1
00:00:00,240 --> 00:00:05,130
OK, so now let's go through actually how to set up our virtual networks, sewing machines will be able

2
00:00:05,130 --> 00:00:09,990
to talk to each other and our laptops can actually talk to our virtual machines.

3
00:00:11,760 --> 00:00:15,120
So what you're going to want to do on a callisthenics machine, in a virtual box window, you're going

4
00:00:15,120 --> 00:00:20,910
to want to right click and again click on settings and then click on network and change the attached

5
00:00:20,910 --> 00:00:24,980
option, the attached to option to host on the right.

6
00:00:25,470 --> 00:00:31,620
So this is going to do is going to make a career as a private network with just the host so that, you

7
00:00:31,620 --> 00:00:37,860
know, your host has an IP address and your kind of little exposure has an IP address and they can talk

8
00:00:37,860 --> 00:00:38,320
to each other.

9
00:00:38,340 --> 00:00:38,700
OK.

10
00:00:40,320 --> 00:00:45,630
So now let's go through the process of setting up our target machines, so we're going to set up to

11
00:00:45,630 --> 00:00:47,040
target machines right now.

12
00:00:47,670 --> 00:00:53,590
The first machine is called Métis Floatable and the second one is called O.W. Aspey Broken Webapp Machine.

13
00:00:53,730 --> 00:00:58,590
So these are virtual machines that are made vulnerable on purpose, you know, for educational and training

14
00:00:58,590 --> 00:01:01,080
purposes, you know, like this class.

15
00:01:01,230 --> 00:01:04,650
So we're going to use them as our proving grounds or training grounds in a sense.

16
00:01:05,190 --> 00:01:08,160
So you can download them from these two links right here.

17
00:01:09,150 --> 00:01:13,260
And you're going to notice that they come in the form of MBK files.

18
00:01:13,410 --> 00:01:17,670
And that just means that, you know, we just have to select this file as the hard drive when we create

19
00:01:17,670 --> 00:01:20,730
the virtual machine, if you remember that option during the process.

20
00:01:20,980 --> 00:01:26,010
So now actually go through the process of doing one of these sounds and click on the link.

21
00:01:28,610 --> 00:01:32,390
I'm going to click on Download, it's going to say download.

22
00:01:32,690 --> 00:01:36,620
Surely you don't have to click any links of buttons that'll do it for you.

23
00:01:36,860 --> 00:01:37,700
So don't worry.

24
00:01:41,170 --> 00:01:49,870
So now let's see, let's put this on the desktop, it's safe and it's going to take a little bit of

25
00:01:49,870 --> 00:01:50,860
time to download.

26
00:01:51,070 --> 00:01:54,430
So once that is downloaded, we're going to come back and we're going to extract it.

27
00:01:54,700 --> 00:01:56,810
OK, so now we have a zip code downloaded.

28
00:01:57,010 --> 00:01:58,750
So I have seven zip results.

29
00:01:58,750 --> 00:01:59,350
I can just right.

30
00:01:59,350 --> 00:02:01,120
Click here to extract here.

31
00:02:01,330 --> 00:02:07,390
And it's going to extract out the Dabic file, as you can see right there into this folder, metastable

32
00:02:07,390 --> 00:02:09,150
two Dash Lennix.

33
00:02:09,370 --> 00:02:13,030
OK, so that's what a VMT K file is going to be that we're going to want.

34
00:02:13,540 --> 00:02:17,950
So once this is done in a couple of seconds, there we go.

35
00:02:18,130 --> 00:02:19,690
We're going to open a virtual box.

36
00:02:20,240 --> 00:02:28,140
We're going to click on new I'm going to name it Métis Loadable Spolar.

37
00:02:28,270 --> 00:02:29,350
I think so.

38
00:02:30,010 --> 00:02:32,110
Change the title to Lennix.

39
00:02:33,040 --> 00:02:41,110
I just choose the next two point six kernel version and you can keep these as the defaults because these

40
00:02:41,110 --> 00:02:43,430
are these machines are for performance, so it doesn't matter.

41
00:02:43,870 --> 00:02:45,310
So right here is the option.

