Tech Weaponsby The Ghost in The Prompt2026-03-158 min read

Mute Tube: YouTube Ad Silencer

YouTube Premium costs $18/month. Mute Tube is free forever. The cat-and-mouse game between YouTube's ad detection and community evasion techniques has been running for years. YouTube updates detection. Extensions adapt. Users win. Open-source DOM manipulation beats server-side ad injection. This is the technical breakdown of winning.

YouTube is a trillion-dollar company. Mute Tube is a few hundred lines of JavaScript. The score is roughly even.

This is Tom and Jerry. Has been for years. YouTube updates something — renames a class, adds a new ad format, tweaks their detection logic — and within days someone notices, patches the extension, and pushes it public. YouTube has more engineers. The community has more time and more motivation. Neither side ever fully wins.

The current version of Mute Tube is not the first version. It will not be the last. If you clone the repo and look at the selector array, you can read the history of the chase in the code itself.

const adSelectors = [
    '.video-ads',
    '.ytp-ad-player-overlay',
    '.ytp-ad-overlay-container',
    '.ytp-ad-skip-button',
    '.ytp-ad-skip-button-modern',
    '[class*="ad-showing"]'
];

Six selectors for the same thing. That list is a fossil record. .ytp-ad-skip-button worked. Then YouTube introduced .ytp-ad-skip-button-modern. Then they added .ytp-skip-ad-button. The wildcard [class*="ad-showing"] is the catch-all added when they started rotating names — anything with "ad-showing" in the class, whatever they decide to call it this week. Each entry in that array is a round YouTube thought they won and didn't.

Don't Block the Request. Let YouTube Think It Won.

The core approach is dumb in the best way. Do not block the ad request. Do not touch the network. Let YouTube think it won.

function detectAndMuteAds() {
    const video = document.querySelector('video');
    const skipButton = document.querySelector(
        '.ytp-ad-skip-button, .ytp-skip-ad-button, [aria-label*="Skip"]'
    );
    const adOverlay = document.querySelector('.ytp-ad-player-overlay, .video-ads');

    if (adOverlay && video) {
        if (!isAdPlaying) {
            originalVolume = video.volume;
            isAdPlaying = true;
        }
        video.muted = true;

        if (skipButton && skipButton.offsetParent !== null) {
            skipButton.click();
        }
    } else if (isAdPlaying && video) {
        video.muted = false;
        video.volume = originalVolume;
        isAdPlaying = false;
    }
}

setInterval(detectAndMuteAds, 500);

const observer = new MutationObserver(detectAndMuteAds);
observer.observe(document.body, { childList: true, subtree: true });

The ad loads. The impression counts. The advertiser gets charged. The creator gets paid. What gets removed is the part where a pharmaceutical company screams into your headphones at full volume while you're trying to listen to something.

From YouTube's server, this looks like a user who muted the player and clicked skip very quickly. Rude. Efficient. Technically legal. YouTube built those controls. Mute Tube just uses them faster than a human would.

The dual approach — setInterval every 500ms plus a MutationObserver — exists because YouTube mutates the DOM in two different patterns depending on ad type. The interval catches some. The observer catches others. Running both covers the cases either one misses alone.

The Escalation

YouTube has not been passive about this. The escalation over the past few years tells you how seriously they take it.

Phase one was class name rotation. Change .ytp-ad-skip-button to something less guessable, break all the extensions that hardcoded that selector. This worked for a few days at a time. The wildcard selectors killed the strategy — if you match on the pattern instead of the exact name, rotating the name accomplishes nothing.

Phase two was ad detection detection. YouTube started watching for mechanical timing patterns — clicks arriving too fast, too precisely, at intervals that no human produces. The 500ms polling plus MutationObserver produces a more human-shaped timing signature than a pure interval would. Not perfect. Good enough.

Phase three is the one that actually hurts: server-side ad injection. Instead of inserting the ad through the DOM where client-side code can see it, YouTube stitches the ad directly into the video stream at the server level. From the browser's perspective, it is all one video. There is no ad-showing class to catch. There is no skip button to click. The ad just plays, and your extension is watching an empty DOM waiting for something that never arrives.

This is the round YouTube is winning right now. It is also the round that costs the most to run — encoding every stream twice, maintaining the injection infrastructure, adding latency to delivery. YouTube uses it selectively, which is why Mute Tube still works most of the time.

When it stops working, the repo gets updated. That is how it has always gone.

