pyBEscanner

@Phenom error is due to Bans not getting initalized & nothing todo with server log scanning :(

Can u check if u are using latest version
There was a commit about 6 hours ago to fix a similiar issue
https://github.com/Torndeco/pyBEscanner/commit/c49de58d7bed7879ff8cb1f5e2624842e9906665

-------------------------------------
If u already using latest version
Can check your servers.ini plz

Tell me your setttings for
Code: 
[Default]
Bans Symlinked =
Bans Directory =
And also if u have the options set in server sections aswell, or if u left them out...
 
Yeah I just worked that out when it showed up again.

Using version 16, I downloaded it about 50mins ago.

settings are
Code: 
# Ban File Settings  off/on
Bans Symlinked = on
Bans Directory = E:\Server Tools\pyBEscanner\Bans

I can confirm this is line 171 as well
Code: 
    server["Bans"] = bans.Bans(server["BattlEye Directory"])
 
Adds to the ban list for sure now, only problem is it doesn't actually kick the person or enforce the ban.

Unless this is the way it's intended to operate and I can use BEC to enforce the ban list.
 
Right it should be good now,
I forgot i changed up the location of rcon tools etc, when i was working on pyBEscanner-v3
If u update now, it should be working for u now...
 
Odd, still not kicking them.

Tried to get some kind of debug logs out of it, but it seems that code has been removed.
 
Hi!

When I start the pyBEscanner version 16 I get this error:

Traceback (most recent call last):
File "C:\Users\Administrator\Desktop\pyBEscanner-master\pyBEscanner.py", line
296, in <module>
main.start()
File "C:\Users\Administrator\Desktop\pyBEscanner-master\pyBEscanner.py", line
280, in start
rcon.reloadbans()
File "C:\Users\Administrator\Desktop\pyBEscanner-master\modules\rcon_cscript.p
y", line 37, in reloadbans
subprocess.call([temp, self.ip, str(self.port), self.password])
File "C:\Python27\lib\subprocess.py", line 493, in call
return Popen(*popenargs, **kwargs).wait()
File "C:\Python27\lib\subprocess.py", line 679, in __init__
errread, errwrite)
File "C:\Python27\lib\subprocess.py", line 896, in _execute_child
startupinfo)
WindowsError: [Error 2] The system cannot find the file specified
 
Debug code was just leftover from working on the parser + spam detection....
No need for it anymore & it was really good at filling up your harddrive in a matter of seconds :)

Anyway another commit should be fixed now, give it a shot.
There is also a debug print statement showing the path it uses, when trying to launch the .exes
 
Hello!
I have a few issues with the antihach (I'm using it for one day now so I'm kinda noob ^^)

I have a lot of players that are banned for this in the createvehicle-spam.txt :

#0 "HelicopterExploSmall" 17:477 0:0 [16811,10685,72] [0,0,0]
#0 "HelicopterExploBig" 17:478 0:0 [16811,10685,73] [0,0,0]
#0 "SmallSecondary" 17:479 0:0 [16808,10688,65] [0,0,0]


So I thought I would have to add these lines in the createvehicle.whitelist :
#0 "HelicopterExploSmall"
#0 "HelicopterExploBig"
#0 "SmallSecondary"

Then I saw this lines in the createvehicle.whitelist :
HelicopterExploSmall
HelicopterExploBig
SmallSecondary

So I thought the whitelist was not working, so here is my question (finally ^^) : is the whitelist files considered if the scan setting is set to "standard" ? :D I guess no, but just to be sure
 
igoooor said:
Hello!
I have a few issues with the antihach (I'm using it for one day now so I'm kinda noob ^^)

I have a lot of players that are banned for this in the createvehicle-spam.txt :

#0 "HelicopterExploSmall" 17:477 0:0 [16811,10685,72] [0,0,0]
#0 "HelicopterExploBig" 17:478 0:0 [16811,10685,73] [0,0,0]
#0 "SmallSecondary" 17:479 0:0 [16808,10688,65] [0,0,0]


So I thought I would have to add these lines in the createvehicle.whitelist :
#0 "HelicopterExploSmall"
#0 "HelicopterExploBig"
#0 "SmallSecondary"

Then I saw this lines in the createvehicle.whitelist :
HelicopterExploSmall
HelicopterExploBig
SmallSecondary

So I thought the whitelist was not working, so here is my question (finally ^^) : is the whitelist files considered if the scan setting is set to "standard" ? :D I guess no, but just to be sure
Click to expand...