42
00:02:45,310 --> 00:02:48,730
I was talking about using existing virtual hard disk.

43
00:02:48,760 --> 00:02:52,030
OK, so you're going to click the little folder right here.

44
00:02:52,660 --> 00:02:59,770
We're going to click and we're going to do a desktop mislabel two and then choose this file right here.

45
00:03:01,570 --> 00:03:06,130
And I see you click on it, Double-Click, on a crate.

46
00:03:07,120 --> 00:03:10,030
And now we have a major splitted machine with the right click.

47
00:03:10,030 --> 00:03:12,550
It hit start, no start.

48
00:03:14,230 --> 00:03:18,610
And it's going to boot up just like, you know, just like the counter machine did.

49
00:03:18,640 --> 00:03:21,250
But it's a lot faster because it's already a creative machine.

50
00:03:21,490 --> 00:03:22,630
We're just booting it up.

51
00:03:22,640 --> 00:03:30,370
OK, and then when you get into the main screen, it'll give you the login information if you want.

52
00:03:30,550 --> 00:03:38,050
But really, we just want this machine up and we want to go through and actually do then the host only

53
00:03:38,050 --> 00:03:40,440
network settings like we would like for the coffee machine.

54
00:03:40,600 --> 00:03:42,220
So let's walk through that really quickly.

55
00:03:45,950 --> 00:03:56,480
So for the coffee machine, right, click settings, network change from that to host only adapter,

56
00:03:56,490 --> 00:03:56,830
right.

57
00:03:58,190 --> 00:04:00,980
And we're going to want to do the same thing for metastable.

58
00:04:01,550 --> 00:04:14,440
So Settings Network and then host only clicked the wrong one, host only and then we're good to go.

59
00:04:14,570 --> 00:04:21,110
And then you want to do the exact same thing for the Broken Web Apps VM and then we have our target

60
00:04:21,110 --> 00:04:23,330
set up and they can all talk to each other.

61
00:04:24,650 --> 00:04:27,200
OK, so now this next step is optional.

62
00:04:27,420 --> 00:04:30,320
You can do this if you have the capability to do so.

63
00:04:30,590 --> 00:04:34,550
But we're going to also want to set up an active directory domain.

64
00:04:34,790 --> 00:04:38,480
Whether you do it or not doesn't really matter because I'm still going to showcase the attacks.

65
00:04:38,480 --> 00:04:39,270
It is the actuator.

66
00:04:39,320 --> 00:04:46,550
I do the main but the main step, the main reason for doing this one as well is just to give you a better

67
00:04:46,550 --> 00:04:51,980
idea of what you actually see in the real world if you would have become an ethical hacker or a penetration

68
00:04:51,980 --> 00:04:52,450
tester.

69
00:04:53,210 --> 00:04:58,970
So we're going to set up a domain controller as running Windows seven, twenty, twenty, twelve and

70
00:04:58,970 --> 00:05:03,010
a Windows 10 client that's going to join that domain now.

71
00:05:03,440 --> 00:05:05,980
And like I said, I'm going to showcase some attacks.

72
00:05:05,980 --> 00:05:07,580
So that's why we're going to want to do this.

73
00:05:07,850 --> 00:05:13,740
So I have these links right here that you can go to where you can download the ISO files and just install

74
00:05:13,740 --> 00:05:17,240
the virtual machines, just like the other ones that we did.

75
00:05:18,170 --> 00:05:23,360
We used ISO file to install it, kind of like the Sky Linux VM and then you just setting up from scratch.

76
00:05:23,360 --> 00:05:28,130
And I'm going to walk you through some of the settings for actually setting up the domain is pretty

77
00:05:28,130 --> 00:05:28,720
quick.

78
00:05:28,760 --> 00:05:31,910
The project is less than like 30 minutes to do it and then we'll be good to go.

79
00:05:33,800 --> 00:05:38,190
OK, so now we're just going to go to the basic set up for Windows Services and 12.

80
00:05:38,420 --> 00:05:43,940
So when you get a problem with this screen is to start now, it's going to start the set up process.

81
00:05:44,180 --> 00:05:50,330
So you want to choose a second one where you're going to choose the server with a GUI or else you're

82
00:05:50,330 --> 00:05:56,990
just going to have a command line except the license terms, custom install.

