1 00:00:00,150 --> 00:00:01,680 All right, welcome back, everyone. 2 00:00:02,340 --> 00:00:03,920 We are currently on the lecture. 3 00:00:04,380 --> 00:00:07,410 We are actually going to install open bar scanner. 4 00:00:08,320 --> 00:00:14,410 Trust me, I mean, I have to tell you this, we are really in a very lucky time. 5 00:00:15,310 --> 00:00:22,840 The reason is we in the earlier version of open mass scanner, we had a couple of bucks and which is 6 00:00:23,500 --> 00:00:27,820 pretty much expect it being a business open source platform. 7 00:00:28,810 --> 00:00:33,900 But the latest version, you know, a lot of things has been changed. 8 00:00:34,090 --> 00:00:39,540 This made the installation of open vast scanner pretty much easier. 9 00:00:40,450 --> 00:00:41,690 And I'll show you how. 10 00:00:42,760 --> 00:00:43,970 So let's get started. 11 00:00:44,530 --> 00:00:50,390 Let me show you how the installation would work and how our lab is really being deployed. 12 00:00:50,650 --> 00:00:51,020 All right. 13 00:00:52,240 --> 00:00:54,790 OK, so this is our calling machine. 14 00:00:55,150 --> 00:00:55,870 Why, Collie? 15 00:00:56,590 --> 00:01:00,870 Because you can even install it on any Linux machine. 16 00:01:01,210 --> 00:01:10,090 It just that when you you know, when you do the penetration testing program, I prefer to have Gallion. 17 00:01:10,090 --> 00:01:16,000 You know, if you have bought your, you know, one of these scanner and penetration testing to, like, 18 00:01:16,480 --> 00:01:19,620 deployed on the same platform, it makes your job pretty easier. 19 00:01:19,900 --> 00:01:23,490 OK, next, you have made us portable. 20 00:01:23,500 --> 00:01:30,760 Do I think you already know at this moment that made us portable is basically the infected machine. 21 00:01:31,360 --> 00:01:41,530 So help is really helpful to learn how what are the different vulnerabilities we can really catch? 22 00:01:42,730 --> 00:01:48,450 Next is the third machine is our school, the my school on Ubuntu server. 23 00:01:50,120 --> 00:01:56,230 Up the next, we have Windows Server 2012 where we are running two services. 24 00:01:56,380 --> 00:01:59,230 First is the Web service. 25 00:02:00,370 --> 00:02:03,810 Next, we have domain controller as well, a domain controller. 26 00:02:03,820 --> 00:02:09,100 Of course, you might be knowing that you know something where we have to directly service of running 27 00:02:09,400 --> 00:02:14,880 and that's where we manage on the user organization, active directly on the stuff. 28 00:02:15,610 --> 00:02:22,220 Then at the end, we have a Windows server again where we are running three services, which is Web 29 00:02:22,240 --> 00:02:26,110 service, DNS server, DSP service as well. 30 00:02:26,290 --> 00:02:30,360 OK, so this is all about our why so much of variety? 31 00:02:30,910 --> 00:02:38,290 The reason is to make to make you feel like you are really in the, you know, the real employment enterprise. 32 00:02:38,290 --> 00:02:42,280 And what I'm trying to make it more realistic. 33 00:02:42,580 --> 00:02:44,980 I mean, as much as possible in a way. 34 00:02:45,400 --> 00:02:49,610 OK, so let's go back to know original the machine. 35 00:02:49,630 --> 00:02:51,400 Let's go to our colleague. 36 00:02:52,000 --> 00:02:52,420 All right. 37 00:02:52,420 --> 00:02:55,360 So let's open our command from. 38 00:02:56,710 --> 00:02:58,570 That's where all the magic happens. 39 00:03:00,010 --> 00:03:02,910 We are going to run multiple pretty much come on. 40 00:03:02,920 --> 00:03:04,810 So let's make use of the. 41 00:03:08,730 --> 00:03:17,440 All right, so we are currently on the route in order to, you know, get all the updates, packages 42 00:03:17,440 --> 00:03:17,950 as well. 43 00:03:18,280 --> 00:03:22,110 Let's have a quick look at some updates. 44 00:03:24,840 --> 00:03:32,160 All right, so it's taking some time and this package will actually be installing everything needed 45 00:03:32,700 --> 00:03:40,380 in order to make use of the updates, our updated comments as well. 46 00:03:41,910 --> 00:03:45,820 So let's first install the openness scanner. 47 00:03:46,480 --> 00:03:48,750 So AP. 48 00:03:53,120 --> 00:03:58,100 The earlier the command were open mass, now it just GBM. 49 00:03:58,550 --> 00:04:03,790 All right, so you do this and that's where everything happens. 50 00:04:03,830 --> 00:04:04,520 You see this? 51 00:04:05,450 --> 00:04:07,450 It's it's getting started. 