1 00:00:00,210 --> 00:00:06,160 Hello, everybody, welcome to my advanced ethical hacking, networking, penetration testing, costing. 2 00:00:15,900 --> 00:00:24,860 OK, now let's go to the next board, application 12, so we're going to open Auki machines, so he'll 3 00:00:25,140 --> 00:00:26,340 always say, what is Virgin or. 4 00:00:29,520 --> 00:00:37,020 OK, so we're going to come here and I'm going to try to do the same thing, guys, we're going to try 5 00:00:37,020 --> 00:00:43,180 to open our application using ADA and then therefore we're going to try to to analyze this stuff. 6 00:00:43,200 --> 00:00:44,040 So let me. 7 00:00:45,930 --> 00:00:47,040 Can this. 8 00:00:49,530 --> 00:00:50,390 Overstuff. 9 00:00:51,870 --> 00:00:54,450 Some days, no. 10 00:00:57,170 --> 00:01:01,970 OK, now what we can do is we try to join this competition to this one. 11 00:01:05,200 --> 00:01:17,500 OK, so welcome to the application cooking pod 12, so assuming you already download it in your in your 12 00:01:17,650 --> 00:01:26,460 folder, you extract here so it's all on sale and they know what we can do. 13 00:01:26,470 --> 00:01:28,660 We can try to open the application. 14 00:01:28,960 --> 00:01:30,760 We can double click. 15 00:01:31,930 --> 00:01:39,910 To see how it looks like all welcome, will, welcome to a point of this was made by system. 16 00:01:39,920 --> 00:01:47,950 Laura, my hand to you is that the door to the person is between one and ten. 17 00:01:48,280 --> 00:01:49,170 What does that mean? 18 00:01:49,930 --> 00:01:52,030 The password is between one and 10. 19 00:01:53,320 --> 00:01:57,290 OK, anyway, he's have fun, please enter your password. 20 00:01:57,460 --> 00:02:06,940 So this is between one and 10, what we can try to do again, try to put one No. 21 00:02:06,940 --> 00:02:08,170 One person would be. 22 00:02:09,320 --> 00:02:10,610 OK, again. 23 00:02:12,180 --> 00:02:24,620 We joke to Anderson goodbye and we understand why we're letting joy or it's not that much to one person 24 00:02:24,630 --> 00:02:25,190 goodbye. 25 00:02:26,510 --> 00:02:28,160 It was again. 26 00:02:29,530 --> 00:02:32,400 For personal, very. 27 00:02:34,120 --> 00:02:35,800 Police now five. 28 00:02:37,250 --> 00:02:40,730 I was word goodbye. 29 00:02:42,300 --> 00:02:52,160 It was it again, it was just way and it is now six and possible goodbye and assuming that it's it's 30 00:02:52,190 --> 00:02:53,190 it's not what you think. 31 00:02:53,430 --> 00:02:54,030 Come on. 32 00:02:59,850 --> 00:03:04,090 No, it's like between seven and possible. 33 00:03:04,330 --> 00:03:06,620 Goodbye again. 34 00:03:08,200 --> 00:03:11,110 Like, let's put aid first. 35 00:03:11,260 --> 00:03:27,020 Goodbye then to the two nine members we would buy anywhere in Australia, 10, one, one and 10 and 36 00:03:27,940 --> 00:03:28,320 goodbye. 37 00:03:28,390 --> 00:03:29,560 So it's not what you think. 38 00:03:30,530 --> 00:03:35,250 OK, so let us open the application in, Ida. 39 00:03:35,620 --> 00:03:36,660 So we do get here. 40 00:03:41,100 --> 00:03:43,040 OK, this OK? 41 00:03:46,180 --> 00:03:48,750 We are waiting until we see a deal here. 42 00:03:49,930 --> 00:03:52,840 And this sport still working, so it. 43 00:04:02,310 --> 00:04:10,530 It's a heavy obligation when we look so many functions, name on so many functions, name. 44 00:04:11,490 --> 00:04:12,410 Well. 45 00:04:14,030 --> 00:04:15,160 And just check. 46 00:04:16,380 --> 00:04:18,960 So many, so many, so many functions, name. 47 00:04:20,460 --> 00:04:22,650 Hmm hmm, interesting. 