83
00:05:57,200 --> 00:06:03,320
You're going to choose right here and click on next and then it's going to go to the install process

84
00:06:03,320 --> 00:06:06,140
is pretty is pretty pain free.

85
00:06:06,380 --> 00:06:10,880
So just go through this and get back to setting up Barg.

86
00:06:11,080 --> 00:06:15,290
OK, so once that process finishes, there's just going to reboot the virtual machine and you're going

87
00:06:15,290 --> 00:06:19,850
to have the Windows logo here and it's going to be loading is going to boot up for the first time.

88
00:06:20,060 --> 00:06:24,410
Then it's going to go through some initial setup and then we're going to start to set up a domain controller.

89
00:06:24,800 --> 00:06:30,170
OK, so we're setting the password for the administrative account on the domain controller.

90
00:06:30,170 --> 00:06:31,850
So super secure password.

91
00:06:31,850 --> 00:06:33,170
That's not the password.

92
00:06:34,370 --> 00:06:35,360
The password.

93
00:06:37,290 --> 00:06:40,500
Finish and now we have a log in.

94
00:06:41,010 --> 00:06:49,680
So you're going to want to send a control or delete, appreciate and, uh, answer Chudleigh right there

95
00:06:50,100 --> 00:06:51,930
putting a super secret password

96
00:06:55,530 --> 00:06:57,200
that's going to lock you in for the first time.

97
00:06:58,660 --> 00:07:04,000
And it's just like any other computer, when you first log in, still in some setup stuff might be a

98
00:07:04,000 --> 00:07:04,860
little bit slow.

99
00:07:05,200 --> 00:07:09,130
But what you're going to see is when a server, there's always something called server manager that

100
00:07:09,130 --> 00:07:10,250
pops up automatically.

101
00:07:10,750 --> 00:07:19,300
And this is where you're going to do a lot of the initial, you know, setup for your domain controller

102
00:07:19,570 --> 00:07:21,810
or just in general, we're going to say, yes, we're here.

103
00:07:21,970 --> 00:07:26,470
So we're going to let that load up and then we're going to be able to set up our domain.

104
00:07:26,620 --> 00:07:31,270
OK, so from the dashboard, the first thing that we're going to want to do is configure this local

105
00:07:31,270 --> 00:07:31,830
server.

106
00:07:32,020 --> 00:07:35,260
So one thing I like to do is change the computer name.

107
00:07:35,470 --> 00:07:37,780
So going there, click change.

108
00:07:37,990 --> 00:07:44,320
I already have it here, but like domain controller, Labbe DC, whatever you want it to be.

109
00:07:44,320 --> 00:07:47,350
Unfertilised DC Fellag domain controller.

110
00:07:47,740 --> 00:07:53,130
And I'm going to hit OK, and then it'll ask you if you want to restart.

111
00:07:53,140 --> 00:07:55,850
So the changes will apply but it'll have to do that right now.

112
00:07:55,870 --> 00:07:56,880
We just restart later.

113
00:07:56,890 --> 00:07:57,840
It's not really we do.

114
00:07:58,120 --> 00:08:02,770
One of the things I like to do is make sure that I know what the IP address from my devices are.

115
00:08:02,770 --> 00:08:09,700
So you can go in here and you can actually give me a static IP address so that you always have this

116
00:08:09,700 --> 00:08:11,200
IP address, which is on the network.

117
00:08:11,210 --> 00:08:19,750
So I think our our address is 192000 one six eight, five, six, and then we can give it whatever other

118
00:08:20,980 --> 00:08:21,880
address that we want.

119
00:08:21,890 --> 00:08:24,690
So let's just make it 20, for instance.

120
00:08:24,970 --> 00:08:28,760
And I believe that is going to get all of them automatically or subnet mask that we want.

121
00:08:28,780 --> 00:08:35,500
So remember, this is like a 24 network, so there's only two hundred and fifty six possible addresses

122
00:08:35,500 --> 00:08:36,040
for this one.

123
00:08:38,650 --> 00:08:45,970
So we're going to hear, OK, on that X this stuff, and then that's some of the initial stuff that

124
00:08:45,970 --> 00:08:46,700
we need to do.

