As someone who does make random Vencord plugins and related stuff for some reason, I accidentally discovered how the stream crash works a while ago (though I'm probably not the first person to find this). Discord has 2 functions to check if the framerate and vertical resolution are in a list of approved values, and if they aren't, the client will crash. You can inject code telling these functions to return the given resolution/framerate and your Discord client will be fine.
@@boid Data verification is extremely important. They seem to handle the error by crashing the client, when the same code check *should* also also be applied to the person streaming. I feel like this overlook could've been used to rack up Discord some serious bandwidth bills if someone really wanted to abuse it since they don't have a resolution/fps check.
The powertrip ban is exactly what happened to me on Feather clients discord server. Some girl with nitro bought for over 4 years and said that using vencord ,,is unfair because she's paying and i am not"
I'm not going to excuse her behavior, but it seems like she has a problem with investing her time and energy into the wrong things, leading her to be stuck in those things for prolonged periods of time, unable to leave. It's known as the "sunken cost fallacy," which basically means "I've spent so much time/energy/resources into this, so I have to keep investing in this or else everything I did before was a waste." Her problem is that she probably felt so guilty for throwing away 4 years worth of money towards Discord Nitro, a completely useless subscription, and decided to take out that guilt on you. She couldn't let go on Nitro... she'd already wasted 4 years on it. She lacks the self-awareness to quit paying for Nitro, and she especially lacks the awareness to realize she could still save money by quitting now and using Vencord instead going forward. Anyway sorry for the paragraph lol. Lately I'm seeing too many chronically-online people fall for the sunken cost fallacy, living comfortably in their own discomfort because they are too scared to confront their problems. It sucks that you got banned over her powertrip, but I wanted to reply with this information in the hopes that it might give you a little peace of mind. Like I said, none of this excuses her behavior, but it might explain why she did what she did. Deep down she may not be an a-hole, she may just be misguided and is using that to take out her problems on other people. Hopefully she can learn from this, and hopefully you have learned to not share that you are using Vencord haha.
I don't think anyone is talking about how sneaky the person who made this is. They knew exactly how to obfuscate enough of the information so that your average user (which is the ones you want to hack) couldn't see what it was doing. and it was all hidden under the guise of storing crash logs, which sounds like something a program like this would do.
its a very poor attempt at obfuscation because anyone with even a little bit of experience will instantly be suspicious of any base64 or similar encoded blocks of text. similar to spurious eval functions or other stuff you just dont really see in normal code, because normal code is designed to be readable and obvious. a more elegant approach is using the freedom that javascript objects give you to concatenate strings out of random bits and pieces in the code or embedding those bits in something harmless like an svg logo. there are a lot of cool js obfuscation techniques and this is not one of them.
@@drkastenbrot yes, but only smart people are going to notice that, you don't want to hack smart people because they can potentially do stuff back, you want people who barely understand it at best. But maybe I'm giving them too much credit
@@unnaturalandroid "Only smart people" correction, only people who are actually old enough to not want to crash other people's computers and actually know what they're doing. Encoding small lines of text in Base64 or literally any other encryption algorithm has existed since computer malwares became too popular. You're giving them WAYY too much credit.
It's scary how these people learn so quick to find a new way to get tokens, Big up to NTTS warning us to not run any strange codes and not get hacked by a most obvious program. Absolute a hero!
Correction: An endpoint is just something you access. Either through there being an API, a website, or something else. It's the stuff people have access to (and thus you should be very careful and treat all input as if it's malicious, since people will try to abuse it). The stuff that is not an endpoint is the infrastructure behind it that the user can't access (or shouldn't be able to access), for example a database holding user information.
im really grateful that you expose these kinds of malware/scams, i know it probably helps a lot of people (90% of that "lot of people" is prob crusty old discord mods)
Honestly, this sorta video is pretty dope. Most of the time, I see people (sometimes you) just saying some stuff like, “Yeah, so uhhh, there’s this code, which looks pretty nasty.” It doesn’t really help people figure out the problem and stay safe. Though, adding the explanation and basically a code breakdown allows people to figure out what the real issue is and what the malicious plugins actually do (they’re also good for nerds like me who wanna figure out how different coding languages work). I’d love to see more of this stuff in the future. And, you almost at a million subs, damn. Ok, yapfest over.
