1 00:00:00,210 --> 00:00:06,160 Hello, everybody, welcome to my advanced ethical hacking, networking, penetration testing, costing. 2 00:00:16,930 --> 00:00:24,330 OK, so this application 15, as we see that the difficulty is hard, but it's not that hard, guys, 3 00:00:24,340 --> 00:00:25,660 it's it's very easy. 4 00:00:25,990 --> 00:00:27,460 So let's jump into it. 5 00:00:27,760 --> 00:00:34,530 Let's go to a Windows machine here like this, and then we're going to open it with authority figures. 6 00:00:34,660 --> 00:00:43,210 So we like league and we will operate with administrative privilege and started posting for us. 7 00:00:43,270 --> 00:00:45,180 You don't want that big screen. 8 00:00:45,190 --> 00:00:45,970 You have to. 9 00:00:47,100 --> 00:00:48,840 For Miccio, self-command. 10 00:00:59,870 --> 00:01:01,720 And let's put it down. 11 00:01:02,520 --> 00:01:03,490 OK, so. 12 00:01:05,060 --> 00:01:11,390 Let's open the application application 15 on the stop this one. 13 00:01:13,710 --> 00:01:16,800 OK, but before winning it, let me first. 14 00:01:17,980 --> 00:01:23,160 Come right over here and try to open it to see how it looks like. 15 00:01:23,170 --> 00:01:32,860 OK, so we put into it and one application or KIA password recovery tool, your Toyota has a separate 16 00:01:32,860 --> 00:01:35,500 since one nine nine nine nine. 17 00:01:36,490 --> 00:01:42,960 OK, and this button is not working. 18 00:01:43,570 --> 00:01:50,710 So what we can see that we have a kind of software application that we have to crack at or to bypass 19 00:01:51,670 --> 00:01:52,720 the security system. 20 00:01:53,200 --> 00:01:57,700 So we see that the license is already expired. 21 00:01:58,120 --> 00:02:00,280 Since this this date. 22 00:02:00,970 --> 00:02:09,700 What we can do, we can try to find this device inside the code and then we can try to modify that text 23 00:02:09,700 --> 00:02:11,410 or that Unicode takes. 24 00:02:11,770 --> 00:02:18,010 And then we will put it, let's say, twenty, twenty or twenty one or nine one nine. 25 00:02:18,340 --> 00:02:22,600 But something which is more done this. 26 00:02:23,660 --> 00:02:32,990 OK, so all the ways what you can do, you can just take the system by making a change of your date. 27 00:02:33,010 --> 00:02:35,270 So now we have this date. 28 00:02:35,290 --> 00:02:36,480 OK, so we're going to change it. 29 00:02:37,720 --> 00:02:48,700 So change date and time and then let's go back to this date or 999 and let's click here to get to the 30 00:02:48,700 --> 00:02:51,560 total amount of. 31 00:02:53,300 --> 00:02:53,710 OK. 32 00:02:55,070 --> 00:02:55,940 So which was it? 33 00:02:56,690 --> 00:03:02,900 OK, OK, we don't need it anymore, so now we have the date. 34 00:03:02,900 --> 00:03:06,650 Is this date one nine nine nine. 35 00:03:06,980 --> 00:03:09,060 So let's try again to open it. 36 00:03:09,090 --> 00:03:09,920 All right. 37 00:03:09,940 --> 00:03:10,460 Over here. 38 00:03:13,190 --> 00:03:19,910 We see now we already have something that's interesting and we can click on about if we want. 39 00:03:20,090 --> 00:03:21,800 Let's try to click and. 40 00:03:23,620 --> 00:03:24,050 Some. 41 00:03:24,780 --> 00:03:31,300 The program is called Barcelona Corridor is we to a copy of this program and you need to register and 42 00:03:31,300 --> 00:03:31,710 deliver. 43 00:03:32,030 --> 00:03:35,370 OK, so let's try this one. 44 00:03:35,380 --> 00:03:37,300 Let's try to keep Whitehill. 45 00:03:38,700 --> 00:03:41,920 And that's nothing. 46 00:03:42,290 --> 00:03:52,530 Okay, so let me try to pull something like anything and again, nothing, that means it wants us to 47 00:03:52,530 --> 00:03:55,780 have a kind of password or much strings. 48 00:03:56,370 --> 00:03:59,210 This is if we try, please register on me, OK? 49 00:03:59,740 --> 00:04:07,320 OK, so let's come here and try to analyze the good guys it. 50 00:04:07,380 --> 00:04:09,730 Let me make it bigger for you. 51 00:04:11,310 --> 00:04:11,730 So. 52 00:04:12,940 --> 00:04:15,090 Good, good. 53 00:04:15,370 --> 00:04:19,360 And then now I'm going to put it back where it was. 54 00:04:20,570 --> 00:04:24,530 OK, so good luck, ladies. 