It's work:
Then u can either then update to the latest version
Or if u want u can just edit the rule's files yousrself
edit filters/dayz-default/createvehicle.banlist
remove the line with CMflareAmmo
edit filters/dayz-default/createvehicle.spamlist
remove the line with 3 59 BAN .*\[0,0,0\]​
 
My files are already up to date to your last commit, this is why I'm asking.
But to clear things up, when the scan setting is set to "standard", does it only look rules inside banlist or also whitelist too ?
 
Scan Log -> White List Filter -> Kick List Filter -> Ban List Filter -> (unknown log files)
Scan Log -> Spam List Filters

Spam List are processed seperate from the normal filters, this way u can ban someone from spamming an legit item in createvehicle.log for example

Also the very lastest version on github has the rule removed that caused the bans for heli crashes.
Was only updated in the last day... so must still be using an older version that has still has rule in the createvehicle.spamlist
 
is it possible that pyBescanner block the bliss package "killmsgs" ? Because since I use it, I don't have the kill messages from that package.
Usual kill messages look like "Igoooor was killed"
but with the killmsgs package they look like : "igoooor was kill by such_badass with weapon M4A1_Aim"

And now I only have "Igoooor was killed" whereas I did not modify files of my servers :S

EDIT : I tried with and without pyBEscanner, and yes it is blocking the package :S
If you don't know that package, you can find it here https://github.com/ayan4m1/bliss-killmsgs
Do you know what kind of rule I need to add to allow it ?
 
Seriously man, pyBEscanner is just a log parser with regrex filters...

It in no-way can interfer with your server package

Killmsgs dont work if your server is lagging i.e the fps = low
 
do not misunderstand me, I really like this anticheat, I think it's doing great job (I was using DAH until now so you can imagine ^^).
Ok so I will try this further and tell you if Killmsgs really works only when pyBEscanner is off ^^
 
Hi!
1 people banned with this reason:
07.01.2013 07:35:24: XXXX: (186.105.64.15:1025) xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx - #0 "norrnRLact" = <NULL-object> (from publicvariable-bans.txt)
It's real ban or false?
 
Hello,

I have a testing station where I am using a hack to try to be detected by pyScanner. I want to use this anti-hack tool.

I'm using a hack for testing.

I also added this detail:
http://dayzmod.com/forum/index.php?...txt-to-auto-kick-players-with-hacked-weapons/


So let configured pyScanner (conf / server.ini) this way, but apparently I was not kicked / banned.
Code: 
[Default]
 
# Config Version
#    Read Changes.txt for info on version changes
Version = 16
 
# Filter Location Settings
#    Custom
#        is basicly using different filters per server i.e
#            battleye/pyBEscanner/filters
#    Any other value is relative path from pyBEscanner/filters i.e
#        dayz-default = pyBEscanner/filters/default
Filters = dayz-default, dayz-weapons
 
# Sleep time after scanning server(s)
Interval = 10
 
#------------------------------
# Default Server Scan Settings
#  off = skip file
#    standard
#        ban for only code in banlist filter
#    standard+kick
#        Ban for only code that is in blacklist filter + kick for unknown code entries
#    strict
#        Ban for everything that isnt in whitelist filter
 
