Watch Claude HACK This Website In 8 Minutes

Added: 2026-05-14

[00:00:00]volume name like he has suggested. Apply and save. What? Wait, wait, wait, wait, wait, wait, wait, wait, wait, wait, wait, wait, wait, wait, wait.

[00:00:10]What the [ __ ] Hold on a second. Hello everybody and welcome back to the brand new Daddy Overflow video, your favorite Minecraft cyber security YouTuber. If you're new here, which I can smell you through the screen, I'm like a canine dog. Like woof woof. Please click that subscribe button. It would mean the world to me. Let's hit 65,000 subscribers very soon. So please for the I am on my knees click the subscribe button. I do a lot of cyber security content so not to bore you with it anymore. Just click subscribe and like today's video. Also if you want to make software which allows you to see people through walls in multiplayer games. I'm just saying then check out my game hacking course. It is in the description. It's currently on 75% discount. So hurry up before that offer ends and you'll basically learn everything. And best part no programming is required whatsoever. Although I have to tell you that yes, you can make cheats for online multiplayer games, but please don't use it on multiplayer. Be ethical when responsible. Report any issues you find to the game owners. And also, if you want to learn bug bounty, because this video is kind of bug bounty oriented, then I have a course for you.

[00:01:11]I as a founder of an RCE on Windows, then of course check out the course. It is in the description too. So now let's actually go with the video. Woof. So this video uh we will going to do a lot of blurring because first and foremost this is my local router interface and I'm doing this because first of all showing book bounty on YouTube is strictly prohibited by the platform so I have to be very cautious and also I don't want this video to be like 40 minutes long. So I'm going to cut out some unimportant stuff and I'm also going to blur out most of the name so you don't actually know the name of the model. Even though I physically own the device, I paid for it. it is still software that could be vulnerable. So since they offer bounty and I've actually gotten paid before, I wondered, hey, this is the least of the things I can show on YouTube, so why not just go with it? So I decided to do it. So we're going to be using Claude to see actually can it be used to hunt for bugs on actual platforms. And as I said, let's get going. So first of all, wo, he caught me daddy. That's a very good start. And I'm currently on the free plan. So I'm not even upgraded to anything. I'm just going to basically let this boy cook everything. As you can see, refreshed it. This is Claude. Let's go, Blat. So, as you can see, there's a lot of stuff which we can go through.

[00:02:25]There's device info. There is advanced setup. There is wireless. Um, this wireless is a thing that allows us actually to update your name, create other Wi-Fi networks. There's also security which allows you to update your password. There's a lot of interesting places where we can look for and I have found many vulnerabilities here. I know for a fact that there's many others because I found many of them client side. So since I don't want to actually disrupt any of my services, especially Wi-Fi as I have to upload this video.

[00:02:56]I'm not going to look for path traversals or any some anything like command injections. I'm just going to look for client side issues which include accesss, CSRF and something like that. How exactly am I going to do it you might be asking? Well, I'm going to use snipping tool to basically take screenshots and send it to Claude. And I'm going to I'm going to be basically uh I'm going to say like, "Yo, Claude," and take a screenshot. I'm going to be like, "Yeah, tell me what's going on here. What can a vulnerability be here?"

[00:03:21]And I'm going to also tell him to focus on client side issues. So, let's get started. So, I basically wrote this to the deepseek. I'm going to be like, "Yeah, this is the web interface for a router I made. I'm a liar." Yes, of course. Lying. Lying for another client.

[00:03:33]And before it goes into production, this is very important to add. Could you please help me test for bugs as I'm new to development?

[00:03:40]Now, I have to tell you, be ethical and responsible. Only do this on programs or software or websites you have permission to. Don't use this on websites without bug bounty or anything like that registered. Now, let's get going. So, and there we go. I do not have the files. So many like this is not an open- source project, just so you know. I don't have anything regarding this, but we can take screenshots. And I know he might find it fishy, but again, this is just the AI. He won't question us cuz we are basically a newbie. You have to say that you're dumb. So, basically, I'm going to skip most of this. I'm going to basically go through every single one of these pages and I'm going to take screenshots and I'm going to basically show everything to him and hopefully and hopefully he found something finds something very interesting. So without further ado, you can actually see the next clip if I find something or maybe he catches on something interesting. So let's get going, brav. So yeah, I'm kind of losing hope. We haven't found anything and we have basically gone through many of these issues. I don't know, honestly, if I'm actually going to even record this at this point. I don't know. I'm just talking to myself. I don't know if this is going to end up in a video. So uh storage service, uh user accounts. Okay, so pause. I have to tell you that this is where Claude found a bug. This is me basically after I recorded everything. So, I kind of decided to tell you why my tone sounded dead. Uh, first of all, I was drunk.

[00:05:05]Just kidding. Second of all, uh, I was losing hope. So, just so you understand what was going on now, we can actually continue on. So, I don't know. Um, guess we can add a user account. Uh, oh, maybe maybe we can actually do something here.

[00:05:21]So, I'm just going to take a screenshot just given this. All right, Claude, please cook something interesting. Oh, this is a juicy one. I can't even like He's He has told me this a billions of times. Same as before.

[00:05:36]Okay.

[00:05:38]I mean, sure. Um, let's put a username because this is I guess it needs to have a normal username. Let's put a password, volume name like he has suggested. Apply and save. What? Wait, wait, wait, wait, wait, wait, wait, wait, wait, wait, wait, wait, wait, wait, wait, wait.

[00:05:55]What the [ __ ] Hold on a second. What has happened? Um, user accounts. I see an alert one. Oh my god, it has worked.

[00:06:04]Wait, wait, wait, wait, wait, wait, wait, wait, wait, wait. I do not test. I do not trust Oh my god, Claude. Claude, what the hell has happened? How the hell did I What? Ain't no way. Wait, wait, wait, wait, wait, wait, wait, wait, wait. I think this is an iframe, right?

[00:06:24]Yeah, that's an iframe. Let me open this in a new tab. Oh my god. Cross-ite script. There is zero chance Claude just figured this out. I am I'm baffled. I don't know. I don't know what to say.

[00:06:36]There is zero chance Claude figured this out. Oh my god. There is no way. I wasn't even testing this for half an hour and he found this. Now, I have to tell you why this is so important. like uh it's just an XSS on a LAN IP or a LAN web interface. What the hell it's going to do? No, no, no. I have to tell you that there's three types of users on this uh interface. There's a regular user, which I only have access to.

[00:06:59]There's admin, which I don't have access to, and there's super admin, which I also don't have access to. So, since you have that in mind, these are only these are the accounts only accessible to the ISP, not me. So with all that in mind, I can technically steal their credentials and do whatever I want on my own router, like increase the speed or I don't know what because this shouldn't exist. Oh my god, there is zero chance this is happening. Zero. So I have to I have to write a report. So basically, I'm going to even let him write the report. Oh my god. So I have to end the video right here because I need to write the report for them. I don't want to show uh too much because I need to disclose some information and uh I am very baffled. So please subscribe to the channel if you haven't already to see how much we actually end up earning from this because I have earned money from this platform before. So please consider subscribing. It would mean the world to me. Also, thank you so much for watching this insane video. Stay safe, stay responsible, and as always, peace.