4:29 "All my computers are designed around this" based

shit I did that again

does this have courses that go beyond what is taught at W3schools? asking for a friend

please put purchase power parity into the pricing

well how can u see the source of the code to know?

Yeah it's safer but unfortunately it also mean we are very limited in what mod we can write, there is a trade-off. A mod for a Unity game can change anything in the game without restriction, you have access to everything the game developer has. Factorio mods can only touch what the game developer exposed to the modders, so it's very limited. I would rather have less restrictions and better mods to be honest.

@@RealMasterKush420 except that in the case of Factorio, pretty much everything you need is exposed and if you want something new, there's a decent chance that they will add it to the API if you make a forum post with a good reason for it.

@@pwii Not really, I'm working on a few mods and there is a lot of frustrating limitations. Like you can not modify bot behavior or train pathing or modify vanilla UI. And they even added more restrictions in the 2.0 update, like you can't even zoom out more than the vanilla game anymore. And those are just some examples there is a bunch of small things that should've been exposed years ago but still aren't.

@@RealMasterKush420 Have you tried? Far too many things don't happen because nobody thought to complain.

Unfortunately thats not an end all solution, there really isnt one. Theres still numerous reported rce's with many lua versions, luajit and even custom ones like rlua, glua, and even ravi.

millennials + limewire name a better duo

Nodus lmao

@@LowLevelTV millennials and dialup

Will be every kid throughout history. Don't be cheap and share your computer with your kids. Let them have their own honey pots.

@@LivvieLynn maybe one reason why i got my own 386 back in 1992 when i was nine. 😅

This is actually very normal for unity games due to modding those is most reliably done via injection of bepinex.

My patches for Elden Ring are also DLLs. If you want to patch the code in the game, you have to inject into it somehow, and a dll is the best way.

Yeah, if a game doesn't support mods with their own sandboxing, either the modding community would have to develop and maintain their own system, or else just use the operating systems built in functionality, which may or may not come with guard rails.

Yeah, even if it weren't distributed as a DLL, at the end of the day, mods need to modify the code of the game and run their own code. The only way mods can be completely safe is if the game (or a well-trusted modding framework) provides a built-in modding framework that only loads plain data or limits and sandboxes any way to run code, e.g. by running a Lua or WebAssembly interpreter that can only run certain methods specifically provided by the game which don't give unrestricted access to any other system resources. But this also inevitably restricts what mods can do to the things exposed by that modding framework.

C# assemblies are DLLs, so it's basically standard that mods for games made in C# (Terraria, Celeste) are DLLs.

It's the fact the format _allows_ such things to be done. Take Minecraft, for example. It has resourcepacks, datapacks and mods. Resourcepacks are a template that is only being interpreted as images & text, datapacks are stupidly hacky code that is being ran entirely within the confines of the games' sandbox, with interpreter not even allowing to consider asking for an external library. And now consider mods. There are datapacks that are distributed as mods, there are even some mods that do some advanced textring. However you cannot guarantee anymore that the thing a mod does will not affect files it shouldn't, because rather than being a text file interpreted by the game, it now has MORE priviledge than the game itself, being capable of calling everything a program does AND overriding the games' code.

@@qlx-i this whole situation wouldeve been entirely avoided if devs just included a scripting engine that's comprehensive enough to do mods beyond the scope of the game, but its sandboxed enough so that whatever the script does, it should heavily hamper or outright discourage any efforts that would be performed by a would be threat actor

Funny that you mentioned GShade, they are excellent example, since they did insert malicious code in their installer around a year ago. Since then GShade is untrusted (by me at least, but there was an outrage too, so probably not many ppl trusting them either).

@@imgladnotu9527 problem is, you can't predict what mods would do. There's sodium which just optimizes the hell out of the game, there's Iris that adds shaders to that. Despite mahjong slowly turning minecraft data-driven, many things still can't be done. And besides, the way datapacks work was initially more of a hack than anything. O think many would agree that kotlin just feels way more natural than even Lua. And from gamedev perspective it would be much harder than it looks.

Most games' mod support also essentially has mods be sandboxed to a certain degree. However, how sandboxed a mod is depends on the game, and sandboxing can be imperfect.

There's no way to prevent this. On top of that, some of the best mods are code patches that have to be applied at runtime, and the best way to do that is a dll. Even if they made an API for that, the user is going to be able to run code at one point or another, and you can do a lot with that. Even Lua, which is a popular scripting language for games and AI (Havok) can access the OS and read and write files to the system.