55 00:04:25,590 --> 00:04:26,060 OK. 56 00:04:29,250 --> 00:04:38,850 What we have to do now that we come here, so we first have to start the application so that we can 57 00:04:38,850 --> 00:04:40,210 enter the entry point. 58 00:04:40,230 --> 00:04:45,860 OK, so we started what it this we didn't know what we would do is look. 59 00:04:46,320 --> 00:04:47,370 Yes, I want. 60 00:04:49,480 --> 00:04:57,850 OK, so and now this is not a model anymore, so this is a B 15, therefore we can try to try to find 61 00:04:57,850 --> 00:04:59,090 some text inside. 62 00:04:59,800 --> 00:05:10,000 So, as usual, what difference it takes and why here, since we since we have already changed our date. 63 00:05:10,330 --> 00:05:14,720 So we don't need to try it out anymore so we can just try. 64 00:05:14,770 --> 00:05:22,390 Let's see the degree to which is do we disturb and. 65 00:05:23,410 --> 00:05:27,250 Search for days and then not case sensitive. 66 00:05:27,260 --> 00:05:32,040 We don't need to use the entire scope again. 67 00:05:33,550 --> 00:05:40,720 So it's a decision that we need to search for next and this one search for next. 68 00:05:43,670 --> 00:05:48,200 Or control, well, you know, just to be. 69 00:05:50,510 --> 00:05:52,320 Let me try for something more. 70 00:05:54,330 --> 00:05:56,590 Get me sure what this is. 71 00:05:56,830 --> 00:05:58,080 This was good. 72 00:05:58,440 --> 00:06:02,310 Well, we just thought it would let me see if we can find some other things. 73 00:06:03,450 --> 00:06:05,400 Such a noose or just control. 74 00:06:06,450 --> 00:06:08,800 Just control, Al. 75 00:06:09,720 --> 00:06:16,270 Okay, so this is the unico that we we are looking for again, when we are here, you just have to wonder 76 00:06:16,590 --> 00:06:18,610 where it is highlighted. 77 00:06:18,630 --> 00:06:24,270 OK, so we're into it and then we automatically jump into this code. 78 00:06:25,110 --> 00:06:36,480 Now what we can see that in the application, the time Mudder's, therefore it might have some comparison 79 00:06:36,480 --> 00:06:46,350 or some string, but because if the application is able to understand or did in on a computer, that 80 00:06:46,350 --> 00:06:54,090 means on any device, if you own this application, you will get something new because it it is configured 81 00:06:54,090 --> 00:06:57,500 with the device date system. 82 00:06:57,810 --> 00:07:02,910 Therefore, we have to manipulate the date or the comparison to look for this. 83 00:07:04,660 --> 00:07:16,900 So let's try to find for some comparison functions or any kind of operation that can go up, up, up, 84 00:07:16,900 --> 00:07:32,250 up, up, up, up, if you jerk move into a resort and tourist thing and get rid of it, OK? 85 00:07:32,280 --> 00:07:35,020 OK, what is this? 86 00:07:36,250 --> 00:07:42,810 Who is old, who is always old and then with strings. 87 00:07:42,820 --> 00:07:50,930 And if we struan's OK with you, if we look we see something is treene compare CMB. 88 00:07:51,490 --> 00:08:01,060 Now let's try to find a way if we can bypass it because we don't want this and this are going to compare 89 00:08:01,060 --> 00:08:02,740 anything with or modifies. 90 00:08:03,880 --> 00:08:13,470 So we can try to put a point right over here by pressing control, maybe seeing if F2 or just way click 91 00:08:13,510 --> 00:08:17,650 and go on went and right over here. 92 00:08:18,100 --> 00:08:23,710 So now we're going to try to win this application, guys, so we don't know how it how it will look 93 00:08:23,710 --> 00:08:24,310 like. 94 00:08:24,400 --> 00:08:27,910 But we we want to own something. 95 00:08:27,910 --> 00:08:37,180 And for sure, we get to control to monitor how or it will be changed because since we put a liquid 96 00:08:37,180 --> 00:08:41,110 wire over here, when we want the application, it will jump automatically here. 97 00:08:41,530 --> 00:08:51,520 Therefore, when we start jumping by pushing it, stuff like that, and then this explosion will be 98 00:08:51,520 --> 00:08:52,390 changed. 