There are yt channels that focus on teaching to codee. NTTS is not one of them, and you shouldn't really expect it from him. In this case it was extremely simple, so he did explain it, but many attacks are much more involved and better hidden, it'd take hours to explain the exact mechanism to lay-people.
@@insu_na Ok, but videos focused on teaching how to code are boring. Writing code is boring. Reading code is boring. It's only interesting if the code actually does something real and interesting. (and I say this as someone who spends a lot of his time reading and writing code)
Most people don't give a shit about that. And it's not that they need to, just saying "custom plugins/scripts/extensions can do anything with your account including sending your passwords to zimbambwe" is really enough explanation.
As someone with vendord, fake nitro is pretty cool. And the reviewing system is cool too, fake nitro literally just lets you send fake emojis that are really images.
1:41 "it hasn't gone through that rigorous ven-ing process" can confirm, ven is a bit obsessed with controlling what gets added to vencord (or used to at least). cool guy tho, know him from before vencord was a thing
Now I understood how so many ppl are getting their disc accounts hacked 😂 like bro this is what you get when you simply add these sorts of fake plugins.
I'm glad I watch these videos, the videos here are always fire to watch, sometimes even makes me have a good laugh when I really do need it during a bad day. Thank you NTTS, you really are a legend🔥
Yeah, I got banned off of the r/jailbreak discord server, bc I posted a screenshot with my custom client in there, and this mod brought me into a private chat and started interrogating me when there were people saying the n-word that weren’t even banned.
a bit ironic of a server based around jailbreaking, am I right? both things would be a violation of terms of service for their respective things (apple devices (at least that's my guess) and discord) but the admins decided to suck up to discord for whatever reason lmfao.
I love how satirically extreme you make base64 look All Base64 is is just taking the raw binary of the text and grouping it into 6 bits instead of 8. It's quite literally just an alternate way of writing numbers lmao (It's considered compression, not even encryption. It's so simple that you can decode it very quickly with just pen and paper.)
I’ve never had any problem with custom Vencord plugins, in fact I’ve made my own but I did not think that people were actually trying to be malicious with it. Shame.
Imo even with this custom plugins should be MUCH easier to install, you should not have to build it on your own, especially since doing so can fail for many reasons. For example, from what I’ve found, if you have any spaces in the path to the source code, you cannot build it.
base64 is used to efficiently encode data that is not meant to be represented as text. You cant send a picture, video or whatever as a text normally, but you can use base64 to encode it with minimal size increase (usually +30%) so you will be able to send this as text. Base64 uses alphabet of 64 symbols which makes it much lighter compared to 15 character hex which increases file size drastically.
The thing that makes this even funnier is that anyone who wants to screw over mr 5jn and has even a little bit of coding knowledge can just send countless fake button pushes by simply changing what it sends to something that contains no personal data, and then just put that post request in a forever loop, like while 1=1, which is always true, and then you have just floods of useless data piling up in their database
@@user-dm2fh3yi5l my guess is they tried to obfuscate it just enough that the average person wouldn't get suspicious, but didn't bother going any further
I use Vencord/Vesktop on my laptop for one reason and one reason alone: My linux laptop won't send sound down streams from the base client. Vesktop fixes that. My windows desktop? No problems. But the audio stack they use in the Linux Client has issues and honestly needs a focused re-write.
In C you have functions like atoi (ASCII to Integer, parse text as a whole number), atof (ASCII to Float, parse text as a decimal number). So I would assume atob means ASCII to Base64 or something. I personally dislike it when they don't write it out. They could have called it something like from_base64, parse_base64, decode_base64, or deserialize_base64
Even to this day i still confused atob and btoa when i need to use them. b64e and b64d would be better names in my opinion, taking the same amount of space.
I had some friends tell me that I shouldn't be using a maudic client just because it allows people to do stuff like view hidden channels in a server that they're not supposed to be able to see. When all I was really using it for was for some quality of life features and customization. And I was told that it's stupid because Discord is a chat program and so looking at the background doesn't really matter.
Man, i was about to download vencord because i just watched that one custom activity of yours. then a minute later. this shit immediately on my recommendation.