48 00:04:22,910 --> 00:04:27,590 So let's just get here a little bit so that you can see all the politics. 49 00:04:30,940 --> 00:04:33,180 Okay, what was the. 50 00:04:34,870 --> 00:04:45,510 So anyways, we it seems that it's heavy, we should try to find the strength according to always, 51 00:04:45,510 --> 00:04:47,220 so let's close these stores. 52 00:04:47,740 --> 00:04:48,970 We don't need them at all. 53 00:04:49,360 --> 00:04:52,240 Export any of you export. 54 00:04:52,630 --> 00:05:01,110 So we come here first and select iboga and we choose local Win32, this one. 55 00:05:01,780 --> 00:05:05,170 And let me put it a little bit like this for you guys. 56 00:05:05,890 --> 00:05:06,390 Right. 57 00:05:08,020 --> 00:05:09,810 So it was OK. 58 00:05:10,450 --> 00:05:15,940 And then now we can find the option of starting the process, but we don't need it yet. 59 00:05:16,390 --> 00:05:17,830 We need strings. 60 00:05:19,120 --> 00:05:26,260 OK, and then we need segment as well to see in which segment we have to work with, of course, in 61 00:05:26,260 --> 00:05:26,800 the next one. 62 00:05:26,810 --> 00:05:36,040 But so let's show you, OK, this application has one, two, three, four, five sections five segment. 63 00:05:36,970 --> 00:05:40,300 Usually the most important one is the TotEx. 64 00:05:40,810 --> 00:05:48,190 So if we double click it, it jumps both into the exact path which we have to work with. 65 00:05:49,120 --> 00:05:51,370 So therefore we are here. 66 00:05:51,670 --> 00:05:59,440 We can try to find the strings or if you just go here, you will see so many strings and then you can 67 00:05:59,680 --> 00:06:00,910 try to eat them. 68 00:06:00,970 --> 00:06:02,660 Welcome to the bar. 69 00:06:02,680 --> 00:06:03,730 Please enter the password. 70 00:06:03,730 --> 00:06:05,380 So that's that's what we have seen. 71 00:06:05,680 --> 00:06:15,610 You beat me the same person you use on here on the level of Bage, this might be a good message for 72 00:06:15,610 --> 00:06:15,910 us. 73 00:06:15,910 --> 00:06:16,660 One password. 74 00:06:16,660 --> 00:06:17,140 Goodbye. 75 00:06:17,140 --> 00:06:19,650 So this is what we have seen earlier. 76 00:06:19,660 --> 00:06:20,710 Okay, okay. 77 00:06:20,710 --> 00:06:21,280 Okay. 78 00:06:21,640 --> 00:06:23,410 It has some strong computers. 79 00:06:23,410 --> 00:06:24,460 Oh interesting. 80 00:06:24,850 --> 00:06:25,500 Okay. 81 00:06:25,840 --> 00:06:30,700 So, so, so, so, so, so, so let's go, let's go, let's go down below a lot of stuff. 82 00:06:31,000 --> 00:06:39,400 But as far as we can see that we have already seen the most needed strings that we need because we have 83 00:06:39,400 --> 00:06:41,830 seen them in their application default. 84 00:06:42,400 --> 00:06:48,760 We can come back here and look at this one, OK here and try to give us the card. 85 00:06:48,790 --> 00:06:56,830 OK, so let's click here so that we can go step by, step it to the location. 86 00:06:57,160 --> 00:06:58,480 Forty ten, six one. 87 00:06:59,350 --> 00:07:02,470 I'll get it compares this. 88 00:07:03,890 --> 00:07:12,320 To eat eggs, not care anyways, let's see where the application moved. 