#BattlEye

Client Info