Thread: protection on your ea from being unlocked

1 Attachment(s)

Originally Posted by ;

quote As far as I understand it was not broken/hacked at the manner that you can decompile all build stuff. Just some things protected by MT in their market and even then only under well defined conditions. For me the very best protection is always not to discuss the vital calculation. So the most effective way for me personally would be to build a webservice that gives you the calculation results and just build the webclient with mql. So you've got all security egies calculations in your own server and never at customer site. Decompiling the customer provides them nothing of attention....

For hackers, it is not crucial to decompile all things (though it will be ideal)

what they need to do is find within ex4 the bytes that locked the EA into the acc and remove that. This way, though they can not decompile it, at least there's no restriction to use it pass the expiry date or use it on other acc. That is something I would like to prevent or at least try to create it so hard it is not worth the effort

I googled up on hex editor and downloaded a hex editor tool and tries to see what my ex4 looks like. I compiled the exact same mql4 (with just different file name) 3 times. Attached are exactly what I saw

1) Although all 3 ex4 are exactly the same (except file name), I view entirely different hex value. This means mt4 somehow added some things within their compiler to create each ex4 unique

two) even though my ea has strings, so I can not seem to find anything that resembles something I can make out

My decision (again I am not a hacker, I am just trying to find ways to protect my ea) if just using hex editor, it is quite difficult to pin point exactly what and where to change

am I correct in this?
https://www.forexforum.co.za/general...-question.html

Originally Posted by ;

quote for hackers, it is not necessary to decompile all things (though it will be ideal) what they need to do is loe within ex4 that the bytes that secured the EA into the acc and eliminate that. This way, though they can not decompile it, at least there is no restriction to use it pass the expiry date or use it onto additional acc. That is something I would love to avoid or at least attempt to create it so hard that it is not worth the effort I googled up about hex editor and downloaded a hex editor tool and tries to see what my ex4 looks like. I compiled the same...

I explained before. Protection is broken. Apparently you are working with protected stuff then you have the captures behaviour

Originally Posted by ;

quote As far as I understand it wasn't broken/hacked in the manner which you are able to decompile all build stuff. Only some stuff protected by MT in their market and even then only under well defined conditions. For me the very best protection would be to not share the very important calculation. So the safest way for me would be to build a webservice that provides you the calculation results and only build the webclient with mql. So you've got all protection egies calculations at your own server and never at customer website. Decompiling the customer provides them nothing of attention....

I have no clue how the webclient thing works

any keywords I can use to google it?

Originally Posted by ;

quote I explained before. Security is broken. Apparently you're working with secure stuff then you've got the ches behaviour

As stated by everyone over about the mql5.com forums there isn't any evidence that current builds can be decompiled and everyone so much claiming to do this has proven out to be a scammer. I delivered one of my own ex4 just to test and of course it too was a scam. I am interested where did you find evidence that security is broken?

Originally Posted by ;

quote As stated by everybody over on the mql5.com forums there isn't any proof that recent builds can be decompiled and everybody so far claiming to do this is proven to only be a scammer. I sent one of my own ex4 just to test and of course it also was a scam. I am curious where did you discover evidence that security is broken?

I understand for now it isn't feasible to decompile but possible to just alter the ex4 content to unlock the EA eg if it's secured to acc has an expiry?

Originally Posted by ;

quote I understand for now it is not feasible to decompile but possible to just change the ex4 material to unlock the EA eg if it's secured to acc has an expiry?

How can that be achieved with no source code.

Originally Posted by ;

quote How can this be achieved without the source code.

I am not 100% sure but I was told hackers do some thing to ex4 file with hex editor or memory ditch or some sort of injector. I don't have any idea how it's done (if possible)

Originally Posted by ;

quote According to everyone over on the mql5.com forums there's no proof that recent builds can be decompiled and everyone so much claiming to do this has turned out to only be a scammer. I sent one of my own ex4 simply to try and of course it also was a scam. I'm interested where did you find signs that security is broken?

Did you ask service desk? Should you work with them normally sometimes they can reply you a few questions. Anyway you've got one mql5 thread using a true case. Moderator affirms that document was broken then no doubt about was real case. However, we are talking about remove coder protection like bomb. When you bypass file ex4 security you receive asm code, not source code. Then you can bypass protections such as games but you cant restore legible code as preceding b600 ex4 documents

Originally Posted by ;

quote How can that be achieved without the source code.

Cracker does not need mql4 however .ex4. I got my EA being cracked recently. I can trace all action from my EA by that way I confirm my EA being deciphered. All datas I collected show me no doubt

Hi all,

first of all I would like to explain I am not a hacker and I don't have intention to hack anyones EA. I code my EA using acc lock so that they can join my affiliate

what I do is when somebody registered under me, I'll send them the ex4 file for use but I have some suspicion they are receiving the ex4 to be unlocked by somebody so it can now be publicly utilized. Why I suspected? Because there is 1 man who after registered, deposited USD1k transaction just a few small lots and after a while he asked to provide him ex4 for the following 5 more acc on the pretense he wishes to use different egy for different acc

after I gave him the exact ex4 for 5 acc, I noticed he'd withdraw his capital along with the first acc and these 5 acc never had some trading activities because

the only conclusion I can make is, he's trying to unlock my EA. I have asked about and what I collect is construct 600 can't be decompiled but it can't be unlocked (something about injector). This has me worried

the way I locked my EA differs in the sense if the account doesn't fit what's set from the EA, the EA will still operate BUT I place a few traps where the EA will perform abnormal things. My target was to make it harder for a hacker to hack it by making it less obvious

bwt, I plan to perform more advanced safety for my following EA upgrade

Query :
All the safety features I have set in placed are just to counter what I guess the hackers are searching for when they attempt to unlock. But I don't have any clue what they are currently searching for. It's just like shooting a machine gun from the dark, trusting It's Going to hit the goal somehow

What I really have to know is exactly what the hackers are actually looking (only Large level thoughts) when they are hacking so I Can set in codes to make it harder or perplexing to them

wish somebody will assist me here

TQ