1 00:00:00,210 --> 00:00:06,160 Hello, everybody, welcome to my advanced ethical hacking, networking, penetration testing, costing. 2 00:00:16,840 --> 00:00:25,570 OK, welcome for the application cooking you live in now we're to we're going to just use Ida here or 3 00:00:25,570 --> 00:00:30,400 if you want, we can go to your Windows up application, can use your IDA there, and or you can use 4 00:00:30,520 --> 00:00:34,600 only Tebogo or X 40 to debugger. 5 00:00:34,720 --> 00:00:38,770 So it doesn't matter if you can work with them. 6 00:00:38,780 --> 00:00:39,670 So that's perfect. 7 00:00:40,070 --> 00:00:43,470 OK, so let me minimize this. 8 00:00:44,110 --> 00:00:46,990 We don't want this anymore, so we can just. 9 00:00:48,610 --> 00:00:52,920 Cancel everything, yeah, OK, cancel everything. 10 00:00:54,660 --> 00:01:01,890 OK, so now so before starting application 11, we can we can cancel everything because you don't need 11 00:01:01,890 --> 00:01:02,820 them anymore, so. 12 00:01:02,920 --> 00:01:03,270 Right. 13 00:01:12,210 --> 00:01:21,800 OK, so let's try to open the applications to see what it looks like on this, so it is on your desktop. 14 00:01:22,650 --> 00:01:23,820 OK, so we click. 15 00:01:26,320 --> 00:01:27,400 And we wanted. 16 00:01:29,500 --> 00:01:39,070 Okay, as you can see, please enter the password check password, I give up my basic symbol. 17 00:01:39,130 --> 00:01:40,820 OK, so let me check. 18 00:01:40,820 --> 00:01:42,510 I gave to see nothing. 19 00:01:43,240 --> 00:01:46,010 OK, so let me try it again. 20 00:01:48,300 --> 00:01:48,880 All right. 21 00:01:48,980 --> 00:01:53,050 Let me put something like anything above the. 22 00:01:54,050 --> 00:01:58,310 And take Bushwood, so you enjoy it and then the Bushwood. 23 00:01:58,650 --> 00:02:06,110 OK, so remember this, this string's guys, we we got to find it in the code, so. 24 00:02:07,390 --> 00:02:16,770 We will consult with them and then here we are going to try to open it using ADA so we can judge it 25 00:02:17,430 --> 00:02:17,940 ADA. 26 00:02:19,810 --> 00:02:20,630 We put it here. 27 00:02:20,770 --> 00:02:21,300 OK. 28 00:02:24,290 --> 00:02:27,370 OK, well, no, no, no, I don't want you. 29 00:02:28,700 --> 00:02:30,770 Thank you and thank you for asking. 30 00:02:31,040 --> 00:02:31,550 All right. 31 00:02:31,730 --> 00:02:35,720 So let let let us enlarge. 32 00:02:37,340 --> 00:02:41,200 It's a little bit and coming here as well. 33 00:02:43,210 --> 00:02:45,990 OK, I think it's enough, it's enough good. 34 00:02:46,900 --> 00:02:54,430 Now, as you can see, let me put it a little bit like this, like this for you, and then I will I 35 00:02:54,460 --> 00:02:57,060 would like to put it back here. 36 00:02:57,070 --> 00:02:59,920 We have a lot of functions, names. 37 00:03:00,340 --> 00:03:04,750 Therefore, we don't know exactly where this thing takes that. 38 00:03:04,750 --> 00:03:05,980 We're going to try to find out. 39 00:03:05,980 --> 00:03:11,080 I mean, that is a message we're going to we don't know where it is located. 40 00:03:11,080 --> 00:03:12,180 So we're going to find it out. 41 00:03:12,430 --> 00:03:21,790 You can just trying by pressing in on each of them to see the codes and so on and so on and drag it 42 00:03:22,060 --> 00:03:25,920 to the end to see the return value and and so on. 43 00:03:25,930 --> 00:03:33,880 But here, as we can see, so we can move this this line here or here so that we can put everything 44 00:03:34,330 --> 00:03:35,270 into function. 45 00:03:35,590 --> 00:03:39,970 So again, I try to go down, down, down or something interesting. 46 00:03:40,330 --> 00:03:42,790 Take a password, get text password. 47 00:03:42,800 --> 00:03:46,900 So let's let us try to see for nothing. 48 00:03:46,900 --> 00:03:48,250 Is there nothing? 