52 00:04:09,060 --> 00:04:14,630 The download has began and it seems like it's taking some time. 53 00:04:18,770 --> 00:04:27,380 All right, so it's going to take a bit of time because there are a whole lot of baggage, so hold the 54 00:04:27,380 --> 00:04:32,590 video for a while and we'll catch you once the installation is done. 55 00:04:43,810 --> 00:04:47,620 Okeydokey, so the installation is complete. 56 00:04:48,310 --> 00:04:54,670 It has been completed successfully, you could see on the back of this has been installed and now in 57 00:04:54,670 --> 00:05:03,520 order to have the installation, you know, set up to initiate it, both have to make use of a command 58 00:05:03,520 --> 00:05:04,360 GBM. 59 00:05:07,330 --> 00:05:07,720 Said. 60 00:05:09,370 --> 00:05:17,050 Again, it's again, going to take a bit more time and this way, whatever has been downloaded so far 61 00:05:17,500 --> 00:05:21,420 will get installed on your machine. 62 00:05:21,850 --> 00:05:22,260 All right. 63 00:05:22,480 --> 00:05:31,400 So this time will be looking at what all are getting installed on the machine and what exactly is happening. 64 00:05:31,540 --> 00:05:36,340 So just to give you a glance, there are multiple needs. 65 00:05:36,640 --> 00:05:37,960 What we call it feeds. 66 00:05:38,110 --> 00:05:38,490 All right. 67 00:05:38,890 --> 00:05:43,780 So these feats are, as we have discussed, have shown you in the architecture. 68 00:05:44,080 --> 00:05:46,420 This was network vulnerability test. 69 00:05:46,840 --> 00:05:50,680 And you could see there are multiple files related to Cisco. 70 00:05:50,680 --> 00:05:56,740 You know, when we have seen when we have seen in the Nessus that was called plug ins. 71 00:05:56,890 --> 00:06:07,300 OK, so similar to the plug ins with the with the open mass or I would say given to be very specific, 72 00:06:07,570 --> 00:06:11,770 it installed the needs and this is platform specific. 73 00:06:11,780 --> 00:06:16,710 There are a couple of companies who works with it in order to prepare those feet. 74 00:06:17,020 --> 00:06:25,690 Some of those companies are, in fact, are based in India, the Canadian companies as well, who work 75 00:06:25,690 --> 00:06:27,960 collectively in order to prepare those feats. 76 00:06:28,260 --> 00:06:28,590 All right. 77 00:06:28,990 --> 00:06:35,860 So it is going to take a while and it is going to take a couple of minutes as well in order to finish. 78 00:06:36,160 --> 00:06:36,770 So. 79 00:06:36,800 --> 00:06:41,290 Well, hold the video now and we'll get you one get done. 80 00:06:42,070 --> 00:06:45,100 Yes, I know it wasn't that quick. 81 00:06:45,580 --> 00:06:45,960 Right. 82 00:06:45,970 --> 00:06:47,520 But you know what? 83 00:06:47,530 --> 00:06:56,290 There are as I said in the beginning, there are more than 50000 of NVP These are equivalent to plug 84 00:06:56,290 --> 00:06:56,500 ins. 85 00:06:56,500 --> 00:06:56,720 Right. 86 00:06:57,280 --> 00:07:03,070 So you might get the glance through all lots of lots of plug in that. 87 00:07:03,820 --> 00:07:04,580 Lots of lot. 88 00:07:04,610 --> 00:07:13,060 And that includes the, you know, and the related web of Windows, Microsoft, you know, Cisco, Juniper 89 00:07:13,060 --> 00:07:17,540 fooding and all the platform you talk about whatever the they're in the industry. 90 00:07:18,340 --> 00:07:20,050 That's the beauty of the scanner. 91 00:07:20,650 --> 00:07:28,720 Whatever bit of whatever we can really expect in any commercial, you know, commercial kind of a tool, 92 00:07:28,720 --> 00:07:36,410 any kind of plug ins that they are available, which defeats basically you can find all of them with 93 00:07:36,430 --> 00:07:40,020 the open scan of the open vast, basically. 94 00:07:40,030 --> 00:07:40,360 Sorry. 95 00:07:41,140 --> 00:07:48,850 Now, once this gets completed, you know, you get to see a message saying that, you know, your user, 96 00:07:49,060 --> 00:07:55,150 a user admin user, has been created and you actually have to copy this password. 97 00:07:56,480 --> 00:07:58,910 You you go sorry. 98 00:08:00,040 --> 00:08:07,990 So you actually have to copy this password and note it down somewhere, so I'll make a note and my. 99 00:08:08,590 --> 00:08:10,740 All right, so you can see the password. 100 00:08:11,080 --> 00:08:14,170 Let's quickly check the status. 101 00:08:16,350 --> 00:08:23,500 So once again, just to make sure we have got everything right. 102 00:08:24,120 --> 00:08:30,690 Well, check the status of our GBN, the open bus scanner. 103 00:08:32,390 --> 00:08:41,060 But Eckermann GVN, Jetseta, and this will give you an idea, what is the status of your GBM? 104 00:08:41,390 --> 00:08:41,830 All right. 105 00:08:43,070 --> 00:08:53,630 So it takes the step one usually earlier we even used to, you know, done up the radio and radio database 106 00:08:53,630 --> 00:08:57,570 as well manually, but now it has been automated completely. 