@@Koishukaze yeah, I just watched the video and apparently it's just some weird crash plugin or something like that. I thought it was like an in-built type of thing.
@@kalvon nah, its a third party plugin, anyone can make a plugin for vencord but this doesnt mean vencord supports the plugin if its malicious or does harm (they wouldnt and dont)
No, someone who goes “tee hee I’m gonna make my friends restart Discord” is not the same as someone who is violating the computer fraud and abuse act, stealing info (including potentially credit card numbers) I’m sure you can see how the damage done in both these scenarios is different right?
Basically, the way you can stay safe with Venkord is to use the official plugins provided in the plugins tab, since It's a curated list that they went through and vetted all the plugins there.
Thank you so much for highlighting my plugin! It means a lot to me :). By the way, I didn't know people were using my plugin to crash other people's Discords. That's actually hilarious.
VIDEO SPOILERS! so it uses a webhook to send a message containing your discord token to the plugin creator's discord server... how long will it take before someone recodes the plugin to just send a gif of thanos dancing whenever they press the button.
I'm Staff myself on a dc server with a few ten thousands members. All of our staffs, owner included, use vencord, recommend it to people and don't hide it. We don't moderate it.
I shall install a plugin that when I click on the button, it turns everyone in the call into a horse in real life. Then we all go outside and eat grass or something...
As someone who does make random Vencord plugins and related stuff for some reason, I accidentally discovered how the stream crash works a while ago (though I'm probably not the first person to find this). Discord has 2 functions to check if the framerate and vertical resolution are in a list of approved values, and if they aren't, the client will crash. You can inject code telling these functions to return the given resolution/framerate and your Discord client will be fine.
up
yop
yop
Surely it should just not display the stream rather than crash that's honestly a fail on discord's part.
@@boid Data verification is extremely important. They seem to handle the error by crashing the client, when the same code check *should* also also be applied to the person streaming. I feel like this overlook could've been used to rack up Discord some serious bandwidth bills if someone really wanted to abuse it since they don't have a resolution/fps check.
anything with custom features is gonna lead to some trolling
@SEWERPIGOFFICER-t5n💀💀💀
@SEWERPIGOFFICER-t5n💀
@SEWERPIGOFFICER-t5n💀
yes yes "trolling"
💀
ah yes i love fake nitro
fr same
FakeNitro, my favourite
My beloved
@@Takeringspluh
probably the best plugin imo
The powertrip ban is exactly what happened to me on Feather clients discord server. Some girl with nitro bought for over 4 years and said that using vencord ,,is unfair because she's paying and i am not"
womp womp u saved 10$ and its not ur problem
That server is useless anyway
I'm not going to excuse her behavior, but it seems like she has a problem with investing her time and energy into the wrong things, leading her to be stuck in those things for prolonged periods of time, unable to leave. It's known as the "sunken cost fallacy," which basically means "I've spent so much time/energy/resources into this, so I have to keep investing in this or else everything I did before was a waste." Her problem is that she probably felt so guilty for throwing away 4 years worth of money towards Discord Nitro, a completely useless subscription, and decided to take out that guilt on you. She couldn't let go on Nitro... she'd already wasted 4 years on it. She lacks the self-awareness to quit paying for Nitro, and she especially lacks the awareness to realize she could still save money by quitting now and using Vencord instead going forward.
Anyway sorry for the paragraph lol. Lately I'm seeing too many chronically-online people fall for the sunken cost fallacy, living comfortably in their own discomfort because they are too scared to confront their problems. It sucks that you got banned over her powertrip, but I wanted to reply with this information in the hopes that it might give you a little peace of mind. Like I said, none of this excuses her behavior, but it might explain why she did what she did. Deep down she may not be an a-hole, she may just be misguided and is using that to take out her problems on other people. Hopefully she can learn from this, and hopefully you have learned to not share that you are using Vencord haha.
Gonna go to that sever and say I use vencord
@@44turnips godspeed
I don't think anyone is talking about how sneaky the person who made this is. They knew exactly how to obfuscate enough of the information so that your average user (which is the ones you want to hack) couldn't see what it was doing. and it was all hidden under the guise of storing crash logs, which sounds like something a program like this would do.
