I’ve discovered a serious character duplication exploit in DayZ (tested in version 1.27 and 1.28) that bypasses BattleEye and all currently known anti-duplication mechanisms. It relies on manipulating firewall settings, logout timing, and scripted hotkeys to duplicate the entire character including inventory.
Summary of the Method:
- Involves modifying Windows Defender Firewall inbound/outbound rules to delay game connection.
- Uses tools like Borderless Gaming and AutoHotKey to automate logout actions and hit specific timing windows.
- Manipulates the desync window (~9.6 seconds) between client disconnect and server-side persistence saving to force character duplication.
- Requires precise execution, but is consistent and repeatable once practiced.
- Undetectable by BattleEye unless an admin is directly observing it in real-time.
Impact:
- Entire character inventories can be duplicated reliably.
- Completely breaks loot scarcity and progression systems.
- Allows infinite gear farming, PvP cloning, and abuse in raids.
- Exploit is not yet public, but has the potential to spread rapidly.
This is a private and responsible disclosure. I’m submitting this to help protect the game and community. Please consider investigating:
- Session logout timing and sync
- Persistence handling under network/firewall interruptions
- Client authority during disconnect states
I am open to answering questions if contacted on my
discord or mail
Thank you for your work on DayZ, and I hope this helps maintain the integrity of the game.