125
00:08:46,720 --> 00:08:53,020
So now we're going to want to do is go through and set up.

126
00:08:53,710 --> 00:08:56,550
We're going to add up our roles and features for to make a choice.

127
00:08:56,570 --> 00:08:59,680
We have to make this, you know, a domain control their first.

128
00:09:01,690 --> 00:09:05,070
So you're going to click on and you're going to click there.

129
00:09:05,170 --> 00:09:07,540
And before you begin, just skip this page.

130
00:09:07,690 --> 00:09:13,030
If you don't want to see it again, and then we're going to do role based or feature based installation.

131
00:09:13,410 --> 00:09:15,550
We'll get you this server right here.

132
00:09:15,940 --> 00:09:17,180
Don't worry of the IP address.

133
00:09:17,200 --> 00:09:18,520
There's no way about it.

134
00:09:18,520 --> 00:09:21,760
That'll change when the computer restarts to the static one that we chose.

135
00:09:24,640 --> 00:09:30,020
So now we're going to want to check active directory domain services, Indianness server.

136
00:09:30,250 --> 00:09:38,140
So it's OK for us to do our domain services and then also DNS server.

137
00:09:38,230 --> 00:09:45,310
OK, and that's all we're going to need for now for what we're going to be doing down here next.

138
00:09:49,010 --> 00:09:57,020
And then just hit next on this right here, sheepherding next, and we should be good to go, and then

139
00:09:57,170 --> 00:10:02,540
we're just going to to restore Mattingley just, you know, to restart if we need to hit a store and

140
00:10:02,540 --> 00:10:03,950
it's going to install those features.

141
00:10:03,950 --> 00:10:08,130
And now this is going to be our domain controller.

142
00:10:08,750 --> 00:10:13,520
So now once this restarts, we're going to go through some more settings to actually, you know, set

143
00:10:13,520 --> 00:10:19,040
up the domain and promote it out to other devices on the network so that they can join the network,

144
00:10:19,550 --> 00:10:22,040
join the domain that we just never going to be creating.

145
00:10:23,240 --> 00:10:25,760
OK, so now we're going to go ahead and get a domain.

146
00:10:25,760 --> 00:10:26,990
So we're going to click right here.

147
00:10:26,990 --> 00:10:32,480
And it's a little flag with the little yellow triangle that looks like an arrow click on this server

148
00:10:32,480 --> 00:10:33,590
to a domain controller.

149
00:10:33,920 --> 00:10:39,650
So then now we're going to click on Add a new Forras right here when the option is available.

150
00:10:40,250 --> 00:10:46,410
This is going to allow us to name our domain and actually go through the creation process for our domain.

151
00:10:46,820 --> 00:10:48,980
So give it a minute and it'll pop up.

152
00:10:49,160 --> 00:10:51,650
I just rebooted the computer, so it's a little bit slow.

153
00:10:52,250 --> 00:10:54,020
OK, so another option is available.

154
00:10:54,030 --> 00:10:55,680
So just click on ADD New Force.

155
00:10:55,700 --> 00:11:04,250
I'm going to name this ethical hacking lab that's going to be the name of my domain that I'm about to

156
00:11:04,250 --> 00:11:04,770
create.

157
00:11:05,960 --> 00:11:10,680
So next and then we're going to want to put a password right here.

158
00:11:11,960 --> 00:11:14,840
Don't forget the password just in case you never know.

159
00:11:17,240 --> 00:11:18,380
Keep it simple.

160
00:11:18,770 --> 00:11:23,780
And that what you're going to click through, everything else is populating all these initial settings

161
00:11:23,780 --> 00:11:24,480
for our domain.

162
00:11:24,830 --> 00:11:25,930
We're going to hit next.

163
00:11:26,120 --> 00:11:28,030
It's going to check for any prerequisite.

164
00:11:28,430 --> 00:11:32,070
It's going to take those prerequisites for any issues or areas that we might run into.

165
00:11:32,390 --> 00:11:37,200
So it's verifying that, you know, we're able to make this server the domain controller.

