Minecraft Force-OP Exploit!

Channel:

Subscribers:

920,000

Published on August 25, 2022 5:30:10 PM ● Video Link: https://www.youtube.com/watch?v=3_e4t3l8fgY

Duration: 21:44

282,096 views

10,906

We investigate how Herobrine got OP on my server and we look back at the network protocol vulnerability I reported in march.

vktec: https://www.youtube.com/c/vktec/videos
Minecraft Protocol Vulnerability: https://www.youtube.com/watch?v=i-2UgCDdhpM
Minecraft:HACKED Playlist: https://www.youtube.com/watch?v=Ekcseve-mOg&list=PLhixgUqwRTjwvBI-hmbZ2rpkAl4lutnJG

Episode 11:
00:00 - Let's Play: State of Server
03:56 - Let's Play: Massive Roller Coaster!
06:06 - Brainstorming Force-OP Methods
07:39 - Discovering XSS Payload
09:50 - Debugging Root Cause in JavaScript
11:59 - Scanning for XSS Issues
13:39 - Let's Play: Spawn Griefing Mystery
14:23 - Another Minecraft Protocol 0day!
18:05 - AES/CFB8 Self-Synchronizing
20:26 - Security Research Conclusion

-=[ ❤️ Support ]=-

→ per Video: https://www.patreon.com/join/liveoverflow
→ per Month: https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w/join

-=[ 🐕 Social ]=-

→ Twitter: https://twitter.com/LiveOverflow/
→ Instagram: https://instagram.com/LiveOverflow/
→ Blog: https://liveoverflow.com/
→ Subreddit: https://www.reddit.com/r/LiveOverflow/
→ Facebook: https://www.facebook.com/LiveOverflow/

Other Videos By LiveOverflow

2022-11-28	Minecraft Reach Hack
2022-11-20	Cat Coordinate Exploit 1.19.2
2022-11-10	What is a Server? (Deepdive)
2022-10-31	Server Griefed and New Beginnings ...
2022-10-21	I Leaked My IP Address!
2022-10-12	WorldGuard Bypass
2022-10-03	The Origin of Cross-Site Scripting (XSS) - Hacker Etymology
2022-09-23	The Age of Universal XSS
2022-09-13	The End Of Humans In Minecraft
2022-09-04	The Three JavaScript Hacking Legends
2022-08-25	Minecraft Force-OP Exploit!
2022-08-11	How The RIDL CPU Vulnerability Was Found
2022-08-07	Code Review vs. Dynamic Testing explained with Minecraft
2022-07-31	Self-Learning Reverse Engineering in 2022
2022-07-23	The Same Origin Policy - Hacker History
2022-07-13	They Cracked My Server!
2022-07-03	Is Hacking Illegal? A Deeper Look at Hacking Laws
2022-06-24	Are Resource Packs Safe?
2022-06-12	The State of log4shell in Minecraft Months Later
2022-06-03	Could I Hack into Google Cloud?
2022-05-19	Scanning The Internet for Minecraft Servers

Tags:

Live Overflow

liveoverflow

hacking tutorial

how to hack

exploit tutorial

minecraft hacked

minecraft client

custom client

hacked client

herobrine

forceop

force-op

force op

operator

admin

plugin

xss

0day

cross-site scripting

alert(1)

aes

aes/cfb8

cfb8

encryption

network protocol

vktec