49 00:03:49,540 --> 00:03:54,740 So it's not that interesting, therefore, therefore, OK, no strings. 50 00:03:55,570 --> 00:03:57,330 Let's try to save some things. 51 00:03:57,880 --> 00:04:06,140 There is nothing much, OK, so you can try to to to look at each of them guys. 52 00:04:06,580 --> 00:04:10,830 Let me take the last one they put on my OK. 53 00:04:10,870 --> 00:04:14,450 This might have a lot of string text oil. 54 00:04:14,470 --> 00:04:22,420 So let's let's go down below and check, check, check the functions, how it looks like. 55 00:04:26,010 --> 00:04:28,620 We need to find a message. 56 00:04:30,830 --> 00:04:31,160 Think. 57 00:04:36,940 --> 00:04:39,250 Again, here it is divided into two parts. 58 00:04:39,280 --> 00:04:44,690 So, as usual, annual notes and a congratulations note. 59 00:04:45,010 --> 00:04:47,900 So let me go that way. 60 00:04:49,120 --> 00:04:56,650 We see that we got that one message which says that so you into it and enjoyed password. 61 00:04:56,700 --> 00:04:59,340 So let me now put this back for you. 62 00:05:01,800 --> 00:05:03,710 Okay, a little bit more. 63 00:05:03,890 --> 00:05:05,760 Yep, so that's enough. 64 00:05:06,500 --> 00:05:12,310 Now, what we can do, we can try to see what is written in the red line. 65 00:05:13,460 --> 00:05:16,320 So let me come here. 66 00:05:16,670 --> 00:05:17,810 Congratulations. 67 00:05:17,840 --> 00:05:19,640 The password for H.B. 68 00:05:19,640 --> 00:05:20,840 It is. 69 00:05:20,840 --> 00:05:21,670 And we don't know. 70 00:05:22,070 --> 00:05:31,040 So we're going to find a way to to make the code instead of going to the green. 71 00:05:32,630 --> 00:05:39,950 To the Green Line, it was good to Despard, the awful as usual as we have seen in applications in previous 72 00:05:39,950 --> 00:05:48,500 application, it it was just sometimes immoral to tune up that point so that we jump into the opposing 73 00:05:48,500 --> 00:05:48,800 lane. 74 00:05:50,140 --> 00:05:58,390 Therefore, here, it's an order stuff, what is within the ECB and e dot you and s what? 75 00:05:58,390 --> 00:05:59,740 It's mean that so. 76 00:06:00,940 --> 00:06:06,640 It is usually like, come on, come on, intermediate language, if you don't know what it is, you 77 00:06:06,640 --> 00:06:13,270 can try to Google it or to go to Wikipedia Stockbridge to try to find out what it stands for. 78 00:06:13,810 --> 00:06:15,730 It is it branches. 79 00:06:16,120 --> 00:06:21,930 It branches the cord to the target, if it is called. 80 00:06:23,790 --> 00:06:33,210 And then or if it is or do it, this is what it is all ordered and went to the target if equal and short, 81 00:06:33,720 --> 00:06:34,470 short form. 82 00:06:34,920 --> 00:06:42,550 OK, so before changing it, you got you got OK, first thing for you or you already have enough of 83 00:06:42,570 --> 00:06:44,120 you how you can make it. 84 00:06:44,520 --> 00:06:47,730 You get to change this line to its opposite. 85 00:06:48,000 --> 00:06:57,820 So its opposite is back that this I mean back is not to the target because this is bunji not to deter. 86 00:06:57,840 --> 00:07:04,630 If this is when to not target you have to change it to went to the target and or do it instead of unordered. 87 00:07:04,770 --> 00:07:07,080 OK, so let's check it first. 88 00:07:07,260 --> 00:07:10,920 You can go on Google and copy this line. 89 00:07:11,250 --> 00:07:14,100 I mean, from here you copy it. 90 00:07:14,110 --> 00:07:19,410 That is, of course, you take all and then you pass it on Google to see information if you don't know 91 00:07:19,410 --> 00:07:21,150 where it is coming into it. 92 00:07:21,480 --> 00:07:25,680 So let us briefly talk a little bit about it. 93 00:07:25,990 --> 00:07:33,450 So this is a list of of the instruction in the instruction set of the common intermediate language byte 94 00:07:33,450 --> 00:07:33,930 code. 95 00:07:34,320 --> 00:07:38,880 So here, as you can see, we have the code and we have the instruction. 