This detection pattern is extracted from ZeroTrust Anti-Malware. This is just one of dozens of detection patterns available in the premium version. For comprehensive scanning across multiple file types (Lua, JavaScript, C#) and advanced detection capabilities, it's recommended to use the full version. ZeroTrust is the best resource on FiveM for scanning threats inside your resources.
ZeroTrust offers the best anticheat and threats detection, visit https://zerotrust-ac.net.
A FiveM resource scanner that detects potentially malicious code injection patterns in server-side Lua files.
This tool scans your server resources for patterns commonly used in malicious code injections, specifically targeting combinations of PerformHttpRequest followed by assert(load) within a 5-line proximity. These patterns are often used to download and execute any code, which often lead to security risk.
The scanner:
- Reads all server-side Lua files from your resources
- Analyzes the code for suspicious patterns
- Reports any findings with resource and file names
- Provides a count of total files analyzed
Important: This tool cannot detect patterns in:
- Files encrypted by FiveM's Keymaster/Escrow system
- Obfuscated code
- JS & C# files are ignored
However, it remains useful for:
- Pre-installed resources
- Open-source resources
- Custom resources developed in-house
- Quick security audits of new resources
- Add this resource to your server
- Start your server or ensure the resource
- Check server console for any detections
- Review flagged files manually for confirmation
Detected patterns don't always indicate malicious code, but they should be reviewed carefully as they represent potential security risks.