89 00:07:12,860 --> 00:07:20,360 Let's check out first the Greenport digging out from this one and see what it does. 90 00:07:21,740 --> 00:07:24,630 O k o k. 91 00:07:28,040 --> 00:07:36,490 This again, going to go where to to to to to to to the root cause here to look for these tend to work 92 00:07:36,620 --> 00:07:39,560 in ways that can go up with. 93 00:07:41,750 --> 00:07:44,630 So am I here? 94 00:07:45,290 --> 00:07:45,830 I am. 95 00:07:46,490 --> 00:07:48,950 Let's go, let's go, let's go, let's go, let's go, let's go. 96 00:07:49,910 --> 00:07:53,870 Let's go to that green boat to see. 97 00:07:54,790 --> 00:08:02,680 So nothing, as you can see here, you see no Kazar here, so we can just move therefore to the right 98 00:08:02,680 --> 00:08:07,220 side and check. 99 00:08:07,330 --> 00:08:10,240 So this is we already in the blue, so nothing is there. 100 00:08:10,270 --> 00:08:10,950 So nothing. 101 00:08:10,960 --> 00:08:14,110 OK, we can go to it up. 102 00:08:15,460 --> 00:08:16,600 Ta ta ta ta ta ta ta. 103 00:08:16,750 --> 00:08:19,710 Or wide enough, I think. 104 00:08:19,720 --> 00:08:20,100 Yep. 105 00:08:21,700 --> 00:08:22,390 So. 106 00:08:24,090 --> 00:08:25,100 Let's come back here. 107 00:08:26,190 --> 00:08:27,870 Well, nothing, nothing. 108 00:08:28,140 --> 00:08:34,160 Oh, let let us not go here and never click on the text that we need. 109 00:08:34,740 --> 00:08:36,550 We need this or we need this. 110 00:08:36,840 --> 00:08:39,200 But it is better to click on this one. 111 00:08:39,960 --> 00:08:44,280 So we jump into this post. 112 00:08:45,030 --> 00:08:50,600 This post says that you beat me up, you beat me up so we can come here. 113 00:08:51,060 --> 00:08:58,740 I do it double click it to go to the local than a direct location or you just put your your mouse here 114 00:08:58,740 --> 00:09:03,570 and then you press X so that you enter you into that application. 115 00:09:03,570 --> 00:09:08,050 But before we can just try to duplicate and boom, here we are. 116 00:09:08,580 --> 00:09:09,870 So here we are. 117 00:09:09,880 --> 00:09:15,060 And in another graph, you know, we are in this. 118 00:09:15,390 --> 00:09:18,660 But how what is its name. 119 00:09:21,280 --> 00:09:22,940 There one, OK. 120 00:09:23,610 --> 00:09:25,420 Anyways, let me check it. 121 00:09:26,440 --> 00:09:34,840 This is the text, guys, so job if not equal to this location. 122 00:09:35,230 --> 00:09:39,610 This location is where obviously it's is and the wood line. 123 00:09:39,640 --> 00:09:42,220 Come on, let me check again. 124 00:09:42,520 --> 00:09:48,430 Network line Greenline 40, 14, eight D, you see. 125 00:09:49,000 --> 00:09:51,940 So let let us come here one password. 126 00:09:51,940 --> 00:09:52,420 Goodbye. 127 00:09:52,420 --> 00:09:59,830 So we get to find a way so that the password does a job so that the code doesn't disappear but instead 128 00:10:00,160 --> 00:10:02,030 must heal over here. 129 00:10:02,560 --> 00:10:03,460 So. 130 00:10:06,860 --> 00:10:13,730 Let let me jump in this application, as usual, we click on edit and. 131 00:10:15,780 --> 00:10:18,510 But Boogum assembled. 132 00:10:19,980 --> 00:10:24,270 And instead of pudding and we just put this. 133 00:10:25,560 --> 00:10:33,060 OK, and cancel the Four Seasons, we have made a change, we can try to change the culture so that 134 00:10:33,280 --> 00:10:38,830 we will remember exactly in which note we have made that modification. 135 00:10:39,760 --> 00:10:45,750 OK, so now we can put the screen back to what it was so that you can see everything. 136 00:10:46,410 --> 00:10:46,770 Really. 