The goal of this article is to help you learn how to make attacking with scripts less tedious, and take less time to set up the scripts in general. If you learn this part, scripting your attacks will be a LOT easier.
First things first....you can use whatever waves, descriptions or names you want in the set values.Remember though, the first thing to follow the word "set" is the variable name (no spaces and not case sensitive).
After the name is what you want to replace the name with in the actual script, but in the script the name must have % on each side of the variable name.
There are NO PRESET NAMES...you can name your "set" value anything you want.
There is a lot of talk and questions about IP hiding. IP hiding is a term some folks use to refer to VPNs or proxies. It is a way to send your Internet traffic through an intermediary server to its final destination making your traffic look like it's coming from the intermediary instead of your own home computer. There is nothing in the technical realm to "hide your IP address from someone." You can only route your traffic through someone else's computer to make it look like it is coming from that other person.
Now before someone calls me out on that, yes, you can do IP spoofing where it looks like your traffic is coming from someone else. Most ISPs block that for obvious reasons. Also, it's one-way traffic; return communications would go to the other IP address which makes it unusable in this context.
So... We're left with VPNs and proxies.
VPNs are a great solution. They're easy and relatively fool-proof. The downside is that it puts your computer directly into someone else's network, bypassing any security measures in place in your home network, namely the NAT provided by your route. NAT (Network Address Translation) is the technology in place in your router that only allows outbound traffic (and it's associated return traffic) from your inside computers. If you want specific traffic to come in, such as an internal mail server or web server, you can explicitly allow it but that's done by folks who know what they're doing. For all intents and purposes, the NAT in your router is your first and best line of defense. VPNs bypass that. They put your computer OUTSIDE of your NATted router. You best know what you're doing before you do this. It's not for newbies unless you like getting your computer pwned by someone malicious.
My favorite VPN provider is iPredator.se from the fine folks at ThePirateBay.se. Their mission is anonymity. They're good at it. Their service is rock solid and relatively inexpensive. Again, not for the faint of heart.
There is another VPN solution called Hotspot Shield from hotspotshield.com that has some potential. They have two versions, a free version and a paid version. I didn't test the paid version but the free one works well enough. It is ad-supported, though. Ads on its screen as well as injected into the web pages you visit in a bar at the top of the web pages. They also claim to have a malware blocking system as well but it is only a filter to stop you from being directed to bad websites. It is still a VPN with all of the security implications that using a VPN entails.
Proxies. Yes, proxies. They're the best option for folks. The two primary proxies are hidemyass.com (the most well-known) and easy-hide-ip.com. Both work great and are easy to set up. Hidemyass.com is easy to use and relatively inexpensive. It will send ALL of your traffic through their servers with just a couple of clicks.
I prefer easy-hide-ip.com. I have an affiliate relationship with them which means when you sign up, I get a small return. That was the full-disclosure thingy. It's really not much in my pocket considering the cost is only $4.95 US per month.
So. Why do I prefer them? You can specify which programs are proxied through their servers. You can allow SOME of your traffic to go directly out your Internet connection, while proxying other programs. This allows full speed to most applications while masking the IP address for only those programs you want masked.
Install easy-hide-ip.com, point it towards your bot's executable and select a country you want it to appear to come from. Easy.
Each upgrade to the bot needs to be set up in easy-hide-ip.com, though. If you download a new version of the bot and set it up in The Director but DON'T tell easy-hide-ip.com about it, your traffic will be unmasked again. Bummer.
I don't use any of these programs.
No need and I think it only adds risk. If you're using one of these and you're flagged for any reason, you lose all plausible deniability. You can't say you were innocent. In the legal community, that's "mens rea" or "guilty mind." You knew you were doing something wrong so you tried to hide it.
Besides that, it slows things down. Routing your traffic through someone else's computer introduces more hoops for your traffic to jump through and slows things down to the slowest point along the route, the whole weakest link in the chain thing.
Why WOULD you want to use one? Well, when I record a Director video, I use easy-hide-ip.com so I don't show a video with a throwaway account tied to my main account through the IP address. :) Also, if you have an IP ban that you can't wait out AND you can't convince your ISP to give you a new IP address, this is one way to force a new IP address.