96 00:07:39,060 --> 00:07:42,600 We have the description, type of instruction, instruction, how it is. 97 00:07:43,050 --> 00:07:49,860 You will find it very, very helpful, because sometimes in the code, in the assembly code, they might 98 00:07:49,860 --> 00:07:53,310 only write this and how you're going to know that. 99 00:07:53,850 --> 00:07:54,800 What is this? 100 00:07:54,840 --> 00:08:01,320 You get to figure out, you have to know them or just go to Google to find this, to find its opposite. 101 00:08:01,470 --> 00:08:04,260 They say that this is a bunch to target if you call. 102 00:08:04,470 --> 00:08:11,010 So you're going to try to find when went to the target, if not equal, you know, so this is how it 103 00:08:11,010 --> 00:08:11,490 is, guys. 104 00:08:11,880 --> 00:08:13,470 So know what we can do. 105 00:08:13,470 --> 00:08:16,950 We can just go back here and check again. 106 00:08:16,950 --> 00:08:20,010 All I got this is A, B and E that you end. 107 00:08:20,280 --> 00:08:30,600 So we come here and W Conjoint F or and Ormoc, it is an F and then we type B and E dot u n. 108 00:08:31,170 --> 00:08:34,080 So that s again is all we do everything. 109 00:08:35,310 --> 00:08:40,680 So we see that it is zero X to be tweeny. 110 00:08:41,010 --> 00:08:42,180 Let's quickly go. 111 00:08:42,300 --> 00:08:49,860 This is the OK code and then here this is the instruction we would we'd say to the court what to do. 112 00:08:50,320 --> 00:08:54,870 Therefore let's let me try to just go here. 113 00:08:55,350 --> 00:08:56,790 It was Twittery. 114 00:08:57,930 --> 00:08:59,810 We're looking here. 115 00:09:00,300 --> 00:09:10,530 So it is to be the description is Boonchu to target if unequaled, or do it shut down should form. 116 00:09:11,160 --> 00:09:17,230 Therefore, we get to find it winge not to target or went to target if equal. 117 00:09:18,000 --> 00:09:24,360 OK, now let's once again control EV and type Wenge to target. 118 00:09:25,110 --> 00:09:27,650 Now if Ekwall we need if equal. 119 00:09:28,080 --> 00:09:28,790 Exactly. 120 00:09:29,130 --> 00:09:32,970 We will not take this one because we need that s as well. 121 00:09:33,210 --> 00:09:40,350 So this is the code to e we're going to try to copy this and passed it there. 122 00:09:41,430 --> 00:09:43,920 Or if you can remember it, it's just Baghdad. 123 00:09:43,930 --> 00:09:47,820 S OK, so let's come back here to own this machine. 124 00:09:48,630 --> 00:09:51,100 So we got to find a way to change it. 125 00:09:51,210 --> 00:09:54,870 As usual, you just come here and click on edit. 126 00:09:55,200 --> 00:10:00,150 Let me and logit a little bit for you of the I will put it back again. 127 00:10:00,150 --> 00:10:09,300 So you click here on a date and you choose patch program and you choose a simple. 128 00:10:10,640 --> 00:10:11,130 Assembly. 129 00:10:11,810 --> 00:10:14,840 So in this process, we do this and support the assembly. 130 00:10:14,880 --> 00:10:20,900 OK, so what we can do now, we can try to to edit it. 131 00:10:21,330 --> 00:10:33,470 OK, so let me try to work with space and then we jump into the aid of you could so what we can say 132 00:10:33,470 --> 00:10:38,180 that this module doesn't support the assembly, which is that it's not a problem. 133 00:10:38,210 --> 00:10:45,300 So let let us jump into this and quickly try to find something different, OK? 134 00:10:45,440 --> 00:10:48,330 Change but eight change, right? 135 00:10:49,090 --> 00:10:49,410 No. 136 00:10:50,030 --> 00:10:53,490 OK, so we get to board that accord. 