137 00:10:46,820 --> 00:10:49,670 So, OK, good to far. 138 00:10:50,040 --> 00:10:50,420 Yep. 139 00:10:51,660 --> 00:10:54,780 So again, one more time. 140 00:10:55,470 --> 00:10:56,340 One more time. 141 00:10:56,340 --> 00:10:56,910 One more time. 142 00:10:56,910 --> 00:10:57,540 One more time. 143 00:10:57,570 --> 00:11:09,010 OK, let's check down below to see where the code jumps, which we need to jump to 40 foot in each one. 144 00:11:09,190 --> 00:11:13,420 So it's a void, so nothing more. 145 00:11:13,740 --> 00:11:22,260 Well, now let's go to edit again now puch program but program and apply. 146 00:11:23,250 --> 00:11:25,650 Applied to define. 147 00:11:27,030 --> 00:11:32,460 OK, so now we can close it, but we would not need to close it. 148 00:11:32,490 --> 00:11:36,920 Let's just come here over here and try to click here. 149 00:11:37,160 --> 00:11:38,300 Please enter any of us here. 150 00:11:38,310 --> 00:11:40,680 Let me put the blah blah. 151 00:11:40,740 --> 00:11:41,130 It will. 152 00:11:42,630 --> 00:11:43,980 You beat me up. 153 00:11:44,430 --> 00:11:51,580 You use use the same pass you used on here on the live blog page. 154 00:11:52,110 --> 00:11:52,950 What's that? 155 00:11:54,000 --> 00:11:56,540 You don't really understand what they mean. 156 00:11:57,180 --> 00:12:01,050 Use the same pass you use on here. 157 00:12:03,700 --> 00:12:07,450 On the lever of page. 158 00:12:08,840 --> 00:12:19,680 Ah, okay, so exactly where apage was, what probably is the into the application 11. 159 00:12:19,700 --> 00:12:22,130 Let me just try to put that password. 160 00:12:22,430 --> 00:12:33,120 That first was what it was in something strong and what I already close it really. 161 00:12:33,290 --> 00:12:35,900 Because it or you can just try it. 162 00:12:36,350 --> 00:12:44,000 Let me check the digital to try to stay strong on the. 163 00:12:45,500 --> 00:12:46,100 Come on. 164 00:12:46,880 --> 00:12:49,550 Password strong with it. 165 00:12:49,630 --> 00:12:51,680 OK, so let me come back here. 166 00:12:52,460 --> 00:12:57,070 And it was strong and strong. 167 00:12:57,380 --> 00:12:59,630 All we did in person do. 168 00:13:00,850 --> 00:13:06,370 You bet you use the same bus you use on here on the level of page, the same thing. 169 00:13:07,520 --> 00:13:16,290 OK, so let's try to let's try to open let's try to open all. 170 00:13:19,260 --> 00:13:22,620 Or ahead of Monarchos account, you and. 171 00:13:23,780 --> 00:13:31,340 We we get we have completist nights on this one, so mistake and again, strong we did. 172 00:13:32,240 --> 00:13:35,960 And control a conduit X. 173 00:13:36,680 --> 00:13:38,040 Let's come back here. 174 00:13:38,060 --> 00:13:44,540 I don't think so, but let us try to control V and submit. 175 00:13:46,280 --> 00:13:52,820 Please enter the password, so it's on the password, so the applications see what it says, what to 176 00:13:52,820 --> 00:13:53,330 us. 177 00:13:54,740 --> 00:13:58,070 Please enter the password, discuss without having to it. 178 00:13:58,070 --> 00:14:06,800 And it says that you beat up use the same pass you used on here on the lever of page. 179 00:14:08,370 --> 00:14:18,030 Or page enjoy anywhere, OK, to see level apage level of. 180 00:14:19,500 --> 00:14:28,490 Yeah, yep, so control eggs and come back here, oh, it must be here, let me again try to take strong. 181 00:14:29,790 --> 00:14:31,740 Space we paid. 182 00:14:34,370 --> 00:14:34,860 No. 183 00:14:34,890 --> 00:14:36,780 Okay, so back. 184 00:14:39,960 --> 00:14:43,730 Is going on here and now again. 185 00:14:44,420 --> 00:14:50,120 Let me put it a little bit up, try to bust legal apage here. 186 00:14:52,340 --> 00:14:55,120 Please enter the password. 