107 00:08:58,040 --> 00:08:58,450 All right. 108 00:08:58,460 --> 00:08:59,430 So that's wonderful. 109 00:08:59,870 --> 00:09:05,310 You could see the end that GBM 11 installation is OK. 110 00:09:05,840 --> 00:09:08,330 That means we are good to access. 111 00:09:09,840 --> 00:09:11,130 To our. 112 00:09:13,180 --> 00:09:14,700 Scanner, the border. 113 00:09:14,920 --> 00:09:18,450 All right, so let's go to the scanner. 114 00:09:19,630 --> 00:09:21,040 And let's go to the browser. 115 00:09:22,280 --> 00:09:30,080 And on the browser, you know, all right, you have to wait for a while and. 116 00:09:32,170 --> 00:09:32,650 So. 117 00:09:35,480 --> 00:09:46,910 Then you are that you are supposed to go at the local horse, but the board sorry, local with the port. 118 00:09:48,400 --> 00:09:51,520 93, 92. 119 00:09:51,720 --> 00:09:52,100 All right. 120 00:09:54,050 --> 00:09:56,300 And ask you to. 121 00:09:58,650 --> 00:10:00,210 Accept the risk because. 122 00:10:01,560 --> 00:10:03,120 This is a difficult. 123 00:10:05,740 --> 00:10:13,300 All right, so you use the advent as the user and password that you have copied. 124 00:10:20,060 --> 00:10:26,240 OK, so we just copied the password and pasted or here, let's log in. 125 00:10:27,110 --> 00:10:27,860 Lovely. 126 00:10:28,610 --> 00:10:29,390 You see this? 127 00:10:29,760 --> 00:10:31,680 It was that easy. 128 00:10:32,360 --> 00:10:37,250 And this is the dashboard of open bar scanner. 129 00:10:37,850 --> 00:10:40,280 This is the front and dashboard. 130 00:10:40,940 --> 00:10:45,110 And over here you see the option of task reports. 131 00:10:45,490 --> 00:10:51,710 You know, if you remember I told you about there's nothing, you know, scans and everything. 132 00:10:52,460 --> 00:10:54,830 Everything starts with this dust, OK? 133 00:10:55,970 --> 00:11:04,040 You have to create the task in order to schedule or create or conduct your scans. 134 00:11:04,040 --> 00:11:07,700 You know, where there are multiple options, multiple features. 135 00:11:07,710 --> 00:11:09,130 It's going to be a lot of fun. 136 00:11:09,560 --> 00:11:14,820 Will, you know, will jump to the basic scanning option as well as we go ahead. 137 00:11:15,260 --> 00:11:23,150 Now, remember one thing, guys, you might see sometime, you know, your scanner gets stuck and you 138 00:11:23,150 --> 00:11:31,490 might see an error saying that, you know, your green born security assistant is not really running 139 00:11:31,520 --> 00:11:32,210 or something. 140 00:11:32,240 --> 00:11:37,490 So in that case, you might see an error when you put the command check status. 141 00:11:38,270 --> 00:11:39,800 That's going to be pretty easier. 142 00:11:40,130 --> 00:11:47,430 If you see that error, you have to manually install that software package basically by making use of 143 00:11:47,430 --> 00:11:49,670 a command pseudo. 144 00:11:51,330 --> 00:11:58,140 Pseudo EBD installed, that's altogether different packets, so you can make use of sadoway between 145 00:11:58,160 --> 00:12:06,840 Stal Green Board Security Assistance, OK, and one supercenter. 146 00:12:06,860 --> 00:12:11,150 It's going to be installed, but in our case, everything is good. 147 00:12:11,180 --> 00:12:14,330 So we have we have nothing to worry about it. 148 00:12:14,450 --> 00:12:14,850 All right. 149 00:12:15,560 --> 00:12:23,480 And even even if you know, there is if you let's say you forget to copy the password the way we have 150 00:12:23,480 --> 00:12:24,070 got it right. 151 00:12:24,410 --> 00:12:27,230 So we have copied the password, put it in the notepad sometime. 152 00:12:27,230 --> 00:12:34,550 If you forgot to create or copy it and keep it safe, you can make use of a command and you can generate 153 00:12:34,550 --> 00:12:35,420 a new one as well. 154 00:12:35,630 --> 00:12:45,220 But that you have to run a GBM comment so you can do DBM minus user for the admin privilege. 155 00:12:45,710 --> 00:12:47,000 And what do you want to do? 156 00:12:47,010 --> 00:12:48,710 You want to create a new password. 157 00:12:48,710 --> 00:12:55,790 So new password lets you know of the password saying that maybe admin one, two, three, you can set 158 00:12:55,790 --> 00:12:56,360 it manually. 159 00:12:56,390 --> 00:12:57,860 ASBA you got that. 160 00:12:58,160 --> 00:13:03,150 So you can manually create your password and keep it the way you want it. 161 00:13:03,500 --> 00:13:03,850 All right. 162 00:13:04,070 --> 00:13:09,320 So that's all for the installation and the next lecture will catch you for the basics. 163 00:13:09,530 --> 00:13:10,660 Again, thank you so much.