Read It Before You Trust It

Any browser extension has access to everything your browser touches on the matched domains. For YouTube, that is a lot. The right response to that is not faith — it is inspection.

git clone https://github.com/ghostintheprompt/mute-tube
cd mute-tube

Load it unpacked in chrome://extensions with developer mode on, open src/content/content.js, and read it. The whole content script is under a hundred lines. There is nothing in there that should take more than ten minutes to verify. If you find something that surprises you, open an issue. That is what the repo is for.

This is the advantage of keeping it small. An extension this size can be audited in a sitting. Most of the tools people install without reading are orders of magnitude more complex. Trust the thing you can read.

HACK LOVE BETRAY
COMING SOON

HACK LOVE BETRAY

Mobile-first arcade trench run through leverage, trace burn, and betrayal. The City moves first. You keep up or you get swallowed.

VIEW GAME FILE

The Security Lesson Nobody Mentions

The interesting thing about Mute Tube is not that it works. The interesting thing is what you can learn by watching a trillion-dollar company try to stop it.

YouTube's escalation pattern — class rotation, timing detection, server-side injection — is identical to what you see when you pressure test any large defended system. Probe it. Watch how it responds. Probe differently. Watch again. The response pattern tells you more about the system's architecture than any documentation will.

Phase one responses are always cheap. Rename the thing. Rotate the identifier. This is the equivalent of changing a password after a breach — it addresses the immediate symptom without touching the underlying structure. When you see a phase one response from a large organization, you know their security team noticed but hasn't yet convinced anyone to spend real money.

Phase two is behavioral detection — watching for mechanical patterns that humans don't produce. This is where it gets interesting, because the defender is now modeling the attacker's behavior rather than just blocking specific actions. The 500ms interval produces a timing signature. A sophisticated enough detection layer can identify it. The counter is to match human-shaped timing, which is what the dual polling/observer approach does. You are now in a game of behavioral mimicry, and the attacker has the advantage because human behavior is the baseline both sides are measuring against.

Phase three is infrastructure-level response — server-side injection, moving the problem upstream of where the attacker can touch it. This is what large organizations do when application-layer defenses fail: they spend money. Real money. Server-side ad injection adds encoding overhead, delivery latency, and infrastructure complexity. YouTube is doing it selectively because it costs enough that blanket deployment is hard to justify when most users are not running ad muters.

That cost constraint is the most useful thing you learn from the whole exercise. Every large system has a response ceiling — a point where the cost of defending exceeds the business case for the defense. Understanding where that ceiling is, and what it takes to push a target toward it, is the skill that gets you hired to find the same ceiling in more critical systems.

Watching YouTube respond to a browser extension is a free education in how large organizations think about asymmetric adversarial pressure. They respond late. They respond in phases. Their escalations cost them more than they cost you. And the responses are observable because they always leave traces in the DOM, the timing, the error logs, the breakage pattern.

That is pressure testing in public. And it is the same methodology — just with higher stakes — that organizations pay to have done to their own infrastructure before someone less transparent does it for them.

YouTube Ships Through a Pipeline. The Community Ships in an Afternoon.

The fundamental asymmetry favors the user side. YouTube has to ship changes through a deployment pipeline. The community ships a selector update in an afternoon. YouTube has to balance ad revenue against user experience metrics — too aggressive and watch time drops. The community has no such constraint. YouTube has to maintain backward compatibility across billions of devices. A browser extension just has to work on Chrome.

The $18/month Premium pitch is real for some use cases — background play on mobile, downloads, no interruptions across devices. Those are legitimate features that Mute Tube does not touch. Mute Tube is narrower: desktop, browser, the specific violence of an ad that starts at full volume when your system volume is at 80%.

That is the problem it solves. Nothing more. Nothing less. It will keep solving it until YouTube finds an approach that is cheaper than server-side injection and harder to route around than a class name.

They have not found it yet.

GitHub: github.com/ghostintheprompt/mute-tube

Chrome Web Store: Search "Mute Tube"

Free forever. Open-source. Small enough to read in one sitting.

GhostInThePrompt.com // The DOM is your high ground. Refuse to be yelled at.

Continue Reading

tech-weapons

Logic Drift: Two Prompts for When AI Starts Faking Your Code

The model doesn't wreck your codebase in one move. It cleans it up. By session three the offensive logic is a comment, the packet capture is a stub, and the tests still pass. Two prompts to stop that.

tech-weapons

Flea Flicker NetFilter: Network Evasion Toolkit

Netfilter hooks for packet manipulation. Deep packet inspection evasion. Protocol impersonation. MAC address rotation. Red team toolkit for penetration testing on authorized networks. Evades IDS, confuses behavioral analysis, fragments payloads, hides in legitimate traffic.