99 00:08:52,690 --> 00:08:54,220 OK, so let's see. 100 00:08:54,230 --> 00:08:57,910 So we just click here. 101 00:08:58,660 --> 00:09:01,770 OK, now we welcome you here to this application. 102 00:09:01,780 --> 00:09:07,570 Let me put it way down below so that you can see the register in my stack, OK? 103 00:09:07,750 --> 00:09:12,580 Stack is the one which is right below the zip code. 104 00:09:12,580 --> 00:09:15,220 OK, so we give unregister. 105 00:09:15,260 --> 00:09:17,050 Now let me die. 106 00:09:17,050 --> 00:09:20,920 I say blah blah blah blah blah blah, blah. 107 00:09:21,110 --> 00:09:21,640 OK. 108 00:09:22,180 --> 00:09:24,070 Clicking on register. 109 00:09:25,780 --> 00:09:29,890 The good or the highlight line or the highlight? 110 00:09:31,330 --> 00:09:39,760 Exactly as we said earlier in this week point and then automatically it pushes, it pushes is treene 111 00:09:40,180 --> 00:09:41,830 that matters to us. 112 00:09:42,130 --> 00:09:44,040 But we don't know what it is yet. 113 00:09:44,050 --> 00:09:49,650 So what we can do, we can try to is if aid or everynight again, would it. 114 00:09:49,800 --> 00:09:57,880 If you put many point, therefore it will go step by step by step by step by percent of aid. 115 00:09:58,150 --> 00:10:05,080 But since we have only one viewpoint on the comparison because we don't want anything to compare what 116 00:10:05,080 --> 00:10:07,390 we have put into the application. 117 00:10:07,630 --> 00:10:11,470 So that's why we put a bullet point right there so that it doesn't compare anything. 118 00:10:11,740 --> 00:10:19,330 OK, so let me try with if a now you see it automatically goes to the fifth. 119 00:10:19,670 --> 00:10:20,920 Let me try again. 120 00:10:20,920 --> 00:10:21,670 If aid. 121 00:10:21,670 --> 00:10:23,410 If aid, if agency. 122 00:10:25,710 --> 00:10:27,380 Nothing is important. 123 00:10:28,350 --> 00:10:38,820 Now we want the comparison, please let me we on the application of it so that I assure you what we 124 00:10:38,820 --> 00:10:41,430 can do with it is yes. 125 00:10:41,580 --> 00:10:50,700 And then why do I hear now we get into the wind so we can do the same thing again. 126 00:10:51,120 --> 00:10:58,850 So for politicians to extremes and now we can type what would you do it as we tried before. 127 00:10:58,860 --> 00:11:01,120 But let me try something different. 128 00:11:02,370 --> 00:11:04,310 You are you are you. 129 00:11:04,360 --> 00:11:07,050 And your story is nonsensitive. 130 00:11:08,850 --> 00:11:10,080 So now you can just listen to it. 131 00:11:10,560 --> 00:11:16,580 OK, so now we're going to come back here or hopefully we will find a book went. 132 00:11:16,620 --> 00:11:19,030 It should be there since we just started. 133 00:11:19,050 --> 00:11:19,800 OK, cool. 134 00:11:20,250 --> 00:11:21,570 So we are here. 135 00:11:21,810 --> 00:11:26,280 OK, so let me one day or night again on the application. 136 00:11:27,630 --> 00:11:37,240 So let's come back here and try to do the same thing, guys, get it, bla bla bla bla bla bla bla bla 137 00:11:38,250 --> 00:11:39,480 Gael Register. 138 00:11:40,380 --> 00:11:44,820 So now we have things here. 139 00:11:45,780 --> 00:11:54,120 We're going to try to wait it down, OK, weighted down and we will try to enter it in the application. 140 00:11:54,780 --> 00:11:59,210 So let me let me go. 141 00:11:59,280 --> 00:12:09,240 We could be talking about OK, so let me come back here and I can this is from previous stuff so I can 142 00:12:09,240 --> 00:12:10,280 just copy and paste. 143 00:12:10,710 --> 00:12:13,020 OK, so the code is this one. 144 00:12:14,640 --> 00:12:17,960 OK, now I'm going to try to come right here. 145 00:12:19,480 --> 00:12:21,090 Oh we can just. 146 00:12:22,540 --> 00:12:27,880 So can cancel the application or should they need to cancel it? 147 00:12:27,910 --> 00:12:29,530 So let me try. 148 00:12:29,800 --> 00:12:31,150 Let me try. 149 00:12:33,870 --> 00:12:36,100 OK, we will win, but not for now. 150 00:12:36,120 --> 00:12:38,430 Let me jump over here first. 