There is a way to prevent it in theory, just the coordination and implementation may be difficult to pull off. Depending on what the OS or particular game support you might end up having to place your trust in a community developed solution but that's better than placing full trust in every random developer.

@@keithl3789 That would just paint a big target on a single project...

@@nordgaren2358 Depends on how you implement Lua in your game. The only game i know where Lua is used is Garry's Mod, and it doesn't allow full access to the system, you can only alter files in a game's subdirectory 'data'. Calls to edit files outside throw an error

@@nordgaren2358 "There's no way to prevent this." You are running a Javascript sandbox in your browser many times every day, just like billions of people around the world. The trick is: don't give the language/runtime any functions to call go outside of where it's supposed to go.

@@otso648 Skyrim's mods (probably the biggest modding scene out there) would like to have a word with you.

@@takujaba6746 It's funny you mention that. I remember seeing a reddit post about a mod that "was a virus". Which in the mod itself wasn't the virus. It was a notepad with a link to the virus.

I very much enjoy Factorio's modding system.

None of them should be allowing ARBITRARY code execution. UNSIGNED code execution is usually needed (unless the devs build a whole signing system), but never Arbitrary code execution.

The most used approach i am used to is LUA scripting for mods. Kinda shocked Skylines 2 just loads DLLs like that. That's malicious from the get go. wtf

factorio is a great mention. i have developed some mods using their system, and made personal projects with factorio's prototype mod system as inspiration because it's really interesting and surprisingly versatile. such systems as those are really cool and have a lot of potential.

As long as a mod involves injecting custom code into into the game, wouldn't that be potentially malicious. Other methods methods are not as powerful.

If you raise the bar of requiring any kind of modding support to be fully safe, then all you get is games not having modding support.

@@MajoraZero I agree with that, although if that's a response to a point I made and not just a statement, then I think you may have misunderstood what I'm trying to say. Mod support doesn't refer to whether a game can or can't be modded; a game can *always* be modded, more on that later. Let me first get some definitions straight to avoid confusion. At a low level, a game is ultimately an executable binary, ran as a process, and a game "mod" is a modification of either: 1.) The static executable file itself on the disk, or related static assets (e.g. textures 2.) The game's process memory allocated at runtime. In more abstract terms, the behavior of a process, the game, is modified in one way or another. When I say "mod support" it means that modification of a game's behavior is an intended feature that the game is aware of. The game has a system built into it that recognizes mods and actively chooses whether to incorporate them or not. More importantly, the developers having control over that process means they can explicitly define what the game should consider a valid "mod" and how those mods are incorporated, whether that be a Lua runtime with limited access to the game's state (every MMO ever), or statically loading the mod's assets when the game launches (think Skyrim) which includes scripts that get executed at runtime (Papyrus in Skyrim's case) by an interpreter or JIT Compiler baked into the game itself. This is all deliberately included by the developer of the game, and they have control over every step in that process. They make the decision to expose X game state, or wrappers to Y internal functions, all via the API provided to mod authors. They control what the game recognizes as a valid mod. The modding ecosystem of a game with official mod support will grow around the developer provided facilities. Every ESO mod ever is a `.lua` file with a metadata file, because the developers of ESO provided the facilities for client-side mod support. That doesn't mean it *has* to be a `.lua` file. There's nothing stopping you from achieving the same result from a standard Lua mod that.. I don't know, adds a minimap, by writing a DLL that performs a trampoline hook on DX11's IDXGISCPresent function in order to call your own set of functions before returning to IDXGISCPresent's execution, and as your DLL is already injected into the process, you have complete access to the process memory, so you can draw yourself that same minimap, either through your own custom approach, or by calling the exact same functions the Lua API would have called to render said minimap. It doesn't matter if a game has official mod support or not, anything can be modded. The only reason it's called "modding" in the case where a game doesn't have official mod support purely boils down to the intent, but make no mistake, developing a cheat menu for a game that gives you infinite money uses the exact same method as a "mod" for a game with no official mod support that simply adds new features to the game. In both cases, the developer has not provided you with any official method or API to access the game state and make those modifications, so the only other way is injecting your code into the process in a way which the game is completely oblivious to, with no idea what a mod even is, or that its memory has been modified. In conclusion / key takeaways: - A game can and will be modded regardless of whether or not it has mod support. There's a fine line of intent that separates it from just outright hacking in the case of the latter. A GTA V mod, is no different than a GTA V hack/cheat. GTA V does not have mod support. Hence, ScriptHookV.dll (keyword: hook) being a pre-requisite for every GTA V mod. - Games with no mod support with a community that wants to mod it, will form an ecosystem of mods based around injecting arbitrary code into a process with the same level of system privilege and access to process memory as the process itself. - Games with mod support and a community that wants to mod it, will form an ecosystem of mods that come in the shape of what the developers provided their community with, because believe me, between having to develop your own "API" by figuring out what's what via live debugging the game and staring at x86 instructions for 6 hours to deduce 3 function signatures, and being provided a Lua API or DSL with all the functions you need to mod the game, absolutely nobody would opt for the former if it's not absolutely necessary (SKSE) or if it's recreational. - If developers don't provide an official way to mod their game through an API under their control, with limited access to anything outside of what's necessary to create a mod, and a community is intent on modding that game, then you end up with an ecosystem of mods that inject arbitrary code into the game process, with zero restrictions. This video being an example of this going wrong. On the other hand, if a simple, basic, bare minimum Lua API is provided to be able to modify basic state like the character's position, or having FFI access to existing functions in the game's code responsible for.. idk, modifying the quest log, then you avoid the problem of fostering an ecosystem where a DLL files are normalized as "the way this game is modded" when it's really the option that has to be resorted to due to the lack of an official, developer-provided framework, through which you can access the same state, without injecting arbitrary third party code into a running executable with nothing stopping it from just deciding to crawl through your disk for sensitive data, load Winsock at runtime, establish a connection, and send all of that data to a malicious actor. There is absolutely zero reason why an official API would even permit you access to anything but the game's state, and maybe a math library or basic essentials, but no way in hell would you be given access to anything FFI related. In fact, SKSE's existence speaks to how limited and locked down official modding API's tend to be that the community had to go out of their way to extent it.

