1
00:00:00,390 --> 00:00:02,420
Hello everyone and welcome to the trailer.

2
00:00:02,440 --> 00:00:03,520
Of course.

3
00:00:03,660 --> 00:00:08,430
Now in the short video I will give you a small teaser as to what you can expect after you finish this

4
00:00:08,430 --> 00:00:09,380
course.

5
00:00:09,420 --> 00:00:13,620
It's always the best idea to show the students some of the things that you will be doing inside of the

6
00:00:13,620 --> 00:00:17,900
course and some of the things that they will learn and master at the end.

7
00:00:17,910 --> 00:00:22,760
So for this teaser I decided to show you the back door but not just any back door.

8
00:00:22,800 --> 00:00:27,810
I decided to show you a back door that we're going to run from two separate machines and we will establish

9
00:00:27,810 --> 00:00:30,080
two connections with target systems.

10
00:00:30,120 --> 00:00:35,850
We will be able to switch between both of these connections and execute comments on both of the systems.

11
00:00:35,850 --> 00:00:37,260
Let me show you what they mean.

12
00:00:37,290 --> 00:00:42,240
Now don't worry if you don't understand anything in this tutorial we're going to code all of this and

13
00:00:42,330 --> 00:00:44,830
I will explain it in the future projects.

14
00:00:45,060 --> 00:00:48,290
For now on just sit back and enjoy the teaser.

15
00:00:48,600 --> 00:00:51,990
Here we have the clinic's machine from this clinic's machine.

16
00:00:51,990 --> 00:00:57,000
I will use Python 3 to run a command and control center which is our program that we call it.

17
00:00:57,010 --> 00:01:02,220
I will run it right here and it will tell us that it is waiting for the incoming connections.

18
00:01:02,270 --> 00:01:08,040
OK so now if I go back to my Windows 10 machine which is this one I will have this picture that JPEG

19
00:01:08,070 --> 00:01:10,110
file which looks like a normal image.

20
00:01:10,260 --> 00:01:16,090
But if we execute it it will also open up the image and nothing else.

21
00:01:16,120 --> 00:01:20,170
If we see nothing else is being opened so everything looks normally.

22
00:01:20,260 --> 00:01:26,590
But this actual file in the background opened up our back door which is also a program that we are going

23
00:01:26,590 --> 00:01:27,470
to code.

24
00:01:27,790 --> 00:01:34,890
If you go to Cal Linux in just a few seconds we should see the connection from our Windows 10 machine.

25
00:01:35,770 --> 00:01:39,850
While it is connecting to our command control center oh here it is.

26
00:01:39,850 --> 00:01:44,640
So we got the connection from one night to the 160 that one that to which is the IP address of my Windows

27
00:01:44,640 --> 00:01:45,190
10.

28
00:01:45,490 --> 00:01:48,830
Let's also run the same file from my Windows 10 virtual machine.

29
00:01:48,910 --> 00:01:50,080
If I go right here.

30
00:01:50,240 --> 00:01:55,960
Double click on picture the JPEG click on run it will open up an image and nothing else but it will

31
00:01:55,960 --> 00:02:03,820
also run in the background of our backdoor let's go to our clinics and see whether we receive the connection.

32
00:02:03,930 --> 00:02:04,780
And here it is.

33
00:02:04,810 --> 00:02:06,780
Here is the connection from the windows 7 machine.

34
00:02:06,900 --> 00:02:11,190
So now we got two targets connected to our command control center.

35
00:02:11,190 --> 00:02:14,880
We can check all the sessions that we have by typing Target's comment.

36
00:02:15,150 --> 00:02:21,930
It will print out session 0 with this IP address and session one with this IP address right here in

37
00:02:21,930 --> 00:02:23,830
order to access any of these sessions.

38
00:02:23,850 --> 00:02:29,010
We can simply specify session one which is our windows 7 machine and type.

39
00:02:29,010 --> 00:02:29,790
Who am I.

40
00:02:29,790 --> 00:02:36,390
And execute all of the commands such as IP config such as there in order to check all the contents in

41
00:02:36,390 --> 00:02:37,710
that specific directory.

42
00:02:38,190 --> 00:02:46,050
So here it is if we want to we can also set the session to the background and clear the screen and we

43
00:02:46,050 --> 00:02:48,980
can enter session 0 which has been the stand machine.

