cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Exit
search
  • Global community
    • Language:
      • Deutsch
      • English
      • Español
      • Français
      • Português
  • 日本語コミュニティ
  • 한국 커뮤니티
0
Upvote

Hacking in Flash games with scores

shenimeledath
New Here ,
May 08, 2012 May 08, 2012

Hello

Can some one suggest a proper solution to prevent hack attempts in Flash games where scores are submitted to a PHP layer.

thanks
MRS

TOPICS
ActionScript
1.9K
Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
replies 2 Replies 2
latest latest Jump to latest reply
birnerseff
Contributor ,
May 08, 2012 May 08, 2012

Hi,

a long time ago (using as1/2 rather than as3) I came up with this solution:

the game contains a "mild" hard-coded encryption layer (i.e. rather than adding parts of a key variable to something,

and using another part of a key var as a shift count, the code contains add 0x53 or shift by 3)

This encryption function is added to a raw movie on the server, and matched to a php session var

Rationale to do that: I found that there were many more experts on using a decompiler, than on following web data

(there was no Charles readily available at that time, either). Surely finding that the reverse-engineered game could

not even talk to the server should be discouraging

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
shenimeledath
New Here ,
May 12, 2012 May 12, 2012
LATEST
In Response To birnerseff

Check out this video... I checked several games online and around 50-60% of them can be hacked. can we discuss this further and work out a set of best practices for those who still plan to develop Flash web apps

http://www.youtube.com/watch?v=8onHuDzaSbg

To start with some steps I learned:

1. Obfuscate as3 code to make code unreadable after decompile
2. Encrypt swf to prevent decompile

3. Encrypt all communications between flash movie and server-side scripts

thanks
MRS

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Resources
Learn
Get started with Adobe Animate guide
Open in a new window
Quick guide for keyboard shortcuts
Open in a new window
How to make an ad for Adwords in Animate CC?
Open in a new window
Drawing in Animate
Open in a new window
Latest Features
What's New in Adobe Animate?
Open in a new window
Copyright © 2025 Adobe. All rights reserved.
Using the Community Experience League Terms of Use Privacy Cookie preferences Do not sell or share my personal information ad choicesAdChoices