up

yop

yop

Surely it should just not display the stream rather than crash that's honestly a fail on discord's part.

@@boid Data verification is extremely important. They seem to handle the error by crashing the client, when the same code check *should* also also be applied to the person streaming. I feel like this overlook could've been used to rack up Discord some serious bandwidth bills if someone really wanted to abuse it since they don't have a resolution/fps check.

@SEWERPIGOFFICER-t5n💀💀💀

@SEWERPIGOFFICER-t5n💀

​@SEWERPIGOFFICER-t5n💀

yes yes "trolling"

💀

fr

Haha ill try to weave in some nerdy stuff as much as my subway surfer brain can tolerate

@@NoTextToSpeech holy never thought you would respond

@@NoTextToSpeech HI NTTS

@@NoTextToSpeech how to install this plugins pls

fr same

FakeNitro, my favourite

@Takeringspluh

probably the best plugin imo

it's delightful

Yeah, you have to know what Base64 actually looks like to detect it (granted, that's not very hard, but still)

but not sneaky enough to hide his discord id...

its a very poor attempt at obfuscation because anyone with even a little bit of experience will instantly be suspicious of any base64 or similar encoded blocks of text. similar to spurious eval functions or other stuff you just dont really see in normal code, because normal code is designed to be readable and obvious. a more elegant approach is using the freedom that javascript objects give you to concatenate strings out of random bits and pieces in the code or embedding those bits in something harmless like an svg logo. there are a lot of cool js obfuscation techniques and this is not one of them.

@@drkastenbrot yes, but only smart people are going to notice that, you don't want to hack smart people because they can potentially do stuff back, you want people who barely understand it at best. But maybe I'm giving them too much credit

@@unnaturalandroid "Only smart people" correction, only people who are actually old enough to not want to crash other people's computers and actually know what they're doing. Encoding small lines of text in Base64 or literally any other encryption algorithm has existed since computer malwares became too popular. You're giving them WAYY too much credit.

womp womp u saved 10$ and its not ur problem

That server is useless anyway

I'm not going to excuse her behavior, but it seems like she has a problem with investing her time and energy into the wrong things, leading her to be stuck in those things for prolonged periods of time, unable to leave. It's known as the "sunken cost fallacy," which basically means "I've spent so much time/energy/resources into this, so I have to keep investing in this or else everything I did before was a waste." Her problem is that she probably felt so guilty for throwing away 4 years worth of money towards Discord Nitro, a completely useless subscription, and decided to take out that guilt on you. She couldn't let go on Nitro... she'd already wasted 4 years on it. She lacks the self-awareness to quit paying for Nitro, and she especially lacks the awareness to realize she could still save money by quitting now and using Vencord instead going forward. Anyway sorry for the paragraph lol. Lately I'm seeing too many chronically-online people fall for the sunken cost fallacy, living comfortably in their own discomfort because they are too scared to confront their problems. It sucks that you got banned over her powertrip, but I wanted to reply with this information in the hopes that it might give you a little peace of mind. Like I said, none of this excuses her behavior, but it might explain why she did what she did. Deep down she may not be an a-hole, she may just be misguided and is using that to take out her problems on other people. Hopefully she can learn from this, and hopefully you have learned to not share that you are using Vencord haha.

Gonna go to that sever and say I use vencord

@@44turnips godspeed

It is incredibly easy. Trust me

Yeah this isn’t new, it’s probably one of the lowest effort obfuscation method

@@haobo_zhang This is literally kindergarten level code.

I could make this with chatgpt

he got doxed

shut up mart

Nerd

almost like he's "generalizing a bit here" (6:36)

@@baldabilityyup, his definition is simpler to understand

​@LOGANPAULUTTP-z8gno one cares

A "pleasure"bot copied your comment and somehow got wayy further up the comments…

@@Lampe2020 lmfao that's true 🤣

​@@Lampe2020 Those bots always likebot their comments

@@Lampe2020 I’m going to crash out

😔

😔

😔

😔

😔

ogm instead of counting up to 9 you count up to something else!

Cowboy boot leather

There are yt channels that focus on teaching to codee. NTTS is not one of them, and you shouldn't really expect it from him. In this case it was extremely simple, so he did explain it, but many attacks are much more involved and better hidden, it'd take hours to explain the exact mechanism to lay-people.

@@insu_na Ok, but videos focused on teaching how to code are boring. Writing code is boring. Reading code is boring. It's only interesting if the code actually does something real and interesting. (and I say this as someone who spends a lot of his time reading and writing code)

Most people don't give a shit about that. And it's not that they need to, just saying "custom plugins/scripts/extensions can do anything with your account including sending your passwords to zimbambwe" is really enough explanation.

​@@cameron7374 skill issue

discord doesnt care

HMMMMM

They dont care

​@@Koishukazefor real

@@Koishukaze discord never cares unless it’s the funny number or some Filipino shit

Unless they pickpocket your ass

​@@sansaraee jokes on you im into that shit

​@@sansaraee dont threaten me with a good time

​@@qhu3878enclave

@@qhu3878 whar 😢

hmmmmm

​@@hakuruyu hmmmmm

hmmmmm

hmmmmm

hmmmmm

Agreed

so true

epicSuperman_622 approves this message👍

a bit ironic of a server based around jailbreaking, am I right? both things would be a violation of terms of service for their respective things (apple devices (at least that's my guess) and discord) but the admins decided to suck up to discord for whatever reason lmfao.