Scan Addbackpackcargo = standard
Scan Addmagazinecargo = standard
Scan Addweaponcargo = standard
Scan Attachto = standard
Scan Createvehicle = standard
Scan Deletevehicle = standard
Scan Mpeventhandler = standard
Scan Publicvariable = standard
Scan Remotecontrol = standard
Scan Remoteexec = standard
Scan Scripts = standard
Scan Selectplayer = standard
Scan Setdamage = standard
Scan Setvariable = standard
Scan Setpos = standard
Scan Teamswitch = standard
 
#Expermential  off/on
Scan Server Logs = standard
 
# Ban File Settings  off/on
Bans Symlinked = on
Bans Directory = D:\arma2\cfgdayz\BattlEye\pyBEscanner\bans
 
# Ban Players IP aswell
BAN IP = on
 
# This is not server time offset....
#    Don't change value basicly
#        Basicly pyBEscanner will buffer the last line for logs in a temp file
#        Until either a new line is proccessed or OffSet value (time in seconds) has passed..
#        This prevents pyBEscanner from missing multiple line entrys if battleye flushs file,
#        before it finishes writting lines 2,3 etc
OffSet = 3
 
#---------------------------------------------
# Custom Ban / Kick Messages
#    Keywords
#        PLAYER_NAME = Player Name
#        SERVER_NAME = Server Name
#        LOG_FILE = Log File
#        DATE_TIME = Date + Time
 
Ban Message = DATE_TIME: PLAYER_NAME on SERVER_NAME
Kick Message = DATE_TIME: PLAYER_NAME on SERVER_NAME
Report Message = Player Name: PLAYER_NAME, Server: SERVER_NAME, Date: DATE_TIME:, Logfile: LOG_FILE
 
[Server 1]
ServerName = myservertest
ServerIP = 127.0.0.1
ServerPort = 2302
RconPassword = abc123.
BattlEye Directory = D:\arma2\cfgdayz\BattlEye
Server Console Log = D:\arma2\cfgdayz\dayz_chernarus.log
Server RPT Log = D:\arma2\cfgdayz\arma2oaserver.RPT
# U can override the default scanning options per server if needed i.e
#Scan Setpos = strict


Any suggestions, or is something wrong in this configuration?
What would be ideal to let configured? (conf / server.ini)

thanks
 
1) Don't link to hacking threads...
2) Unless there is something in your battleye logs, its not possible to pyBEscanner to detect it...
i.e look @ your unknown logs see if there is anything suspcious & add it to your ban / kick filters
 
Kicking works now, so I am told ;) thanks!

On to the latest error.

Code: 
Scanning .............................................................
Scanning .............................................................
Scanning .................................................Traceback (most recent call last):
  File "E:\Server Tools\pyBEscanner\pyBEscanner.py", line 296, in <module>
    main.start()
  File "E:\Server Tools\pyBEscanner\pyBEscanner.py", line 252, in start
    logs_battleye.Scanner(server).scan()
  File "E:\Server Tools\pyBEscanner\modules\logs_battleye.py", line 216, in scan
    self.scan_battleye_logs(log)
  File "E:\Server Tools\pyBEscanner\modules\logs_battleye.py", line 95, in scan_battleye_logs
    x)
  File "E:\Server Tools\pyBEscanner\modules\logs_battleye.py", line 317, in scan_log
    self.spam_detection.add_data(entries_date, entries_guid, entries_ip, entries_port, entries_code, entries_name)
  File "E:\Server Tools\pyBEscanner\modules\logs_battleye.py", line 465, in add_data
    if re.search(rule, entries_code[x]) or re.search(rule, self.decoder.decode_string(entries_code[x])):
  File "C:\Python27\lib\re.py", line 142, in search
    return _compile(pattern, flags).search(string)
  File "C:\Python27\lib\re.py", line 242, in _compile
    raise error, v # invalid expression
sre_constants.error: unbalanced parenthesis
 
E:\Server Tools\pyBEscanner>
 
You must log in or register to reply here.
Back
Top