Minecraft hacking with PYTHON and Log4j // Netcat reverse shell exploiting CVE

preview_player
Показать описание
Create your own virtual machine on Linode with 60-day $100 credit*

* Please note: Credits expire in 60 days. Errata: The promo code mentioned in the video is incorrect - you need to use the link above to automatically add credit.

* Thanks to Linode for sponsoring this video!

It's really important that you update your servers to no longer use vulnerable versions of log4j.

// MENU //
0:00 ▶️ Introduction
1:45 ▶️ Topology and overview of problem
3:10 ▶️ Demo of rickroll attack
5:48 ▶️ Netcat reverse shell attack demo
9:17 ▶️ Entire process on a new cloud server

// SCRIPTS //

// MINECRAFT SETUP //

// JOHN's VIDEO //

// SOCIAL //

// MY STUFF //

// SPONSORS //

minecraft
python
log4j
cve-2021-44228
java
java log4j
Log4jRCE.java
RCE
Log4Shell
minecraft log4j
minecraft windows 11
minecraft windows
minecraft server
reverse shell
windows
windows 11
windows 10
real time protection
windows anti virus
windows real time protection
python windows
windows python

Disclaimer: This video is for educational purposes only. I own all equipment used for this demonstration. No actual attack took place on any websites.

Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!

#log4j #minecraft #python
  1. David Bombal
  2. minecraft
  3. log4j
  4. python
  5. cve
  6. minecraft log4j
Рекомендации по теме
Minecraft hacking with 0:16:14

Minecraft hacking with PYTHON and Log4j // Netcat reverse shell exploiting CVE

Hacking Minecraft Server 0:03:20

Hacking Minecraft Server With Python - Qubo Scanner/Get Server Ipv4 - Minecraft Python Hacking #1

Hacking Minecraft with 0:17:49

Hacking Minecraft with Python - EASY Tutorial How to Make an Auto-Mining Bot for Beginners

Double Click/Mouse Macro/Autoclicker 0:02:27

Double Click/Mouse Macro/Autoclicker cho Minecraft from Python - Minecraft Python Hacking #2

Python Game Hacking 0:13:28

Python Game Hacking Tutorial - Simple External Cheat

Minecraft Join Bot 0:03:36

Minecraft Join Bot Tutorial from Python - Mineflayer Tutorial - Minecraft Python Hacking #4

Minecraft Memory Hacking 0:05:04

Minecraft Memory Hacking Tutorial | Python

Making a mod 0:10:29

Making a mod menu is easy! (Here's how to make one with Python and Cheat Engine)

Python - Hacking 0:02:42

Python - Hacking Minecraft

Make Yourself Look 0:00:12

Make Yourself Look Like A Professional Hacker

Creating a Minecraft 0:15:53

Creating a Minecraft Mining Bot in Python 3.9 Tutorial (Fast & Easy)

Hacking Python Minecraft 0:03:56

Hacking Python Minecraft Education Edition

python coding on 0:10:34

python coding on raspberry pi | hacking minecraft pt 1 ♡

Can AI Code 0:08:06

Can AI Code Minecraft? Watch ChatGPT Try

Minecraft Reach Hack 0:12:03

Minecraft Reach Hack

Hacking Minecraft Pi 0:06:37

Hacking Minecraft Pi Edition

New Python Coders 0:02:13

New Python Coders Be Like...

Coding for 1 0:00:24

Coding for 1 Month Versus 1 Year #shorts #coding

Learning to Hack 0:05:03

Learning to Hack as a Kid

Normal People VS 0:00:21

Normal People VS Programmers #coding #python #programming #easy #funny #short

python coding on 0:08:26

python coding on raspberry pi | hacking minecraft pt 4 ♡

python coding on 0:10:48

python coding on raspberry pi | hacking minecraft pt 3 ♡

python coding on 0:10:51

python coding on raspberry pi | hacking minecraft pt 2 ♡

What 10000 CPS 0:00:34

What 10000 CPS Sounds Like #Shorts

Комментарии
Автор

The way he says “you’ll be able to rickroll people” so seriously just made my day

neospindrift
Автор

2010: Minecraft was a game
2021: Minecraft is the new hacking tool

mattplaygamez
Автор

I've never seen an adult taking minecraft so serious especially rick rolls
However, I think this video is very good and shows what you need to do so your server won't get hacked this easily

_AultraGreen_
Автор

Presently studying ethical hacking on my own and presently happy you did the video even if I don't yet understand what is going on

gregorylepoux
Автор

I’ve been seeing a LOT of hacking tutorials on YouTube lately. There was a time once where YT would automatically delete any content regarding exploits or hacking. It’s good to see them loosen the reigns so people new to infosec can learn from the pros like you.

numberiforgot
Автор

-Great content Professor David...!!!
-In the company where I work and in the community that I follow this exploit is a concern and we did all the prevention and checking of updated systems.
-But all zero day exploits on specific systems are always a concern, even more those that create reverse shell, if it is a common good that exists in many systems then it becomes more worrying, and this one will make a lot of people sleep in the end of year.
-Thanks for the knowledge...!!!

educastellini
Автор

Create your own virtual machine on Linode with 60-day $100 credit*

* Please note: Credits expire in 60 days. Errata The promo code mentioned in the video is incorrect - you need to use the link above to automatically add credit.

* Thanks to Linode for sponsoring this video!

It's really important that you update your servers to no longer use vulnerable versions of log4j.

// MENU //
0:00 ▶ Introduction
1:45 ▶ Topology and overview of problem
3:10 ▶ Demo of rickroll attack
5:48 ▶ Netcat reverse shell attack demo
9:17 ▶ Entire process on a new cloud server

// SCRIPTS //

// MINECRAFT SETUP //

// JOHN's VIDEO //

// SOCIAL //

// SPONSORS //

Disclaimer: This video is for educational purposes only. I own all equipment used for this demonstration. No actual attack took place on any websites.

Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!

davidbombal
Автор

👍👍👍👍👍Wow, amazing David!
A step-by-step follow-up video on "Patching log4j" would be nice, please.
If that could be automated & documented in Git repo would be a plus+ ;)
Once again, thank you.

bobwong
Автор

Log4J is the cybersecurity FuckUp of the year.

baghramyan
Автор

Man, i dont know what to say!!
You are just freaking awsome teacher for us, really thanx for teaching these for us❤️

scrpt
Автор

Great work Sir
You create awareness as you educate
You a world's treasure

jk_tecs
Автор

Thank you for explaining in details in the end! That's good strategy, because if you explain it in the beginning, video would have bad retention.

MaxetTV
Автор

Didnt he just rick roll us 4 times in an video without actually hacking us...🤣🤣🤣


Btw great content....love what u are doing..

akshat
Автор

The Log4j vuln is spreading like wildfire...reminds of drupalgeddon 2 and joomla 2015 rce. Also congrats on 800k!

aravbudhiraja
Автор

Love how every Bombal's video start with ""Now please note, what I'm sharing here is for educational purposes only
:D
Thanks David! Keep up

AlexElement
Автор

I can imagine the amount of 6 years olds excited to see this video then realizes you ain’t gonna understand these without at least half a year of IT experiences

wind_explorer
Автор

Nice work on the video David! Before you shut your lab down, get a pcap from the Minecraft server side! 😀

ChrisGreer
Автор

Great educational video! Thanks for the info! Now I know how to secure my own mc server! 😊🙂🙏

unknownworld
Автор

I love how he says "for educational purposes" and tell you how to hack a Minecraft server

quandale
Автор

Oh Java, we could have been great friends.
Thanks David and congratulations on 800 k.

guilherme