Yeah, you have to know what Base64 actually looks like to detect it (granted, that's not very hard, but still)
but not sneaky enough to hide his discord id...
its a very poor attempt at obfuscation because anyone with even a little bit of experience will instantly be suspicious of any base64 or similar encoded blocks of text. similar to spurious eval functions or other stuff you just dont really see in normal code, because normal code is designed to be readable and obvious. a more elegant approach is using the freedom that javascript objects give you to concatenate strings out of random bits and pieces in the code or embedding those bits in something harmless like an svg logo. there are a lot of cool js obfuscation techniques and this is not one of them.
@@drkastenbrot yes, but only smart people are going to notice that, you don't want to hack smart people because they can potentially do stuff back, you want people who barely understand it at best. But maybe I'm giving them too much credit
@@unnaturalandroid "Only smart people" correction, only people who are actually old enough to not want to crash other people's computers and actually know what they're doing. Encoding small lines of text in Base64 or literally any other encryption algorithm has existed since computer malwares became too popular. You're giving them WAYY too much credit.
It's scary how these people learn so quick to find a new way to get tokens, Big up to NTTS warning us to not run any strange codes and not get hacked by a most obvious program. Absolute a hero!
It is incredibly easy. Trust me
Yeah this isn’t new, it’s probably one of the lowest effort obfuscation method
@@haobo_zhang This is literally kindergarten level code.
I could make this with chatgpt
he got doxed
I actually like these vidoes going kinda in depth about discord stuff about being safe in a simple way. Please make more
fr
Haha ill try to weave in some nerdy stuff as much as my subway surfer brain can tolerate
@@NoTextToSpeech holy never thought you would respond
@@NoTextToSpeech HI NTTS
@@NoTextToSpeech how to install this plugins pls
Correction: An endpoint is just something you access. Either through there being an API, a website, or something else. It's the stuff people have access to (and thus you should be very careful and treat all input as if it's malicious, since people will try to abuse it). The stuff that is not an endpoint is the infrastructure behind it that the user can't access (or shouldn't be able to access), for example a database holding user information.
shut up mart
Nerd
almost like he's "generalizing a bit here" (6:36)
Man, I wanted my e-girl finder plugin :(
😔
😔
😔
😔
😔
So basically, don’t be an idiot and don’t download the first interesting thing you see, internet 101
@LOGANPAULUTTP-z8gno one cares
A "pleasure"bot copied your comment and somehow got wayy further up the comments…
@@Lampe2020 lmfao that's true 🤣
@@Lampe2020 Those bots always likebot their comments
@@Lampe2020 I’m going to crash out
A naked man fears no pickpocket.
Unless they pickpocket your ass
@@sansaraee jokes on you im into that shit
@@sansaraee dont threaten me with a good time
@@qhu3878enclave
@@qhu3878 whar 😢
I love when you explain the code and stuff. As a learner. This is one of the most useful videos ever.
9:55 had me blushing
Agreed
so true
epicSuperman_622 approves this message👍
im really grateful that you expose these kinds of malware/scams, i know it probably helps a lot of people (90% of that "lot of people" is prob crusty old discord mods)
If vencord is against the rules
then why they have a whole server in discord?
discord doesnt care
HMMMMM
They dont care
@@Koishukazefor real
@@Koishukaze discord never cares unless it’s the funny number or some Filipino shit
7:55 "we see again atob the advanced military grade encryption technique 4D technology base 64" that one got a chuckle out of me
ogm instead of counting up to 9 you count up to something else!
I got this nice egirl finder plugin, tho the button did nothing, surely my token just didn't go anywhere
hmmmmm
@@hakuruyu hmmmmm
hmmmmm
hmmmmm
hmmmmm
Vencord is kinda crazy. I still use it anyways
@@BELARUSUTTP-h1u🤓
Betterdiscord is better but sadly no one cares about it anymore
@@lolilander52 i use betterdiscord to have plugins vencord doesnt have, tho i only download em from the official site
This is about not trusting every damn unofficial plugin you find.
Same
Honestly, this sorta video is pretty dope. Most of the time, I see people (sometimes you) just saying some stuff like, “Yeah, so uhhh, there’s this code, which looks pretty nasty.” It doesn’t really help people figure out the problem and stay safe. Though, adding the explanation and basically a code breakdown allows people to figure out what the real issue is and what the malicious plugins actually do (they’re also good for nerds like me who wanna figure out how different coding languages work). I’d love to see more of this stuff in the future. And, you almost at a million subs, damn.