44
00:02:49,950 --> 00:02:55,650
If I type my inside of understand machine I will see a different response then to Windows 7 which means

45
00:02:55,650 --> 00:02:57,780
we are on a different target.

46
00:02:57,780 --> 00:03:05,370
If I type IP config you will see a different IP address as well as there will give you a different output

47
00:03:05,610 --> 00:03:07,500
for that specific directory.

48
00:03:07,660 --> 00:03:08,380
Okay.

49
00:03:08,520 --> 00:03:12,900
We can use the clear command inside of a shell in order to clear the screen in case we have multiple

50
00:03:12,900 --> 00:03:14,430
commands.

51
00:03:14,430 --> 00:03:19,050
If I type the health command inside of a shell function it will give us all the available things that

52
00:03:19,050 --> 00:03:21,310
we can do with our target.

53
00:03:21,780 --> 00:03:27,540
We can change the directories using C D command we can upload files download files we can start our

54
00:03:27,540 --> 00:03:29,480
key logger using the key lock start.

55
00:03:29,480 --> 00:03:30,450
So let's give it a try.

56
00:03:30,630 --> 00:03:32,150
Let's start our key logger.

57
00:03:32,430 --> 00:03:38,340
Let's type Kellogg underscore start it will give us a message that the key logger has been started.

58
00:03:38,550 --> 00:03:44,800
So let's open up notepad and start typing something inside of it we understand notepad.

59
00:03:45,060 --> 00:03:45,990
See if I type.

60
00:03:45,990 --> 00:03:49,710
How is your day question mark.

61
00:03:49,710 --> 00:03:54,000
Can you see this message.

62
00:03:54,000 --> 00:03:59,760
And we go back to our clinic's machine and we take a look at the help comment kilo underscore dump will

63
00:03:59,760 --> 00:04:01,870
print the keystrokes the target input it.

64
00:04:01,890 --> 00:04:03,080
So let's try it out.

65
00:04:03,130 --> 00:04:06,070
Kellogg underscore dump press enter.

66
00:04:06,150 --> 00:04:07,640
And here we get notepad.

67
00:04:07,650 --> 00:04:08,840
How is your day.

68
00:04:08,850 --> 00:04:09,840
Question mark.

69
00:04:09,840 --> 00:04:10,860
Can you see this message.

70
00:04:11,040 --> 00:04:12,900
Another question mark.

71
00:04:12,900 --> 00:04:19,610
We can also stop the key logger by typing Kellogg underscore stop which will stop and self-destruct.

72
00:04:19,650 --> 00:04:26,850
The key logger file as it says right here if we want we can also create the persistence which will allow

73
00:04:26,850 --> 00:04:30,680
us to start our backdoor every time that the target restarts their machine.

74
00:04:31,200 --> 00:04:37,110
So they only need to start the first time and every other time our back door will start on its own.

75
00:04:37,170 --> 00:04:42,720
And another interesting command we can do which is not specified right here is the screenshot comment.

76
00:04:42,840 --> 00:04:49,410
So if we type screenshot and before I press enter let me lower this so we can see everything.

77
00:04:49,590 --> 00:04:55,140
If I type screenshot and press enter in just a few seconds we should have a screenshot of the target's

78
00:04:55,140 --> 00:04:57,710
desktop saved on our calorie intake machine.

79
00:04:58,170 --> 00:05:00,430
So let's see whether we saved it correctly.

80
00:05:00,450 --> 00:05:07,700
If we go to the file here is the screenshot saved under the name screenshot 0 and here it is.

81
00:05:07,770 --> 00:05:12,280
It is the exact same image that we saw before we pressed enter on the screenshot command.

82
00:05:12,360 --> 00:05:17,940
So we successfully have the screenshot option in order to capture the target's desktop and that is just

83
00:05:17,940 --> 00:05:20,100
some of the options that power backdoor can do.

84
00:05:20,490 --> 00:05:24,260
And this vector is just one of the programs that we're going to go throughout this course.

85
00:05:25,850 --> 00:05:27,350
So this is just a small teaser.

86
00:05:27,380 --> 00:05:29,470
I showed you what we are going to do.

87
00:05:29,540 --> 00:05:34,940
This is only a small portion of it or just a small portion or whatever backdoor can do.

88
00:05:34,940 --> 00:05:39,810
And we're going to see how we can code all of this inside of the future projects.

89
00:05:39,830 --> 00:05:43,760
So thank you for watching and I will see you in the future lectures by.