166
00:11:37,580 --> 00:11:39,850
So to give this a minute will verify.

167
00:11:40,640 --> 00:11:43,180
You can pretty much ignore these errors.

168
00:11:43,190 --> 00:11:44,780
I wouldn't worry about it too much.

169
00:11:46,700 --> 00:11:48,410
So let's go ahead and install.

170
00:11:52,740 --> 00:11:58,060
And this is going to go through the process of creating our domain and making this the domain controller.

171
00:11:59,190 --> 00:12:02,130
So let's go ahead and let this lower, then we can determine next steps.

172
00:12:02,610 --> 00:12:07,620
OK, so now we're going to have to restart the computer because we did install, you know, active directory

173
00:12:07,620 --> 00:12:08,400
service like.

174
00:12:10,330 --> 00:12:13,280
And then after we do that, we should be good to go.

175
00:12:13,300 --> 00:12:18,490
So one of the things we're going to want to do is that we're going to want to create an actor director

176
00:12:18,820 --> 00:12:19,990
or we can create a couple.

177
00:12:20,530 --> 00:12:26,050
But really right now, we need to create one for when we do add the Windows 10 machine to the domain.

178
00:12:27,280 --> 00:12:32,050
So we're going to go ahead and open up active directory.

179
00:12:32,350 --> 00:12:33,390
So let's see.

180
00:12:34,220 --> 00:12:36,960
We should be able to type it in here and it should come up.

181
00:12:37,690 --> 00:12:38,940
Give it a minute.

182
00:12:38,950 --> 00:12:40,990
Actor, director, use the computers.

183
00:12:41,500 --> 00:12:42,750
So we're going to open that up.

184
00:12:45,990 --> 00:12:48,460
Actually gave this thing rams a little slow.

185
00:12:49,880 --> 00:12:57,220
OK, so now an ethical this is ah so you see that we are a domain here and we're going to click on users

186
00:12:58,600 --> 00:12:59,470
and then we just right.

187
00:12:59,470 --> 00:13:05,960
Click anywhere new user and we give her name.

188
00:13:05,980 --> 00:13:07,510
The name is Paw.

189
00:13:10,610 --> 00:13:13,850
Victim, you know, you don't really have to give it a name if you don't want to.

190
00:13:14,030 --> 00:13:14,930
You might have to actually.

191
00:13:15,170 --> 00:13:19,320
So put your name full name for victim use the login name.

192
00:13:19,370 --> 00:13:24,170
That's a poor victim again.

193
00:13:24,500 --> 00:13:29,000
And this is probably saying, you know, that's the law line for this domain.

194
00:13:30,110 --> 00:13:31,580
And that's their login username.

195
00:13:31,580 --> 00:13:32,720
Pretty much so.

196
00:13:33,500 --> 00:13:35,630
OK, next, we're going to have a password.

197
00:13:36,230 --> 00:13:37,460
Uh, let's see.

198
00:13:37,460 --> 00:13:41,350
Just any password, really, obviously keep it a little bit simple.

199
00:13:41,360 --> 00:13:47,180
So just, I don't know, password and then password.

200
00:13:50,380 --> 00:13:56,020
And I'm not going to make them change you when a login for the first time and I'm going to make it so

201
00:13:56,020 --> 00:14:00,280
that they can't change their password and that it never expires.

202
00:14:00,310 --> 00:14:00,930
There we go.

203
00:14:01,330 --> 00:14:01,780
Perfect.

204
00:14:03,010 --> 00:14:04,390
And they finish.

205
00:14:06,040 --> 00:14:08,610
OK, I guess that the some complexity requirements.

206
00:14:08,610 --> 00:14:14,450
So, see, uh, one exclamation point there is I should make it better.

207
00:14:15,120 --> 00:14:16,450
I should point.

208
00:14:17,470 --> 00:14:18,110
There we go.

209
00:14:18,160 --> 00:14:24,870
And now we have a domain account on here for that machine when we do create it.

210
00:14:25,450 --> 00:14:28,120
And now then we're going to be good to go.

211
00:14:28,690 --> 00:14:34,420
OK, so once you get through the initial Windows 10 set up, you can choose this option right here,

212
00:14:34,420 --> 00:14:35,980
domain join instead.