187 00:14:55,160 --> 00:15:01,040 OK, so we got to figure out what is the password, what we can do is that. 188 00:15:02,130 --> 00:15:10,480 We can go back to the aid application and then try to to analyze the code much deeper. 189 00:15:11,280 --> 00:15:12,960 So what we can do. 190 00:15:12,990 --> 00:15:17,820 Let me just try to wear space and let me go. 191 00:15:17,820 --> 00:15:19,650 Up, up, up, up, up, up. 192 00:15:20,070 --> 00:15:22,710 OK, so this is what we have changed. 193 00:15:22,730 --> 00:15:25,690 What we would change was Joyce Jazy example. 194 00:15:26,190 --> 00:15:32,940 If if it was not because, you know, we put it if it is equal to zero, therefore what we can do, 195 00:15:32,940 --> 00:15:36,200 the first thing we get was present possible. 196 00:15:36,900 --> 00:15:38,580 OK, let's analyze it now. 197 00:15:39,540 --> 00:15:40,620 What it does. 198 00:15:41,860 --> 00:15:45,610 After we input the password, it was this. 199 00:15:48,010 --> 00:15:50,670 It move these two X. 200 00:15:52,060 --> 00:16:01,240 Winchester and posted down below and quality function here in quality here again, and it's on E.S.P 201 00:16:01,240 --> 00:16:08,080 plus eight and move is purposeful on only the word. 202 00:16:10,980 --> 00:16:19,630 And call this function and compare what is is comparing it is comparing this value 14. 203 00:16:19,890 --> 00:16:22,050 Let me increase it for you a little bit. 204 00:16:24,810 --> 00:16:37,410 It compares this value where you, my friend, compares this value, it compares it with that EBP Lucifer 205 00:16:37,410 --> 00:16:37,820 four. 206 00:16:38,700 --> 00:16:46,110 So what we can say that this value is an exact value, because at the end, as we can see it, it's 207 00:16:46,110 --> 00:16:47,790 having a small edge. 208 00:16:47,790 --> 00:16:50,350 That means it is a value. 209 00:16:50,580 --> 00:16:56,040 So let's try to change that exact value to two decimal value. 210 00:16:56,370 --> 00:16:59,700 So to do so, let me come back here. 211 00:16:59,730 --> 00:17:00,270 Great. 212 00:17:06,230 --> 00:17:15,180 Let me put it a little bit like this for you now for this we're going to use a convertor for number 213 00:17:15,200 --> 00:17:18,530 two decimal numbers so that we can find find this number. 214 00:17:18,710 --> 00:17:27,560 So you go to Google or you take your scientific calculator and try to do a deal operation and to see 215 00:17:27,980 --> 00:17:30,020 what is what will be the result. 216 00:17:30,260 --> 00:17:34,820 So, again, we come back here and then we check again. 217 00:17:34,820 --> 00:17:43,100 It's for the 14, 14, the 18, 14. 218 00:17:45,060 --> 00:17:59,150 For 14, the A and now eight eight eight eight eight eight or so, and then now you click one convert, 219 00:18:00,180 --> 00:18:04,470 so the number is 13 six six six seven zero. 220 00:18:04,650 --> 00:18:13,500 So let us come back here, over here and we can try to win the application. 221 00:18:13,500 --> 00:18:14,490 Let me come back here. 222 00:18:15,360 --> 00:18:19,260 So we press this and we come back over here. 223 00:18:20,100 --> 00:18:22,820 So we press it again. 224 00:18:24,010 --> 00:18:34,660 So the password is what was the password to it in six 666 to retain six six six six six six seven zero 225 00:18:34,660 --> 00:18:38,920 and put into one password goodbye. 226 00:18:39,000 --> 00:18:41,440 OK, one password. 227 00:18:41,740 --> 00:18:42,530 Goodbye. 