1
00:00:00,270 --> 00:00:05,420
Hello everybody and welcome to our third project which is going to be the SSA to brute force.

2
00:00:05,940 --> 00:00:10,860
So from now on we managed to scan the open ports to determine which ones were closed which ones were

3
00:00:10,950 --> 00:00:11,610
open.

4
00:00:11,610 --> 00:00:15,180
We also managed to scan for the software's running on those open ports.

5
00:00:15,180 --> 00:00:20,460
And now let's imagine an example that we didn't really manage to find any more honorable software running

6
00:00:20,460 --> 00:00:22,200
on those open ports.

7
00:00:22,200 --> 00:00:27,690
Well now we have to turn to different approaches such as for example trying to gain access to some of

8
00:00:27,690 --> 00:00:30,810
those services running all those open ports.

9
00:00:30,990 --> 00:00:35,580
And we're going to take a look at the first one which is going to be the SSA brute force.

10
00:00:35,580 --> 00:00:36,990
Now what is the next stage.

11
00:00:37,800 --> 00:00:43,770
Well as such is a way that you can communicate and control the target machine over the Internet just

12
00:00:43,770 --> 00:00:47,630
by performing the such connection to that specific machine.

13
00:00:48,000 --> 00:00:53,280
And of course it is a secure protocol therefore we will need the user name and password in order to

14
00:00:53,370 --> 00:00:57,760
gain access to that specific machine over the exit protocol.

15
00:00:57,780 --> 00:01:02,530
Now for the purposes of this project we're going to use a virtual machine which is called meant to split

16
00:01:02,530 --> 00:01:03,370
the bill.

17
00:01:03,390 --> 00:01:06,230
Now I downloaded it and already installed it.

18
00:01:06,270 --> 00:01:07,440
Here it is.

19
00:01:07,500 --> 00:01:10,460
And in case you don't know how to do that.

20
00:01:10,920 --> 00:01:14,950
I created a bonus video which is going to be at the last section of this course.

21
00:01:15,000 --> 00:01:20,690
And there you should see these bonus video which simply just shows you how to download and install met

22
00:01:20,700 --> 00:01:21,970
exploitable.

23
00:01:21,990 --> 00:01:26,760
Now I will assume that you already have it and that you watch that video so I will simply just start

24
00:01:26,760 --> 00:01:27,390
this machine

25
00:01:30,250 --> 00:01:34,790
and first of all we're going to take a look at how we can simply just connect over the asset using our

26
00:01:34,790 --> 00:01:41,540
terminal and then we're going to try to implement all of that into our asset brute force program.

27
00:01:41,540 --> 00:01:43,670
Now there will be two versions of this program.

28
00:01:43,670 --> 00:01:49,160
One will be a regular as such brute force and the other one will be the message brute force or with

29
00:01:49,250 --> 00:01:50,780
threading library.

30
00:01:50,780 --> 00:01:56,120
Now the reason why we do that is because if you the threading library in order to perform brute forcing

31
00:01:56,330 --> 00:02:03,120
it will automatically be faster than simply just using one thread in order to perform the brute force.

32
00:02:03,320 --> 00:02:06,500
But let's not bother ourselves with that right now.

33
00:02:06,500 --> 00:02:09,860
Let's see how we can connect to the SSA choosing our terminal.

34
00:02:09,860 --> 00:02:12,650
So our machine is up and running.

35
00:02:12,650 --> 00:02:19,790
We log in using the MSF admin as a user name and MSF admin as a password.

36
00:02:19,790 --> 00:02:20,660
And here it is.

37
00:02:20,870 --> 00:02:22,730
Everything works correctly.

38
00:02:22,730 --> 00:02:28,460
If I type I have config I will check my I.P. address which is going to be 182 that 168 that 1 to 3.

39
00:02:29,000 --> 00:02:31,880
So I need to remember that open up my terminal.

40
00:02:31,880 --> 00:02:39,200
Let me enlarge all of this in and now try to connect to that IP address using a search protocol.

41
00:02:39,200 --> 00:02:40,410
So as such.

42
00:02:40,580 --> 00:02:44,960
And then when I do that 168 at 1 to 3 press your enter.

43
00:02:44,960 --> 00:02:50,150
And here are some of the stuff that happens once you try to connect over a switch the intensity of the

44
00:02:50,150 --> 00:02:54,070
host can be established RSA key fingerprint is.

45
00:02:54,070 --> 00:02:55,130
And then this one.

46
00:02:55,130 --> 00:02:57,500
Are you sure you want to continue connecting.

47
00:02:57,560 --> 00:02:58,890
We want to type here.

48
00:02:59,000 --> 00:03:01,130
Yes.

49
00:03:01,160 --> 00:03:05,870
And it will tell us that it permanently added the RSA to the list of known hosts.

50
00:03:05,870 --> 00:03:11,010
Now this is just some regular stuff that happens once you try to actually connect to the stage and we're

51
00:03:11,030 --> 00:03:14,440
going to have to implement some of these things in our program as well.

52
00:03:14,450 --> 00:03:20,600
So keep in mind for that right now and it will ask us to connect to the root account which we didn't

53
00:03:20,600 --> 00:03:21,080
really want.

54
00:03:21,070 --> 00:03:25,310
So I'm just going to Greek exit right here.

55
00:03:25,700 --> 00:03:32,420
I will control C and then I will SSA MSF admin and then add one night to that 168 that one of three

56
00:03:34,810 --> 00:03:35,270
okay.

57
00:03:35,280 --> 00:03:40,050
And the password will be MSF admin if I'm not mistaken and here it is.

