Professional Minecraft server credential capture tool for authorized penetration testing
Minecraft Credential Logger is a sophisticated penetration testing tool designed for authorized security assessments of Minecraft servers. It creates a perfect clone of any target server using Velocity proxy technology, capturing authentication credentials when players attempt to log in.
- ๐ Automated Server Cloning - One-click replication of any Minecraft server
- ๐ Advanced Server Scanning - Comprehensive target analysis and compatibility detection
- ๐ฎ Universal Version Support - Compatible with Minecraft 1.7.2 through 1.21+ via ViaVersion
- ๐ Public Tunneling - Automatic ngrok integration for global accessibility
- ๐ Real-time Credential Capture - Live monitoring of
/loginand/registercommands - ๐ฌ Discord Integration - Instant webhook notifications for captured credentials
- ๐ฅ๏ธ Modern GUI Interface - Professional Electron-based desktop application
- ๐ Statistics Dashboard - Comprehensive analytics and performance monitoring
- ๐ Multi-Server Support - Quick switching between different target servers
- Electron Frontend - Modern dark-themed GUI with real-time updates
- Velocity Proxy Server - High-performance Minecraft proxy for server cloning
- Protocol Handler - minecraft-protocol integration for server communication
- Credential Engine - Advanced pattern matching for authentication capture
- Discord Webhook - Automated notifications and alert system
- Ngrok Tunneling - Secure public access through encrypted tunnels
- โ MOTD Replication - Perfect message-of-the-day cloning with color codes
- โ Favicon Extraction - Automatic server icon capture and display
- โ Player Count Spoofing - Real-time player statistics mirroring
- โ Plugin Detection - Identification of authentication systems (AuthMe, etc.)
- โ Version Compatibility - Support for all Minecraft client versions
- โ Connection Monitoring - Real-time player connection tracking
- โ Command Logging - Comprehensive chat command analysis
- โ Data Export - JSON export functionality for captured credentials
- Node.js 18.0.0 or higher
- Java 17 or higher (OpenJDK recommended)
- Internet Connection for ngrok tunneling
- Discord Server (optional, for webhook notifications)
-
Clone the repository
git clone https://github.com/itsreyi/Minecraft-Credential-Logger.git cd Minecraft-Credential-Logger -
Install dependencies
npm install
-
Launch the application
npm start
- Enter target server details (host and port)
- Click "Scan Server" to analyze the target
- Click "Start Cloner" to begin the cloning process
- Share the generated public URL with targets
- Monitor captured credentials in real-time
For detailed setup instructions, see INSTALLATION.md
- ๐ Installation Guide - Complete setup instructions and requirements
- ๐ User Manual - Comprehensive usage guide and best practices
- ๐ง Configuration - Velocity proxy configuration
- ๐ API Reference - Credential data structure
This tool is designed exclusively for authorized penetration testing and security research. Users are responsible for ensuring they have explicit permission before testing any server.
- โ Written Authorization - Obtain explicit permission from server owners
- โ Scope Documentation - Clearly define testing boundaries and limitations
- โ Responsible Disclosure - Report findings through proper channels
- โ Data Protection - Secure handling of captured credentials
- โ Unauthorized Use - Using this tool without permission is illegal
- Only test servers you own or have explicit permission to test
- Immediately report security vulnerabilities to server administrators
- Delete captured data after testing completion
- Respect user privacy and data protection regulations
- Follow responsible disclosure practices for vulnerability reporting
| Client Version | Server Support | Notes |
|---|---|---|
| 1.21+ | โ Full Support | Latest protocol support |
| 1.20.x | โ Full Support | Complete compatibility |
| 1.19.x | โ Full Support | Chat signing handled |
| 1.18.x | โ Full Support | Height limit changes supported |
| 1.17.x | โ Full Support | Copper age compatibility |
| 1.16.x | โ Full Support | Nether update features |
| 1.15.x | โ Full Support | Bee update compatibility |
| 1.14.x | โ Full Support | Village & Pillage support |
| 1.13.x | โ Full Support | Aquatic update handled |
| 1.12.x | โ Full Support | World of Color support |
| 1.8.x - 1.11.x | โ Legacy Support | Via ViaBackwards plugin |
| 1.7.2 - 1.7.10 | โก Experimental | Limited feature set |
- Minimum RAM: 2GB available memory
- Recommended RAM: 4GB+ for optimal performance
- CPU: Multi-core processor recommended
- Storage: 1GB free disk space
- Network: Stable internet connection (10+ Mbps)
- Server Scanning: < 5 seconds for most servers
- Cloning Setup: 30-60 seconds (including downloads)
- Credential Capture: Real-time (< 100ms latency)
- Tunnel Creation: 10-30 seconds depending on region
- Memory Usage: ~200MB base + ~50MB per active connection
minecraft-credential-logger/
โโโ assets/ # Application assets
โ โโโ Logo.png # Application logo
โโโ renderer/ # Frontend GUI components
โ โโโ index.html # Main interface
โ โโโ styles.css # Dark theme styling
โ โโโ renderer.js # Frontend JavaScript logic
โโโ velocity-server/ # Minecraft proxy server
โ โโโ velocity.jar # Velocity 3.3.0-436
โ โโโ velocity.toml # Proxy configuration
โ โโโ plugins/ # ViaVersion compatibility plugins
โ โโโ logs/ # Server operation logs
โโโ main.js # Electron main process
โโโ minecraft-cloner.js # Core cloning system
โโโ package.json # Project dependencies
# Development mode with DevTools
npm run dev
# Build for production
npm run build
# Console-only mode
npm run console <host> <port>- Fork the repository
- Create a feature branch (
git checkout -b feature/amazing-feature) - Commit your changes (
git commit -m 'Add amazing feature') - Push to the branch (
git push origin feature/amazing-feature) - Open a Pull Request
| Issue | Solution |
|---|---|
| Java not found | Install OpenJDK 17+ and add to PATH |
| Port already in use | Kill existing Java processes or change port |
| Ngrok connection failed | Check firewall settings and internet connection |
| No credentials captured | Verify target server uses supported authentication |
| Discord webhook not working | Check webhook URL and Discord permissions |
For detailed troubleshooting, see the WIKI.md troubleshooting section.
- โ Initial release with full GUI interface
- โ Automatic Velocity server setup and configuration
- โ ViaVersion/ViaBackwards integration for universal compatibility
- โ Real-time credential capture with Discord notifications
- โ Ngrok tunnel integration for public access
- โ Advanced server scanning and MOTD replication
- โ Multi-server support with quick switching
- โ Comprehensive statistics and monitoring dashboard
- ๐ Documentation: Check INSTALLATION.md and WIKI.md
- ๐ Bug Reports: Open an issue with detailed reproduction steps
- ๐ก Feature Requests: Describe your use case and requirements
- ๐ Security Issues: Report privately via email
- GitHub Issues: Technical support and bug reports
- Discussions: Feature requests and general questions
- Discord: Community chat and real-time support (link in releases)
This project is licensed under the MIT License - see the LICENSE file for details.
This tool is provided for educational and authorized testing purposes only. The authors and contributors are not responsible for any misuse or damage caused by this tool. Users must ensure they have proper authorization before testing any systems and must comply with all applicable laws and regulations.
Remember: Always test responsibly and with proper authorization!
Built with โค๏ธ for the cybersecurity community
Built with โค๏ธ for the cybersecurity community