Minecraft Force-OP Exploit!

2022-08-25

[public] 12.6K views, 11.2K likes, dislikes audio only

We investigate how Herobrine got OP on my server and we look back at the network protocol vulnerability I reported in march.

vktec: https://www.youtube.com/c/vktec/videos

Minecraft Protocol Vulnerability: /youtube/video/i-2UgCDdhpM

Minecraft:HACKED Playlist: /youtube/video/Ekcseve-mOg

Episode 11:

00:00 - Let's Play: State of Server

03:56 - Let's Play: Massive Roller Coaster!

06:06 - Brainstorming Force-OP Methods

07:39 - Discovering XSS Payload

09:50 - Debugging Root Cause in JavaScript

11:59 - Scanning for XSS Issues

13:39 - Let's Play: Spawn Griefing Mystery

14:23 - Another Minecraft Protocol 0day!

18:05 - AES/CFB8 Self-Synchronizing

20:26 - Security Research Conclusion

-=[ ❤️ Support ]=-

→ per Video: https://www.patreon.com/join/liveoverflow

→ per Month: https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w/join

-=[ 🐕 Social ]=-

→ Twitter: https://twitter.com/LiveOverflow/

→ Instagram: https://instagram.com/LiveOverflow/

→ Blog: https://liveoverflow.com/

→ Subreddit: https://www.reddit.com/r/LiveOverflow/

→ Facebook: https://www.facebook.com/LiveOverflow/