Ok, yapfest over.
There are yt channels that focus on teaching to codee. NTTS is not one of them, and you shouldn't really expect it from him. In this case it was extremely simple, so he did explain it, but many attacks are much more involved and better hidden, it'd take hours to explain the exact mechanism to lay-people.
@@insu_na Ok, but videos focused on teaching how to code are boring.
Writing code is boring. Reading code is boring.
It's only interesting if the code actually does something real and interesting.
(and I say this as someone who spends a lot of his time reading and writing code)
Most people don't give a shit about that.
And it's not that they need to, just saying "custom plugins/scripts/extensions can do anything with your account including sending your passwords to zimbambwe" is really enough explanation.
@@cameron7374 skill issue
Lucky we have somebody like him to talk about this kind of stuff, Stay safe kids.
Wait. NTTS in Main Outfit at 1 Million Subscribers! Lets do it.
Lesgo we need to remind him when he hits 1M
catboy maid ntts real??
I read this as "man outfit" and was disappointed because ntts dressing up as man from ham aslume would be infinitely funnier
I use Vencord for the plugins because of you! I am sticking to good ‘ol plain plugins~
As someone with vendord, fake nitro is pretty cool. And the reviewing system is cool too, fake nitro literally just lets you send fake emojis that are really images.
1:41 "it hasn't gone through that rigorous ven-ing process" can confirm, ven is a bit obsessed with controlling what gets added to vencord (or used to at least). cool guy tho, know him from before vencord was a thing
5:33 The kid inside of NTTS just came to life 💀
you make minecraft videos and your name is lietrally ThDynamicGamer and your pfp is literally herobrine
@@ScratchdHelpwhat did he do
@@bhopVACR idk
pfp checks out
@@ScratchdHelp "bros late everyones already born" ahh response
Now I understood how so many ppl are getting their disc accounts hacked 😂 like bro this is what you get when you simply add these sorts of fake plugins.
Ever made your friends screen boil with a plugin :pro:
can we just sit down and realize that this man is finally almost at 1m subscribers?
great demonstration of account hacking there ! It's cool to see the insides as well, and know how they work in depth :)
I'm glad I watch these videos, the videos here are always fire to watch, sometimes even makes me have a good laugh when I really do need it during a bad day. Thank you NTTS, you really are a legend🔥
Yeah, I got banned off of the r/jailbreak discord server, bc I posted a screenshot with my custom client in there, and this mod brought me into a private chat and started interrogating me when there were people saying the n-word that weren’t even banned.
a bit ironic of a server based around jailbreaking, am I right? both things would be a violation of terms of service for their respective things (apple devices (at least that's my guess) and discord) but the admins decided to suck up to discord for whatever reason lmfao.
@@xkower8181 That’s what I’m saying. It was some power hungry mod.
I actually really enjoy it when you break down code
Explained it like a pro 🙏
I didn’t even realize custom plugins existed, I thought it was just only 2 official libraries of plugins from vencord and better discord
what is that feet background bro
Pokimane Feet Server Theme only for those who joined the Pokimane Feet server
@@BELARUSUTTP-h1u Why is the uttp here? Wait nope the comment was deleted.
@@Shavix why do you know this
but you get
"atob([multipurpose webhook link]);
and
"FindByCodeLazy(atob(crashlog = gettoken));"
instead.
@@mossseater it’s almost like they’re quoting the video
Im not gonna to lie this was somewhat deserved, I wonder the look on the "gansters" faces when they realized they had fallen for a scam
Closest substitute of touching some grass is watching ntts videos
Mom, don't disturb me
Daddy ntts is teaching
I love how satirically extreme you make base64 look
All Base64 is is just taking the raw binary of the text and grouping it into 6 bits instead of 8.
It's quite literally just an alternate way of writing numbers lmao (It's considered compression, not even encryption. It's so simple that you can decode it very quickly with just pen and paper.)
I feel like running that and just sending him infinite fake tokens
go ahead
I actually really appreciate NTTS going through the code
I’ve never had any problem with custom Vencord plugins, in fact I’ve made my own but I did not think that people were actually trying to be malicious with it. Shame.
