VarrienceLvl 25- Edited
ackvonhuelio Not much i can do however i introduced tolerance for when data is enter by detecting the constructors... however like you referred to all i can do is compensate not prevent what can happen
Does my demo warn you about any key Values?
FluffypoopoLvl 55- iPhone
Varrience make it look at the owners I’d then at your set ID and if it doesn’t match have it destroy itself
- VarrienceLvl 25
Fluffypoopo Ack is referencing to an external tool that can tamper with CDO's table regardless of if they are in the view code section or not but i could make a demo of something like that and make it do a few things that would be fun.... would take some time to setup though but yk i'll keep it in mind for now
- FluffypoopoLvl 55
- iPhone
Varrience I am busy rn please don’t disturb me
- FluffypoopoLvl 55
- iPhone
Varrience no longer busy
ackvonhuelioLvl 41
Varrience
hey varrience in case it wasn't obvious don't give anyone the veil code, no one wants toxic CDO bozos messing everything up
just a reminder
also for future reference I was very against the making of veil while it was under construction, but I was really powerless to stop owokoyo so now it exists.
- VarrienceLvl 25
ackvonhuelio i know i'm not that irresponsible since its clear what it'll be used for still interesting on how CDO doesn't do more for security of the values, however i doubt that they expected it to be used much
- ackvonhuelioLvl 41
Varrience
they did minimal security for app lab keyvalues(disabled console)
I see you have yourself a D+
- VarrienceLvl 25
- Edited
ackvonhuelio I wish it was F for respect either that or 0 because it's before 1 or just have an overflow error to having an A or an S sounds boring
- Mac OS
I created Veil and honestly I think it was kinda stupid. Only really stupid script kiddies used it. There is nothing particularly special about it, besides that fact that it could inject code in separate scope, which made executing anything virtually undetectable by the client. It was really fun manipulating code.org's javascript interpreter down to the every single native function, value, setter, getter, prototype, and scope. It brought me back to roblox's hacking days.
I obfuscated it so people wouldn't be able to find out how the function worked, but then my computer bricked and I lost the source. It's not difficult to remake it, it's just I don't want to.
- ackvonhuelioLvl 41
ioioioioioi
master owokoyo is that you?
- VarrienceLvl 25
ackvonhuelio Most likely yes from the way his posts and the post about CDO msic documentation of possible exploits
- ackvonhuelioLvl 41
oh god
7 days later
INTERNECIONLvl 62- Edited
- Windows
This discussion is also very interesting
17 days later
personLvl 62
this is like watching gods having a conversation lol
- personLvl 62
my set key values not working right now is it cdo or is it a really bad design?
`
var username = prompt("enter a username (type nothing and click ok to become guest)");
var clicks = 0;
var click_power = 1;
var mouse_owned = 0;
var mmouse_owned = 0;
var mouse_give = 10;
var mouse_price = 0;
var mmouse_give = 50;
var mmouse_price = 0;
var sprite = createSprite(200, 250);
sprite.setAnimation("retro_coin_1");
var mouse_buy = createSprite(100, 50);
var pic1 = createSprite(100, 50);
pic1.setAnimation("mouse");
pic1.scale = 0.1;
mouse_buy.scale = 0.5;
var mmouse_buy = createSprite(200, 50);
var pic2 = createSprite(200, 50);
pic2.setAnimation("mega mouse ");
pic2.scale = 0.1;
mmouse_buy.scale = 0.5;
var upgrades = createSprite(300, 50);