137 00:10:53,810 --> 00:10:56,960 Therefore, let me go here. 138 00:10:56,990 --> 00:10:59,930 Change word if it is allowed or OK. 139 00:10:59,930 --> 00:11:01,710 It allowed us to change it. 140 00:11:01,730 --> 00:11:05,930 Therefore, let's go, let's come back, let's come back to here it is. 141 00:11:06,050 --> 00:11:10,730 It was Boonstra to target if we call short form and it was zero X to eat. 142 00:11:11,180 --> 00:11:14,870 So we come back here again with type zero X. 143 00:11:16,460 --> 00:11:21,890 To to eat your eggs, to eat, right? 144 00:11:22,430 --> 00:11:24,370 Yes, let me check in back again. 145 00:11:25,630 --> 00:11:28,090 Zero eggs to E! 146 00:11:28,420 --> 00:11:35,800 So, OK, we know we click on OK, therefore it gets changed automatically. 147 00:11:36,540 --> 00:11:42,110 Pilferage, you see this is the instruction, this is the instruction. 148 00:11:42,130 --> 00:11:44,910 So we just changed the code. 149 00:11:45,010 --> 00:11:51,010 Therefore, we're going to in the program we click on edit again and Puch program. 150 00:11:51,030 --> 00:11:53,950 Let me apply patches to input file. 151 00:11:54,760 --> 00:11:59,380 OK, so we click here it is on this opportunity then. 152 00:11:59,380 --> 00:12:02,680 OK, so we put it like this. 153 00:12:02,860 --> 00:12:11,560 Therefore now we can close this application because we already padget but instead of doing so, let 154 00:12:11,560 --> 00:12:19,350 me jog it here so far and try to open it here. 155 00:12:19,510 --> 00:12:20,560 Try to open it. 156 00:12:20,830 --> 00:12:21,900 Well you hear. 157 00:12:22,120 --> 00:12:29,170 OK, so we click here now we have change it so we can take anything. 158 00:12:29,290 --> 00:12:37,000 That's a beep, beep, beep, beep, beep, beep, beep, beep and jeff password. 159 00:12:37,390 --> 00:12:40,150 Congratulation, congratulations. 160 00:12:40,150 --> 00:12:46,570 The password for any age is strong with ID we see something. 161 00:12:46,570 --> 00:12:49,000 It might be the password but we don't know yet. 162 00:12:49,000 --> 00:12:54,610 But since we get into the white node, they'll fall. 163 00:12:54,820 --> 00:13:01,960 We will trade on all it should be is account login account to see if it matches. 164 00:13:02,170 --> 00:13:08,400 OK, so let me jump to colourings machine now so we have to remember it. 165 00:13:08,710 --> 00:13:16,480 Chuong Capital s in space and copy to our capital w and ability. 166 00:13:16,630 --> 00:13:20,680 All right, so let's make it here and let's go back to Orcharding Machine. 167 00:13:21,870 --> 00:13:27,180 So, well, you, my colleague, we can get started here. 168 00:13:29,850 --> 00:13:32,400 Let me decrease it for you. 169 00:13:32,510 --> 00:13:34,580 OK, now it should be alright. 170 00:13:35,310 --> 00:13:36,600 So we come here. 171 00:13:38,010 --> 00:13:44,790 So we come here, then we are looking for application live in this one, and it was let me check it 172 00:13:44,790 --> 00:13:46,100 again a little bit. 173 00:13:46,620 --> 00:13:48,300 It was that strong. 174 00:13:48,300 --> 00:13:51,060 We did hear strong. 175 00:13:51,060 --> 00:13:56,760 We did let me increase it so that you can see you might see strong. 176 00:13:56,760 --> 00:13:58,200 We did OK. 177 00:13:59,040 --> 00:13:59,960 This one strong. 178 00:13:59,970 --> 00:14:00,450 We did. 179 00:14:00,690 --> 00:14:04,530 I can I cannot copy. 180 00:14:05,340 --> 00:14:09,810 So let me come back decreasing so that you can see on my screen. 181 00:14:10,230 --> 00:14:11,520 OK, good. 182 00:14:11,910 --> 00:14:17,780 So come back here and we type strong copy. 183 00:14:17,850 --> 00:14:19,260 That is strong. 184 00:14:21,320 --> 00:14:25,450 John and caboodle you. 185 00:14:28,520 --> 00:14:39,220 D e d all right, so as usual, control a controller X to cut it and come back here and copy and paste 186 00:14:39,220 --> 00:14:42,240 it here before we submit or. 187 00:14:42,970 --> 00:14:46,490 Let me check how many points I have already so far. 188 00:14:47,140 --> 00:14:50,070 I have nine hundred to ten. 189 00:14:50,320 --> 00:14:53,860 OK, so now we are here. 190 00:14:54,950 --> 00:14:57,650 You can just click on Submit to see. 191 00:14:59,240 --> 00:15:06,110 Please into the password, the password is not quick, is it, to let us check it again? 