@@xkower8181 That’s what I’m saying. It was some power hungry mod.

Lesgo we need to remind him when he hits 1M

catboy maid ntts real??

I read this as "man outfit" and was disappointed because ntts dressing up as man from ham aslume would be infinitely funnier

​@@BELARUSUTTP-h1u🤓

Betterdiscord is better but sadly no one cares about it anymore

@@lolilander52 i use betterdiscord to have plugins vencord doesnt have, tho i only download em from the official site

This is about not trusting every damn unofficial plugin you find.

Same

Pokimane Feet Server Theme only for those who joined the Pokimane Feet server

@@BELARUSUTTP-h1u Why is the uttp here? Wait nope the comment was deleted.

​@@Shavix why do you know this

but you get "atob([multipurpose webhook link]); and "FindByCodeLazy(atob(crashlog = gettoken));" instead.

@@mossseater it’s almost like they’re quoting the video

you make minecraft videos and your name is lietrally ThDynamicGamer and your pfp is literally herobrine

​@@ScratchdHelpwhat did he do

@@bhopVACR idk

pfp checks out

@@ScratchdHelp "bros late everyones already born" ahh response

@LOGANPAULUTTP-z8g Oh Ofc It's uttp shut up no one fucking cares I don't think uttp likes kpop and is againts it.

you mean easier to install with unofficial plugins?

@@xenird no, I mean it should be easier to install custom plugins even though there are malicious ones

i agree, and how the f do they mess up spaces in path in 2024

then just clone the repo in your root directory???

@@the1whoplayz still more work than you should have to do.

there's nothing wrong with using vencord, just be careful with custom plugins, the ones in official vencord are fine

@@Koishukaze yeah, I just watched the video and apparently it's just some weird crash plugin or something like that. I thought it was like an in-built type of thing.

@@kalvon nah, its a third party plugin, anyone can make a plugin for vencord but this doesnt mean vencord supports the plugin if its malicious or does harm (they wouldnt and dont)

go ahead

Indeed you’re right, but you can tell whoever made this script didn’t even really try to obfuscate it… i mean base64? the most SIMPLE one…

@@syoond does its job when it wont say "getToken" in plain text to your average kid

@@syoond my guess is they tried to obfuscate it just enough that the average person wouldn't get suspicious, but didn't bother going any further

Should’ve obfuscated it with something that isn’t decodable by dCode

but the one liners would get too long

Even to this day i still confused atob and btoa when i need to use them. b64e and b64d would be better names in my opinion, taking the same amount of space.

bad engineering choices from the 90s

atob stands for "ascii to binary" and btoa stands for "binary to ascii"

@@mollthecoder not in js

I had some friends tell me that I shouldn't be using a maudic client just because it allows people to do stuff like view hidden channels in a server that they're not supposed to be able to see. When all I was really using it for was for some quality of life features and customization. And I was told that it's stupid because Discord is a chat program and so looking at the background doesn't really matter.

what makes them bad?

@@admiralkaede Some people take aspects of the terms of service very seriously and modded clients are against the terms of service.

As a server owner, if anyone bans you for client mods they are power tripping

@@olliknecks being able to see hidden channels isn't chill or save messages

No, someone who goes “tee hee I’m gonna make my friends restart Discord” is not the same as someone who is violating the computer fraud and abuse act, stealing info (including potentially credit card numbers) I’m sure you can see how the damage done in both these scenarios is different right?

Nobody has ever downloaded something on their device and said "Yeah this makes me a gangster"

@@Actible thats cap

You need to store something so when you refresh the application it does not ask you to sign in again. What you are saying basically is it's a security risk if someone can access my computer in my room and open discord.

The problem is not the token existing, the problem is discord for some reason still putting it in localStorage, which is accessible by javascript, instead of in a httpOnly cookie, which is not accessible by javascript

correct

Basically, the way you can stay safe with Venkord is to use the official plugins provided in the plugins tab, since It's a curated list that they went through and vetted all the plugins there.

Betterdiscord always let anyone install anything and it never backfired. It's different on Vencord because mostly very young kids use it.

every data in a computer can be represented as bytes and bytes are just a sequence of 8 bit numbers (from 0 to 255).

lmfao

💀💀

I love nuts

new nuts vid

Doesn't tl dr mean "too long didn't read?" This is a video there's no reading needed surely it should be tl dl and even then, do you have an attention span of 5 seconds..?

unless you're a programmer

how the fuck did i find you under a minute

That’s crazy.

i found this guy in 5 minutes 😭

strange, i wonder why that happened? i haven't experienced an impersonator and i've been on the platform for over four years

man, tf happened?

Hold on

video spoilers is crazy

You do realise betterdiscord is miles larger than vencord right? Also what are “rule breaking plugins”, all of them are against tos

BD sucks ass & runs like shit to boot. Also, they are quite literally the main goofs who distro'd message loggers just to play victim when Discord themselves got involved, so the idea of "no rule breaking" plugins is just comical.

The first comment didin't say first anyways.

Its the internet....🤷‍♂🤷‍♂

👍

👍

👍

👍

👍