If this was every video I would sub again. I learned a lot about programming in this
Imo even with this custom plugins should be MUCH easier to install, you should not have to build it on your own, especially since doing so can fail for many reasons. For example, from what I’ve found, if you have any spaces in the path to the source code, you cannot build it.
you mean easier to install with unofficial plugins?
@@xenird no, I mean it should be easier to install custom plugins even though there are malicious ones
i agree, and how the f do they mess up spaces in path in 2024
then just clone the repo in your root directory???
@@the1whoplayz still more work than you should have to do.
Great video. I love your slow transformation into becoming a malware deobfuscator lol
You are my news source I really love you for that you safed me many times
I don't even have discord anymore but I love your videos 😭😭
base64 is used to efficiently encode data that is not meant to be represented as text. You cant send a picture, video or whatever as a text normally, but you can use base64 to encode it with minimal size increase (usually +30%) so you will be able to send this as text. Base64 uses alphabet of 64 symbols which makes it much lighter compared to 15 character hex which increases file size drastically.
every data in a computer can be represented as bytes and bytes are just a sequence of 8 bit numbers (from 0 to 255).
The thing that makes this even funnier is that anyone who wants to screw over mr 5jn and has even a little bit of coding knowledge can just send countless fake button pushes by simply changing what it sends to something that contains no personal data, and then just put that post request in a forever loop, like while 1=1, which is always true, and then you have just floods of useless data piling up in their database
I'm surprised whoever made that script actually tried to obfuscate it... but I'm disappointed at how terrible of a job they did.
Indeed you’re right, but you can tell whoever made this script didn’t even really try to obfuscate it… i mean base64? the most SIMPLE one…
@@user-dm2fh3yi5l does its job when it wont say "getToken" in plain text to your average kid
@@user-dm2fh3yi5l my guess is they tried to obfuscate it just enough that the average person wouldn't get suspicious, but didn't bother going any further
Should’ve obfuscated it with something that isn’t decodable by dCode
I know how to code and do code daily but i still love your breakdowns of the code underneath these scams!
You know its a good day when NTTS uploads a video
@LOGANPAULUTTP-z8g Oh Ofc It's uttp shut up no one fucking cares I don't think uttp likes kpop and is againts it.
I can’t believe he hired Edna Modes vocal coach for the impression. 10/10
I use Vencord/Vesktop on my laptop for one reason and one reason alone: My linux laptop won't send sound down streams from the base client. Vesktop fixes that. My windows desktop? No problems. But the audio stack they use in the Linux Client has issues and honestly needs a focused re-write.
i could feel the horror when i saw "getToken" lmao
In C you have functions like atoi (ASCII to Integer, parse text as a whole number), atof (ASCII to Float, parse text as a decimal number).
So I would assume atob means ASCII to Base64 or something.
I personally dislike it when they don't write it out. They could have called it something like from_base64, parse_base64, decode_base64, or deserialize_base64
but the one liners would get too long
Even to this day i still confused atob and btoa when i need to use them. b64e and b64d would be better names in my opinion, taking the same amount of space.
bad engineering choices from the 90s
atob stands for "ascii to binary" and btoa stands for "binary to ascii"
@@mollthecoder not in js
Ive seem this channel so much randomly. Just good info about discord. Gonna sub.
This was on point, i was looking for plugins 👍
genuinly love the way u edit ur vids sm and what u talk abt
1:43 canadian alert
lmfao
that power tripping happened to me cuz i asked about a private channel 😭
tl;dr base vencord is safe, dont use custom plugins
never heard of vencord before this but now im installing it
W vid ntts keep it up ❤❤❤❤
this program seems fun to troll your friends with for a laugh or two
I did actually get banned from a server for using betterdiscord lmao, bad moderation goes crazy
I had some friends tell me that I shouldn't be using a maudic client just because it allows people to do stuff like view hidden channels in a server that they're not supposed to be able to see. When all I was really using it for was for some quality of life features and customization. And I was told that it's stupid because Discord is a chat program and so looking at the background doesn't really matter.
what makes them bad?
@@admiralkaede Some people take aspects of the terms of service very seriously and modded clients are against the terms of service.
