1
00:00:00,060 --> 00:00:06,350
Now, the Israelis tried to exploit the command situation in high security level fichus media.

2
00:00:06,570 --> 00:00:09,540
OK, guys, so now let's change two million one.

3
00:00:10,760 --> 00:00:16,530
This is the security and just to medium and security summit.

4
00:00:16,880 --> 00:00:17,240
OK.

5
00:00:17,300 --> 00:00:23,210
So now we're currently on medium security level and then just navigate to an execution.

6
00:00:23,210 --> 00:00:27,680
And this is the place where we used to execute our commands.

7
00:00:27,710 --> 00:00:34,700
OK, so now let's try to exploit with all the commands that we did in the late in the last video.

8
00:00:34,790 --> 00:00:35,060
OK.

9
00:00:35,120 --> 00:00:36,140
So how to do that?

10
00:00:36,140 --> 00:00:43,910
Simply typed the IP address of the machine and just simply used pipeline and less knowledge to use it

11
00:00:43,910 --> 00:00:44,600
working or not.

12
00:00:45,740 --> 00:00:51,380
So when you hit enter, as you can see that this is working on medium security also.

13
00:00:51,590 --> 00:00:57,170
OK, guys, so now we're clear that this particular for this particular operator, we just pipeline

14
00:00:57,530 --> 00:01:00,110
this particular webpage is not filtering.

15
00:01:00,150 --> 00:01:03,920
OK, so now let's try with some other one using the double.

16
00:01:05,680 --> 00:01:09,570
Double and triple, double amputee.

17
00:01:09,810 --> 00:01:11,950
So now let's try to hit Dainton summit.

18
00:01:13,260 --> 00:01:19,350
So when you segment this, you will see this is doing nothing, that simply means that it is filtering

19
00:01:19,350 --> 00:01:20,010
something here.

20
00:01:20,430 --> 00:01:23,940
OK, so now let's try to see what some other optical.

21
00:01:25,820 --> 00:01:26,900
Just like this.

22
00:01:29,120 --> 00:01:34,900
Using this dominator and let's see by summiting, so as you can see that this is also not working.

23
00:01:35,060 --> 00:01:36,380
So what is the problem here?

24
00:01:36,680 --> 00:01:42,950
So in this particular security level for development is doing here is what they are doing.

25
00:01:43,100 --> 00:01:47,270
They are filtering some apparatus so that we cannot execute our commands.

26
00:01:47,540 --> 00:01:52,880
OK, now let's see the source speed so that we can easily understand what is happening here.

27
00:01:53,360 --> 00:01:53,840
OK.

28
00:01:55,490 --> 00:02:02,030
So when you scroll down, okay, as you can see here, this is the command, which is remove any of

29
00:02:02,030 --> 00:02:05,320
the characters in the back black list.

30
00:02:05,600 --> 00:02:10,820
So what it is doing here is this is simply removing this ampersand and this.

31
00:02:11,180 --> 00:02:14,820
Okay, so this is removing these apparatus here.

32
00:02:14,840 --> 00:02:19,820
So that is why we are not able to execute our commands using these operators.

33
00:02:20,110 --> 00:02:27,740
OK, so now let's simply close it and execute all these commands like this command.

34
00:02:28,010 --> 00:02:30,990
As you can see, this is not working here.

35
00:02:31,340 --> 00:02:36,110
So what we can do here is we can simply let's try with some.

36
00:02:37,840 --> 00:02:41,800
This update now, let's see, is it working or not?

37
00:02:41,800 --> 00:02:47,770
So as you can see that it is successfully executed, it has successfully executed and destroying our

38
00:02:47,770 --> 00:02:48,750
desired result.

39
00:02:48,910 --> 00:02:54,820
So as we all know that the command that we have executed, what it is doing, this is simply showing

40
00:02:54,820 --> 00:02:56,320
you the content inside this file.

41
00:02:56,320 --> 00:02:59,680
And this is also copying the content of this file into this file.

42
00:02:59,720 --> 00:03:03,480
OK, so this is how you can work on medium by seeing the view.

43
00:03:03,500 --> 00:03:07,620
So it is simply showing that it is blacklisting some operators.

44
00:03:07,630 --> 00:03:13,900
So if you are not having the view as to what they will do, you will simply try with some other combinations

45
00:03:13,900 --> 00:03:21,820
of operators so that if it is if simply suppose like everybody's filtering some apparatus so you can

46
00:03:21,820 --> 00:03:24,360
try with the combinations of different operators.

47
00:03:24,520 --> 00:03:29,370
So if there is one operator to develop, it is not filtering.

48
00:03:29,380 --> 00:03:31,340
So this can work for you.

49
00:03:31,640 --> 00:03:38,290
OK, so this is how you can work on medium security and you can execute your commands here, like if

50
00:03:38,290 --> 00:03:39,190
you want to.

51
00:03:41,200 --> 00:03:48,280
If you want to sue directly, simply to the Internet will so you directress organize Sanon in the next

52
00:03:48,280 --> 00:03:48,590
lecture.

53
00:03:48,610 --> 00:03:55,170
We are going to see and try with the one because I have so I have told you that Hylan is like impossible.

54
00:03:55,180 --> 00:03:58,510
Now let's try to see if we can crack it or not.

55
00:03:58,540 --> 00:04:00,060
So this is all for this lecture base.