@@kyouko5363 To be fair: City Skylines Developer allows and has support for mods directly in the game

@@berkeleyblue4247 Yeah, you're right, I do remember there being a Steam Workshop, which doesn't distribute DLLs, at least I'd hope not. Though if there is is a thriving third party modding ecosystem where mods as DLLs is something normal? I'd take that as an indicator that their mod support, while technically present, is lacking. It's one thing if it's just a one off incident where one mod happens to be a DLL because there is no other way (SKSE being a prime example), but it's a whole other story if mods as DLLs is just a normal thing in the Cities Skylines modding community. I'd make the same argument for GTA5's modding scene where DLLs are just another Tuesday, although at least Cities Skylines I assume made an attempt to provide adequate support, but it just didn't quite cut it or was too restrictive. If you're at that point where people are having to resort to third party sources and mod through DLLs, it's going to create an unsafe modding ecosystem where stuff like this becomes possible. I'd argue Cities Skylines should provide the missing access to whatever internals modders need that is forcing them to go the third party DLL do it yourself route. If a framework already exists for mod support, it's not that hard of a task to just expose more of the game's internals. I'm not sure what the extent of their support is, but for argument's sake: whatever you need a DLL to access, simply provide access to that through your existing Lua API (assuming they even use Lua), and don't give your community a reason to DIY. It's better than no support, but inadequate support still leads to the same problem in the end. On the other hand, if this is actually how the game is officially meant to be modded, then that is a massive security blunder. DLL modding should never be the answer unless absolutely necessary. It should not be a normal thing, but most people don't understand the difference and don't realize the security risks involved by not staying within the game's "sanbox"

my current skyrim modlist contains 194 dll files hehe

Well, Windows doesn't have a proper sandbox (the closest are AppContainers)

@@tablettablete186 Or Windows Sandbox (lol) which is exclusive to Pro users (and adds an ugly yellow border)

This is why I prefer to run Steam with flatpak these days. Not foolproof but better than nothing.

@@seeibe It literally isn't

@@ougonce Flatpaks are a sandbox. They use namespaces for isolations and a SECCOMP filter.

T h a n k y o u f o r t h e E t h e r.

It also effected the first game too

@@everythingpony Everything I’m reading was for CS2. Paradox put an announcement on CS2 but not CS1.