As a server owner, if anyone bans you for client mods they are power tripping
@@olliknecks being able to see hidden channels isn't chill or save messages
this is awesome. more discord malware code analysis please
Man, i was about to download vencord because i just watched that one custom activity of yours. then a minute later. this shit immediately on my recommendation.
there's nothing wrong with using vencord, just be careful with custom plugins, the ones in official vencord are fine
Just download the plugins that Vencord has available :) don't worry about ones that arent on their page in your discord settings
@@Koishukaze yeah, I just watched the video and apparently it's just some weird crash plugin or something like that.
I thought it was like an in-built type of thing.
@@kalvon nah, its a third party plugin, anyone can make a plugin for vencord but this doesnt mean vencord supports the plugin if its malicious or does harm (they wouldnt and dont)
The accent was really funny. I'd like to see more.
people who make harmful unoffical plugins are as bad as the people who download them to be a "gangster"
No, someone who goes “tee hee I’m gonna make my friends restart Discord” is not the same as someone who is violating the computer fraud and abuse act, stealing info (including potentially credit card numbers)
I’m sure you can see how the damage done in both these scenarios is different right?
Nobody has ever downloaded something on their device and said "Yeah this makes me a gangster"
@@Actible thats cap
If you're reading code, and there's any encrypted strings... just don't use that code. Clearly the dev has something to hide
I never knew that you can get custom plugins, this sounds like a double edged sword that if you're careful you'd probably be fine
correct
Basically, the way you can stay safe with Venkord is to use the official plugins provided in the plugins tab, since It's a curated list that they went through and vetted all the plugins there.
Betterdiscord always let anyone install anything and it never backfired. It's different on Vencord because mostly very young kids use it.
thank you for this. i can see myself getting into such situation. but now i will be more cautious
Heck yeah, new ntts vid dropped (edit: corrected ntts. The auto correct thought I said nuts💀)
I love nuts
new nuts vid
whenever ntts posts my whole day is better, yesterday was in hospital for 3h spent whole 3h watching ntts
I only had discord for not even 24 hours before I got like 6 impersonators and I had to delete it
how the fuck did i find you under a minute
That’s crazy.
i found this guy in 5 minutes 😭
strange, i wonder why that happened? i haven't experienced an impersonator and i've been on the platform for over four years
man, tf happened?
LESGOO JUST BEFORE DINNER RAHHHH
pokifeet invite link?
💀💀
I KNEW YOU COULD INSTALL CUSTOM PLUGINS! (I didnt, i tried searching for it but i couldnt find anything about it lmao, anyways thank you)
Preventing people from saying first
The first comment didin't say first anyways.
and this is the reason why learning how to code is worth your time
Hmm
Please make more nerdy videos. Learning about malware code is interesting
man at this point someone needs to make a site that check's a plugin's safety for u and reports on sus code
Thank you so much for highlighting my plugin! It means a lot to me :). By the way, I didn't know people were using my plugin to crash other people's Discords. That's actually hilarious.
Can you help me whenever I press settings, my discord crashes
OH yes, philhk plugin, i've been using it some years from now, pretty safe
if ntts doesn't ping I will go cry
Time to customize bros discord 😈😈😈😈
Sad to think people actually do this
Its the internet....🤷♂🤷♂
I saw that custom Plugin you got sent.
I'm like:
Yeah that's definitely a token logger, isn't it?
VIDEO SPOILERS!
so it uses a webhook to send a message containing your discord token to the plugin creator's discord server...
how long will it take before someone recodes the plugin to just send a gif of thanos dancing whenever they press the button.
Hold on
video spoilers is crazy
👍
👍
👍
👍
👍
👍
i got sleepy mid vid
Skibidi plugin my beloved
HELL YEAH🦅🦅🦅🦅🦅🦅🦅🦅
English people: Nice vid!
Russian people: POSXALKA POSXALOCHLA 8:20
hi NTTS! i got a news article recommending your video!
Nice video.
(Do useful unofficial plugins so i wont get hacked)
I'm Staff myself on a dc server with a few ten thousands members. All of our staffs, owner included, use vencord, recommend it to people and don't hide it. We don't moderate it.
I shall install a plugin that when I click on the button, it turns everyone in the call into a horse in real life. Then we all go outside and eat grass or something...