var pic3 = createSprite(300, 50);
pic3.setAnimation("retro_powerup_coin_2");
pic3.scale = 0.1;
upgrades.scale = 0.5;
getKeyValue(encodeURIComponent(getUserId())+ "click",function(click){
if(click == undefined){
setKeyValue(encodeURIComponent(getUserId())+ "click",0);
} else {
clicks = click;
}
} );
getKeyValue(encodeURIComponent(getUserId())+ "mouse_prices",function(mouse_prices){
if(mouse_prices == undefined){
setKeyValue(encodeURIComponent(getUserId())+ "mouse_prices",50);
} else {
mouse_price = mouse_prices;
}
} );
getKeyValue(encodeURIComponent(getUserId())+ "mmouse_prices",function(mmouse_prices){
if(mmouse_prices == undefined){
setKeyValue(encodeURIComponent(getUserId())+ "mmouse_prices",200);
} else {
mmouse_price = mmouse_prices;
}
} );
function draw() {
getKeyValue(encodeURIComponent(getUserId())+ "mouse_prices",function(mouse_prices){
setKeyValue(encodeURIComponent(getUserId())+ "mouse_prices",mouse_price);
} );
getKeyValue(encodeURIComponent(getUserId())+ "mmouse_prices",function(mmouse_prices){
setKeyValue(encodeURIComponent(getUserId())+ "mmouse_prices",mmouse_price);
} );
background("white");
drawSprites();
sprite.rotationSpeed = 1;
if (mouseIsOver(sprite)) {
sprite.scale = 1.2;
sprite.rotationSpeed = 2;
} else {
sprite.scale = 1;
}
if (mouseIsOver(sprite) && mouseWentDown("leftButton")) {
clicks = clicks + click_power;
sprite.scale = 1.1;
}
if ((mouseIsOver(mouse_buy) && mouseWentDown("leftButton")) && clicks >= mouse_price) {
mouse_owned = mouse_owned + 1;
clicks = clicks - mouse_price;
mouse_price = mouse_price + 10;
}
if ((mouseIsOver(mmouse_buy) && mouseWentDown("leftButton")) && clicks >= mmouse_price) {
mmouse_owned = mmouse_owned + 1;
clicks = clicks - mmouse_price;
mmouse_price = mmouse_price + 15;
}
getKeyValue(encodeURIComponent(getUserId())+ "click",function(click){
setKeyValue(encodeURIComponent(getUserId())+ "click",clicks);
} );
textSize(24);
text("clicks: " + clicks, 0, 20);
textSize(12);
text("mouse price: " + mouse_price, 50, 100);
text("mega mouse price: " + mmouse_price, 175, 100);
if (username == "") {
username = "guest" + getUserId();
}
if (username == "guest" + getUserId()) {
username = "guest" + getUserId();
}
textSize(16);
text("name: " + username, 0, 380);
if (keyWentDown("space")) {
getKeyValue(encodeURIComponent(getUserId())+ "click",function(click){
setKeyValue(encodeURIComponent(getUserId())+ "click",clicks);
} );
getKeyValue(encodeURIComponent(getUserId())+ "mouse_prices",function(mouse_prices){
setKeyValue(encodeURIComponent(getUserId())+ "mouse_prices",mouse_price);
} );
getKeyValue(encodeURIComponent(getUserId())+ "mmouse_prices",function(mmouse_prices){
setKeyValue(encodeURIComponent(getUserId())+ "mmouse_prices",mmouse_price);
} );
text("saved", 0, 15);
}
}
console.log("hello " + username);
setInterval(function() {
if (mouse_owned >= 1) {
clicks = clicks + (mouse_give * mouse_owned);
}
}, 1000);
setInterval(function() {
if (mmouse_owned >= 1) {
clicks = clicks + (mmouse_give * mmouse_owned);
}
}, 500);
//this bit of code is not mine however i just thought it was incredible and had to use it
getKeyValue("users", function(users) {
if (getUserId() != "6gyH2ySbwXyDiizitaYptGVs7hU") {
if(users == undefined){
setKeyValue("users", 0);
} else {
setKeyValue("users", users + 1);
}
}
});
getKeyValue("users", function(users){
console.log(("mega clicker has " + users) + " views");
});`
- personLvl 62
huh... thats a lot shorter on cdo...
15 days later
- personLvl 62
you cant even code gaycat stay of this forum