192 00:15:07,820 --> 00:15:13,680 It doesn't look, it's a way to remind who I put stream. 193 00:15:13,830 --> 00:15:15,310 It's not a stream. 194 00:15:15,320 --> 00:15:16,100 It's June. 195 00:15:16,110 --> 00:15:16,910 I'm sorry, guys. 196 00:15:17,450 --> 00:15:24,710 OK, so it's Tongon control x ray control x. 197 00:15:25,190 --> 00:15:26,840 So let us come back. 198 00:15:27,870 --> 00:15:34,610 Let us come back an application live in and control V and submit. 199 00:15:36,180 --> 00:15:36,880 Congrats. 200 00:15:37,200 --> 00:15:37,870 Excellent. 201 00:15:37,910 --> 00:15:41,190 We waited 30 point has been added. 202 00:15:41,220 --> 00:15:42,760 That's absolutely good, guys. 203 00:15:42,990 --> 00:15:51,750 So as you can see that sometimes in the assembly code or some applications, there might be not only 204 00:15:51,930 --> 00:15:58,140 the usual code, I mean, from the assembly language ability, the they might put some some common intermediate 205 00:15:58,140 --> 00:16:01,830 language as well so that they empower the software. 206 00:16:01,980 --> 00:16:05,640 If you can check it here, you might get some some more information about it. 207 00:16:05,670 --> 00:16:08,230 Let me check it for a moment. 208 00:16:08,850 --> 00:16:17,090 And the first and the first part, let me check it to see what kind of information they have put their 209 00:16:17,100 --> 00:16:17,720 space. 210 00:16:18,090 --> 00:16:25,030 And they told the special name and then so, so, so, so so far, nothing is here. 211 00:16:25,300 --> 00:16:28,410 Probably it's on the last one. 212 00:16:29,650 --> 00:16:37,590 And let me check if they don't put some information for us, because usually they usually put some information 213 00:16:37,920 --> 00:16:46,340 about it that this software is not for Microsoft, visual, basic or for Microsoft, stuff like that. 214 00:16:47,460 --> 00:16:48,120 OK. 215 00:16:48,670 --> 00:16:53,310 Again, you're looking in the wrong places and I was not looking for it. 216 00:16:53,520 --> 00:16:56,670 OK, Microsoft with all these extremes. 217 00:16:56,680 --> 00:16:56,990 Yeah. 218 00:16:57,570 --> 00:17:03,540 So you can get this information as soon as you get this kind of good case, you will quickly understand 219 00:17:03,540 --> 00:17:10,920 that this code, they they can be so common instruction language. 220 00:17:10,980 --> 00:17:12,900 Therefore there are plenty of them. 221 00:17:13,110 --> 00:17:14,950 Please check it out. 222 00:17:14,970 --> 00:17:20,970 It's very important so that you teach yourself how to do it if you can't change it on either, as you 223 00:17:20,970 --> 00:17:29,620 can see by changing the instruction or if you use or only debugger, you might change the instructions 224 00:17:30,180 --> 00:17:32,590 that instruction very easily. 225 00:17:32,610 --> 00:17:39,360 But in ADA, if we got any one message, so therefore we were not able to assemble it, but we were 226 00:17:39,360 --> 00:17:40,590 able to change the word. 227 00:17:40,740 --> 00:17:42,220 I mean, the code is so. 228 00:17:42,870 --> 00:17:44,130 So that's how we made it. 229 00:17:44,440 --> 00:17:47,360 OK, so, so far so good. 230 00:17:47,370 --> 00:17:52,720 So let me come back to Organelle Unix machine and come back here. 231 00:17:54,120 --> 00:18:02,490 And so now we now we're going to go to the next application phase, so which is the one. 232 00:18:02,670 --> 00:18:05,130 So download it and extract it. 233 00:18:05,370 --> 00:18:07,470 And we are looking forward to see you there. 234 00:18:07,680 --> 00:18:08,130 Thank you.