@@everythingpony it did not apply to nor AFFECT the first game

@@awesomecronk7183 But this also restricts what mods can do to only the things exposed to the Lua sandbox. And ofc, this only works if a game has this stuff built in, which most games don't, since it's a lot of work to do it properly. But yeah, if done well, it's definitely a good option.

Lua is a fucking major risk because it can make http requests to load malicious modules

unfortunately, sandboxing lua isnt an end all solution though, by default lua has io library, luajit allows C code execution through FFI, and every major version of lua has has RCEs from rLua to gLua. I absolutely love lua, and have spent more time programming in lua than any other language, but its not an automatic solution to the problem. The true solution is only downloading from valid verifiable sources (open source software, and checking the code yourself)

@@SamTuffman For security, using something sandboxed is definitely much better than relying on trust and reading the source (as if the average person will or even ca do that). Yes, it's obviously not 100% bulletproof but exploits in Lua can be found and fixed and may not be easy to exploit. That's definitely much better than just hoping/trusting you're not going to get pwned. But ofc, sandboxing also puts limitations on mods, as mentioned previously.

Again you are still just running code from strangers on your computer.

They’re sketchy BECAUSE they’re in a math library

@@bigombrello i mean creating a thread isn’t that sketchy Anyway issue is an AV doesn’t really know it’s a math library, and going “these are suspicious” generally would be stupid as hell

Yeah I really didn't understand that bit lol, saying that if you see a program using basic threading stuff and WinSock2 it's almost always malware seems silly

Yeah, crazy right? Clearly, all software updaters are malware.

"Yo why is my math library downloading my credit card information and uploading it to the internet"

yup, i havent touched it since the start of S14. and as a shock to no one, my mental health significantly improved :)

​@@LowLevelTVgood. Quitting league also improved my health LMAO

@@LowLevelTV The only good thing about vanguard: whenever the temptation to return to league strikes I just remember that Vanguard still exists and I like an internet and laptop not controlled by a Chinese company. Quitting league really makes a massive difference. League's effect on your mental health is just like gambling on steroids, with the reward being the rush of victory instead of actual money.

Your friends are idiots i have no other way to put it

Holy crap, the improvement of my mental health after leaving league was very noticeable for me! I am glad to read others have come to the same realization!

This comment reads like dialogue from a cyberpunk game.

@@loldoctor that explanation is spot on

with a lot of combined processor power for distributed cryptomining or hash/password cracking....

Yea firtst that came to my mind is factorio enabling modding with mods being just lua script with acces to Factorio API and without acess to system.

​@@crusaderanimation6967Factorio is just GOAT

Ahhh DLLs; the spicy DLC

That's not true at all. Even if the code wasn't in a dll, it's still code.

Metamod for the Counter-Strike 1.5 / Source Based games. It hooked the VTable to capture a lot of information about the game state.

Deno to the rescue! ... I guess?

Not always. It really depends on the games scripting engine. If it's something like LUA, you could run into the same issues.

In Cities Skylines all code mods are DLLs

​@@nordgaren2358 lua is a terrible example. it is specifically made to be sandboxed. if a game has a lua modding API and still has ways for mods to execute arbitrary malicious code outside of the scope of the game, that is because the game implemented the lua sandbox wrong.

@electricnezumi this isn't true at all.

@electricnezumi if a game has to implement the sandboxing, then it's not the default, is it?

Well... Windows kinda was trying to do compartmentalization with the Windows store apps... The issue is there is a *lot* of older software that was designed with no compartmentalization in mind and stores/access data everywhere on PC and can self-modify itself. This leads to Windows relying on old way of interacting with things. If you look at MacOS and most recent Linux distributions they are trying to implement proper access management which leads to their own headaches for app developers and users but kinda works.

99% of people don't have other systems hanging out just for sensitive data, unless they have a work computer, for work, that work may be monitoring...

i think minetest does this well(?)

If you run windows they don't need a back door because the front door is propped open with a brick so that they can train their AI off your data.

Not every DLL does have an entry point. It's optional and only implemented if necessary.

Same. I remember watching as news came out on Fractureiser in real time; it was interesting seeing people break down and eventually counter it. It was wild to me how Fractureiser tried to inject its first stage into other JAR files as an attempt to spread.

@@Arcensyl-f6hsame lol. Now when I launch the game I have it set to always scan for fracturiser, just in case. There was also some weird stuff with serialization recently.

@@sillythewanderer4221 I should probably scan JARs for it more honestly. I'm curious, how did you set it up to automatically run the scanner before the game starts?