58
00:03:40,050 --> 00:03:45,390
We successfully managed to connect to the MSF admin account on the mike despite the virtual machine

59
00:03:45,660 --> 00:03:48,210
using the SSA from our terminal.

60
00:03:48,690 --> 00:03:49,410
All right.

61
00:03:49,440 --> 00:03:55,230
And now if I type five config in this terminal you will see that we get the exact same IP address as

62
00:03:55,230 --> 00:03:59,010
we got when I typed I have config inside government disputable.

63
00:03:59,010 --> 00:04:04,380
So we've basically got something like a reverse shell running and we can execute any commands we want

64
00:04:04,770 --> 00:04:08,010
and we can do anything on to governments selectable machine.

65
00:04:08,110 --> 00:04:13,470
Let me exodus since we are not really interested in doing this over terminal and let's start the new

66
00:04:13,470 --> 00:04:19,890
project on as such brute force or now of course I showed you an example.

67
00:04:20,090 --> 00:04:21,880
Let me just open up my pie chart.

68
00:04:21,900 --> 00:04:28,250
Now of course I showed you an example in which we actually know the password to the target and in our

69
00:04:28,250 --> 00:04:33,230
program we want to make sure that we do not know the password and we will try multiple passwords until

70
00:04:33,320 --> 00:04:35,310
we actually find the correct one.

71
00:04:35,450 --> 00:04:35,810
Okay.

72
00:04:36,440 --> 00:04:42,200
And then once we find the correct one we will print it to the screen found password and we will print

73
00:04:42,200 --> 00:04:49,580
the username and password for that specific account now by default we will probably open up our previous

74
00:04:49,580 --> 00:04:52,240
project which is going to be deep vulnerability scanner.

75
00:04:52,240 --> 00:04:53,300
Yeah here it is.

76
00:04:53,300 --> 00:04:59,530
But we want to as usual create a new project which we will call the stage brute force.

77
00:04:59,870 --> 00:05:02,060
So let's wait for all of this to load up.

78
00:05:02,940 --> 00:05:03,300
Okay.

79
00:05:03,320 --> 00:05:04,460
So it's loaded up.

80
00:05:04,460 --> 00:05:07,750
Let's go to the file neo project

81
00:05:10,620 --> 00:05:16,030
let's name the project to be as a sage to brute force we can create.

82
00:05:16,260 --> 00:05:19,430
We want to create an open the new project inside of this window.

83
00:05:23,720 --> 00:05:29,590
Let's wait for it to create a fertile environment for us in all the dependencies and now we can simply

84
00:05:29,590 --> 00:05:36,900
just create our python file by right clicking new python file and let's call it as the sage brought

85
00:05:36,960 --> 00:05:39,480
dot P Y.

86
00:05:39,610 --> 00:05:45,460
Easy to remember so all we are going to do in this video before we end it is we're going to import the

87
00:05:45,460 --> 00:05:49,760
needed libraries for this program to work.

88
00:05:49,790 --> 00:05:55,550
Now let's type the import command and the first library and the most important library for the sexual

89
00:05:55,550 --> 00:05:59,210
project is going to be the palm eco library.

90
00:05:59,320 --> 00:06:04,910
We will use this library in order to automate the process of connecting to our sage client.

91
00:06:05,000 --> 00:06:10,670
So this library has already premade functions that we can use in order to make this process shorter.

92
00:06:10,670 --> 00:06:13,760
All right then we're going to need this this library.

93
00:06:13,970 --> 00:06:22,220
The OS library the socket library of course every time we actually try to perform some some task over

94
00:06:22,220 --> 00:06:25,380
the Internet we were most likely use socket library.

95
00:06:25,520 --> 00:06:30,150
And we're also going to use the term colored library.

96
00:06:30,220 --> 00:06:34,960
Now you will notice that out of these five libraries two are actually red underlined which means we

97
00:06:34,960 --> 00:06:38,220
do not have them installed inside our virtual environment.

98
00:06:38,260 --> 00:06:41,130
So let's install them we already know how to do that.

99
00:06:41,380 --> 00:06:45,480
We will open up our terminal inside of a pie chart and type 3 install.

100
00:06:45,580 --> 00:06:51,190
And first let's go with it palm eco since parameter is essential for this program to work while as term

101
00:06:51,190 --> 00:06:57,450
color we don't really need but it will make our program look nicer and we can see it successfully installed

102
00:06:57,610 --> 00:06:58,150
Emiko.

103
00:06:58,150 --> 00:07:01,690
And now let's be three install turn color.

104
00:07:02,270 --> 00:07:02,800
All right.

105
00:07:02,830 --> 00:07:06,880
So patrons return color and this will finish in just a second.

106
00:07:06,880 --> 00:07:08,380
Here it is.

107
00:07:08,380 --> 00:07:14,920
If I exit this terminal and go back to my program for some reason this is still red underline not really

108
00:07:14,920 --> 00:07:15,390
sure why.

109
00:07:15,390 --> 00:07:17,070
Let's start typing something.

110
00:07:17,080 --> 00:07:18,720
Maybe it will go away.

111
00:07:19,000 --> 00:07:19,770
Print.

112
00:07:20,890 --> 00:07:21,130
Yeah.

113
00:07:21,130 --> 00:07:22,120
It went away.

114
00:07:22,120 --> 00:07:22,910
Great.

115
00:07:22,930 --> 00:07:29,560
So everything is imported successfully and in the next video we can start off with our brute force her

116
00:07:30,250 --> 00:07:32,950
code by suing the next lecture and take her by.