OK, I need some brave souls for beta testing. Please don't download the beta version until you've read through this document. I would NOT recommend testing this unless you feel very comfortable copying your Director files manually. If you're not comfortable with that, please stay with the stable released version for now.
I've completely rewritten how the Director stores its settings. It's 100% functional in my tests but there are a few more things I want to do before I release it to the general public. First, I want to test it thoroughly which is why we're here. Second, I want to write in some "editor" windows to let you edit your own configs.
The new configuration is stored in a SQLite database instead of the pseudo-XML that I had been using. The XML handling was problematic and not worth the effort. Converting to SQLite is a huge benefit in performance, stability of the configuration and in rapidity of development. I can develop new features much more quickly than was possible with the XML file.
The Director can be told to keep launching your profiles over and over. No matter what stops it, the Director can relaunch it. It crashes, the Director restarts it. You stop it, the Director restarts it. This is a great feature but sometimes gets in your way.
To disable it, highlight the profile and click Profile Details. In there, you can change "Keep bot running" to No. Now, when the bot stops for any reason, it'll remain stopped until you manually restart it.
If you are running a restart schedule, I highly encourage you to keep this setting turned on. If the restart schedule has a problem restarting the profile for any reason, this feature can get it restarted for you. It's a safety net.
Norton is evil! Uninstall it this instant, if you can. There are many free antivirus software programs available that in our opinion work better, besides being free. There are ways to tell Norton to ignore the folder you store YAEB and the YAEB Director in, adding exceptions to its database, but it is our opinion that Norton does a great job of slowing your computer down. Who wants a slow bot?
NeatBot has been released by the active team of YAEB. You can register on NeatPortal here: http://forum.neatportal.com/index.php?r=62
The Director supports NeatBot natively without anything different being done. Just download NeatBot from the forum and point the Director to the NeatBot executable exactly like you would any YAEB upgrade. All of your goals, settings, logins, etc. will work as-is.
If you are experiencing issues you think are related to the The Director, please leave a bug report at http://forum.neatportal.com/tracker.php with a clear, concise description of your problem, and be sure to specify which version of the The Director you are using.
The delete function was moved to the new menu system. To delete a profile, simply highlight the profile you want to remove from Director, and then go to the File menu at the top of director, and choose Delete.
Invalid server, huh? That's a bummer. It's not something that the Director is doing; it means the bot had a problem contacting the game server. Some common causes of this are intermittent connectivity problems (you don't run your bots on a computer connected wirelessly, do you??) or software firewalls such as McAfee, Symantec or about a dozen others or random affectations from the Internet boogymen.
What can you do about it? Make sure you are not connecting via wireless. Wireless has periods of time where it just disconnects and reconnects. Sometimes you notice, sometimes you don't. Sometimes the bots notice, sometimes they just continue on as if nothing happened. Whatever happens, though, you're running the odds. You'll have a bunch of bots reconncting all at once and get an IP ban or you'll hit the one point where you're restarting a bot during that period and you'll get "invalid server".
Software firewalls are the most common. Make sure the bot's executable is in the whitelist. Each time you upgrade, make sure the new version is in the whitelist. I don't know how many times people have told me they whitelisted their bot but they're still getting this error. I ask "did you upgrade the bot recently" and get "yes" for an answer. The new upgrade is a new program. It needs to be whitelisted.
First, don't panic. (That's my favorite bit of wisdom from Hitchhiker's Guide to the Galaxy)
I haven't found a way yet to make a config file go away permanently. The Director creates its config based on the Director's filename. If you keep the filename the default, it is YAEBDirector.exe and the config file is YAEBDirector_Config.xml. If you rename it to Director.exe, the config file will be Director_Config.xml. By default, Windows tries to be helpful and it hides the file extensions from you. You might not be able to see the .exe or .xml on the end of the filenames. The Director's executable has a picture of a guy with a tie. The config file has _Config in the filename and no picture of a guy with a tie.
There are a few things we can do to troubleshoot.