228 00:18:42,710 --> 00:18:43,880 The fall. 229 00:18:44,470 --> 00:18:53,200 We can assume that this is the password because we have put this is what happens to us in the previous 230 00:18:53,200 --> 00:18:53,980 application. 231 00:18:54,340 --> 00:19:01,930 We have put John, if this password is it, therefore that's why when we when we have put something 232 00:19:01,930 --> 00:19:06,510 else, it says the OK or it said to us that we beat him. 233 00:19:06,520 --> 00:19:11,590 But now when we put the correct password, he says to us, it's one password. 234 00:19:11,590 --> 00:19:13,580 That's because of that Jazy gate. 235 00:19:13,840 --> 00:19:19,360 Let me just try to show you and something in there. 236 00:19:19,360 --> 00:19:22,800 We want this application again. 237 00:19:23,210 --> 00:19:23,660 Again. 238 00:19:24,400 --> 00:19:26,060 So let me die. 239 00:19:26,090 --> 00:19:28,260 Blah, blah, blah. 240 00:19:28,270 --> 00:19:30,460 And you say you beat me. 241 00:19:30,790 --> 00:19:41,770 OK, so now let's go back to the application and change this to not a program badge. 242 00:19:42,400 --> 00:19:46,000 Change a symbol and. 243 00:19:46,000 --> 00:19:46,520 OK. 244 00:19:48,280 --> 00:19:50,110 OK, now we would not. 245 00:19:51,210 --> 00:20:04,290 And OK, so right now we can apply it to define apply, apply to apply patches to the file. 246 00:20:05,250 --> 00:20:07,590 OK, now let's come back here or here again. 247 00:20:07,620 --> 00:20:12,270 So let me put this in here for you. 248 00:20:12,690 --> 00:20:17,590 OK, so we come back here again. 249 00:20:18,420 --> 00:20:23,090 So now it would be possible it was 13 and sixty six. 250 00:20:23,100 --> 00:20:29,860 One, two, three, four, not one, two, three and seven zero seven zero the zero. 251 00:20:30,330 --> 00:20:34,070 So it was under one password. 252 00:20:34,620 --> 00:20:36,390 So here. 253 00:20:37,580 --> 00:20:41,070 Let me know, would it back the way it was? 254 00:20:41,930 --> 00:20:49,580 OK, so it was the application to 12 and it was 13. 255 00:20:50,630 --> 00:21:00,110 One, two, three and seven will control a control X that's come here. 256 00:21:00,150 --> 00:21:00,820 We don't know. 257 00:21:00,830 --> 00:21:04,730 We will see and into it so bad. 258 00:21:06,120 --> 00:21:12,210 Congrats, you see, this is where the magic was there. 259 00:21:13,510 --> 00:21:21,970 As we see that, sometimes when we phone into the 12, by the comparison, by the comparison, if we 260 00:21:21,970 --> 00:21:27,730 see some like age behind some words, that means it is exact number. 261 00:21:27,940 --> 00:21:37,960 So we got to change that number, by the way, going into this website or just type on Google decimal 262 00:21:37,960 --> 00:21:40,720 to decimal converter and then boom, you get it. 263 00:21:40,910 --> 00:21:44,440 Therefore, you come back here and try to modify this application. 264 00:21:44,500 --> 00:21:45,800 This is how it works, guys. 265 00:21:46,210 --> 00:21:48,190 OK, so we read it. 266 00:21:48,640 --> 00:21:49,970 Let's check upwind. 267 00:21:50,860 --> 00:21:54,340 Now we reach one thousand five points. 268 00:21:54,370 --> 00:21:57,190 OK, so let's go back to the next application. 269 00:21:58,530 --> 00:22:04,090 Now we will go to the pod to attain the 12. 270 00:22:04,090 --> 00:22:06,500 One was difficulty was hard. 271 00:22:06,520 --> 00:22:10,390 OK, now the 13 is again. 272 00:22:10,660 --> 00:22:11,470 OK, never mind. 273 00:22:11,710 --> 00:22:18,040 So go ahead, download it and extract it to your folder and see what their.