151 00:12:39,040 --> 00:12:40,970 So enjoy the old. 152 00:12:41,220 --> 00:12:43,230 We will see if it will match. 153 00:12:44,100 --> 00:12:49,340 So the code was what it was, five and four, something like this. 154 00:12:49,350 --> 00:12:54,840 OK, so we can just go be. 155 00:12:56,360 --> 00:13:03,590 And controversy in here going to the V and then try to register. 156 00:13:05,950 --> 00:13:13,990 As you can see, as you can see, you are destroyed now, you can use password recovery tool before 157 00:13:14,200 --> 00:13:18,010 this button was uncrackable. 158 00:13:18,040 --> 00:13:21,430 Now it looks like something which is clickable. 159 00:13:21,850 --> 00:13:25,740 OK, so this is like a common sense case. 160 00:13:25,750 --> 00:13:32,280 So because it compresses or stuff with its algorithm and then we don't want that. 161 00:13:32,290 --> 00:13:39,880 So we just put the in so that it jumps into it so that we can see how the codes would works, what it 162 00:13:39,880 --> 00:13:40,450 pushes. 163 00:13:40,870 --> 00:13:43,090 So now let me click on. 164 00:13:43,090 --> 00:13:48,310 OK, so it says that I can use a recovery, try to click now. 165 00:13:48,310 --> 00:13:49,030 It's clickable. 166 00:13:49,300 --> 00:13:52,090 OK, so choose password to recover. 167 00:13:52,450 --> 00:13:55,120 Now you're going to try to click on it is. 168 00:13:57,070 --> 00:14:04,660 Challenge, password, let me put it a little bit like this for you, so now we can choose it and we 169 00:14:04,810 --> 00:14:05,530 for a password. 170 00:14:06,710 --> 00:14:10,100 Oh, no, I certainly see. 171 00:14:11,870 --> 00:14:14,630 I think you learned something today. 172 00:14:14,660 --> 00:14:15,360 Good job. 173 00:14:15,390 --> 00:14:18,440 Oh, nice message, peace, OK. 174 00:14:18,470 --> 00:14:19,280 Thank you, sir. 175 00:14:20,270 --> 00:14:22,520 OK, OK, we see something. 176 00:14:22,520 --> 00:14:26,230 Kirksey and Alchemist, a chemist. 177 00:14:26,690 --> 00:14:29,690 So chemists, all leaders. 178 00:14:30,080 --> 00:14:34,220 Let me go back to her here on Kaline machine. 179 00:14:34,260 --> 00:14:39,020 And it was here and you certainly time here. 180 00:14:40,060 --> 00:14:45,500 A chemist in control, a conjoint X. 181 00:14:46,070 --> 00:14:49,460 Let me come right here and bust. 182 00:14:51,050 --> 00:15:00,710 Here, so before I can just try to push it back so that I can see everything OK and then submit it, 183 00:15:00,710 --> 00:15:06,450 see Congress 40 point as it goes, so, so far, so good. 184 00:15:06,740 --> 00:15:12,490 This is exactly what you can try to to hockey system. 185 00:15:12,500 --> 00:15:19,490 Sometimes you got to have your common sense because when it compares stuff and then we will not want 186 00:15:19,490 --> 00:15:19,650 it. 187 00:15:19,670 --> 00:15:22,820 So therefore, you have to always be mind. 188 00:15:23,240 --> 00:15:29,360 I'm going to try to change this job or I'm going to try to find to change some companies and I'm going 189 00:15:29,360 --> 00:15:31,790 to try to to manipulate the system. 190 00:15:32,000 --> 00:15:39,810 Therefore, you already have a clue about what you can do and then according to the difficulty of that 191 00:15:39,830 --> 00:15:40,390 application. 192 00:15:40,400 --> 00:15:41,290 So you will proceed. 193 00:15:41,670 --> 00:15:42,260 OK, guys. 194 00:15:42,440 --> 00:15:46,610 So now just come back and we will go for the next one. 195 00:15:46,610 --> 00:15:47,450 This sixty one. 196 00:15:47,450 --> 00:15:49,190 So difficult. 197 00:15:49,340 --> 00:15:50,570 It's unknown. 198 00:15:50,570 --> 00:15:51,080 Okay. 199 00:15:51,110 --> 00:15:59,510 So anyways, so I downloaded an extra key to your desire to folders and we will see you there. 200 00:15:59,930 --> 00:16:00,380 Thank you.