@@Arcensyl-f6h I have been just using ATLaucher (not tlauncher that is a virus) and whenever I launch a mod pack it scans for fracturiser, but I think most non vanilla launchers also do it. What launcher do you use?

@@Arcensyl-f6h Some launcher will do that for you if you set it up. I'm using ATLauncher for my modded minecraft instances and whenever it launches an instance there is a step where it is "scanning for fractureiser"; I haven't checked but there should be a setting in there.

love that trick, will use it to confuse my coworkers.

@@martinzihlmann822 lmao

And your private data stored and "secured" by "company X" is someone else's treasure trove.

A game is also other people's code.

@@null-0x Hence why I don't trust them unless they're from a known reputable creator.

It would be the same if you downloaded a game from some random website. But companies have a financial interest in not letting their customers get hacked. Sometimes you have two independent parties with an interest in protecting their customers (developer and platform).

@@blueboy4625 idc bro I’m gonna keep downloading mods. Not worth this level of paranoia. just have common sense about where you get your mods from, keep proper backups, and keep your important files stored someplace safe like an encrypted flash drive not constantly plugged into your computer

That's because they're not using LuaJIT, they're using the regular Lua interpreter instead

...then don't let it use http?

if it's that common i'm surprised that an export address table walker is not picked up by security products via heuristic or behaviour analysis. Btw, benny/29a & crew demonstrated that technique in 1998. Yes, it's that old. On the shoulders of giants!

@@massivgrass 😂😂😂

Sure they can, but most of a packer/stage ones job is to make sure that the antivirus doesn't pick up on anything. Tbh, idk why they didn't pickup the peb crawl. Another thing that is dangerous is that a lot of people put games as an exception in their antivirus for one reason or another.

@@nordgaren2358 Because they're using hacks. That's why they put their games as exceptions in their antivirus!

@@nordgaren2358 the reason for exceptions is that it can perform better

That feels a little far, as most people only ever have a single PC (and those who can't afford another PC probably mod older games, from Quake to Minecraft depending on how far their hardware goes). Creating a second partition to your main drive and installing another Windows on that could work! And of course, Linux users have it easier, thanks to Qubes and Vanilla OSs (at least you don't have to worry about compatibility that often with older games).

As a freelancer, i bought a laptop to do my work on. When i'm at home i connect to my laptop from my PC via Microsoft native remote desktop ("rdp"). I'm not a security expert, but i think it's much better to separate private from business stuff to different systems/devices. I also want to mirror the stuff from my laptop to a third device, just for backup, but that's a plan for the future. You're right, it would be better to seperate even further, but i feel confident enough about the stuff i do privately (gaming/shopping etc.).

@@1KiloDepartment that is why i don't sell or throw away my old phones and pc's. you can always keep a crappy pc or phone for payments, surfing and socials

Virtualization is always improving, you can have a Linux host run a Windows VM and still get strong graphical performance.

​@@1KiloDepartmentHaving a Windows install on a second disk is exactly what I did. That disk will stay on Windows 10 forever.

@@ccf_1004 Today I learned someone learned that Cities: Skylines has a modding community

Its like the only fun way to play the game since Paradox is a fuck

How did you come to the conclusion that running outdated software is more secure?

@@ougonce that is a hilarious take on this situation lmao xD

@@ougonce How would you know that newly released mod is safe?

Curseforge mods can't be heavily obfuscated by the rules so they can be reviewed when they're uploaded. This means that you can also decompile them yourself and review them to make sure they aren't doing anything shady. Most of the time they aren't though there has been an instance where many mods were compromised through malware targetting the developers themselves.

@@theairaccumulator7144 Yup, generally, if you stick to mod packs that aren't updated daily or cutting edge, that are popular - you will never have an issue. Minecraft virus in particular have a target problem, let's say you do, finally, infect a developer to begin spreading the virus. Well first they have to not notice, then you have to hope they're involved in something popular, then you have to infect that and get into the next release... You also have to hope no random users noticed your thing is virus before all of that. You can target devs directly to make this a bit more likely, but also it's a community - they will tell their other dev friends that an infection attempt was made if it happens enough. So yeah that's why despite this seemingly crazy idea of running a bunch of random jar files has only had really one major virus incident in a decade long history. Much worse ones have happened because of Java itself.

SuperF4 is your friend

I'm almost 100% sure the author uses the same approach in other mods and applications