213
00:14:36,280 --> 00:14:41,360
And it's going to allow us to join the domain that we just created.

214
00:14:42,130 --> 00:14:43,540
So now we need to put in a name.

215
00:14:43,540 --> 00:14:51,580
So, you know, we know that this is a victim, of course, and we're going to make a password for them,

216
00:14:51,860 --> 00:14:53,650
uh, just for.

217
00:14:53,920 --> 00:14:55,660
And I would just make it password.

218
00:14:58,380 --> 00:15:07,350
One exclamation point, which make it that one more time, and this is like the local account for the

219
00:15:07,350 --> 00:15:10,680
computer and it makes you do all this security stuff.

220
00:15:10,680 --> 00:15:11,500
So go ahead and do that.

221
00:15:11,520 --> 00:15:12,470
I'm going to get to it.

222
00:15:13,320 --> 00:15:16,950
So when you get this green, you just hit acceptor, turn off some of this stuff.

223
00:15:16,950 --> 00:15:22,380
Like I mean, if you don't want all this stuff on which you probably don't, just go ahead and turn

224
00:15:22,380 --> 00:15:27,060
it off, turn all of them off and accept.

225
00:15:30,510 --> 00:15:35,820
And then was probably going to load us into our screens soon and then we can do our initial set is very

226
00:15:35,820 --> 00:15:42,330
quick with this one, which is going to change the hostname, give it a static IP address and joined

227
00:15:42,330 --> 00:15:42,900
the domain.

228
00:15:43,350 --> 00:15:49,080
OK, so once you have Windows 10 loaded up and you go through, you know, all the basic, you know,

229
00:15:49,080 --> 00:15:55,680
initial startup settings for Windows 10, the what we're going to do here is very, very quick.

230
00:15:56,310 --> 00:15:59,990
So what we're going to do is we're going to change your IP address.

231
00:16:00,300 --> 00:16:02,400
So what you can do is right.

232
00:16:02,400 --> 00:16:06,300
Click on this icon right here, the Internet settings.

233
00:16:08,280 --> 00:16:11,130
Ethernet change adapter options.

234
00:16:13,230 --> 00:16:21,180
Right, click here, properties, and we're going to double click where you see I IPV for Internet Protocol

235
00:16:21,180 --> 00:16:26,190
Version four and we're going to give it a specific address to use for the IP address.

236
00:16:26,200 --> 00:16:29,790
So nine to one six eight.

237
00:16:29,910 --> 00:16:31,650
OK, it's not working.

238
00:16:31,950 --> 00:16:39,510
One, two one six eight five, six, then dot twenty one.

239
00:16:39,660 --> 00:16:40,560
That's what it's going to be for.

240
00:16:40,560 --> 00:16:45,600
This one is going to automatically give us a sound mass that we want and we're going to keep the default

241
00:16:45,600 --> 00:16:46,740
gateway to where it is.

242
00:16:46,920 --> 00:16:52,520
And then we're also going to set the DNS server as the domain controller.

243
00:16:53,130 --> 00:16:57,780
This is going to allow us to connect that to the domain so that twenty.

244
00:16:58,440 --> 00:16:59,010
Here we go.

245
00:16:59,490 --> 00:17:02,670
So now what we can do is we can open up a command prompt.

246
00:17:05,740 --> 00:17:10,970
And then we can try to see if we can ping our domain, so let's see what happens.

247
00:17:10,990 --> 00:17:12,490
So open a command prompt.

248
00:17:12,970 --> 00:17:21,500
So Ping, remember, Meile was called Ethical Hacking Lab and bam, we can pick the domain.

249
00:17:21,520 --> 00:17:23,230
So that means that we can join.

250
00:17:23,680 --> 00:17:28,360
OK, so now let's actually go through the process of joining the domain now that we know that we can

251
00:17:28,360 --> 00:17:29,120
connect to it.

252
00:17:29,350 --> 00:17:32,890
So let's go over here and open up our control panel.

253
00:17:34,060 --> 00:17:36,240
We're going to click on a system and security.

254
00:17:36,760 --> 00:17:41,560
We're going to click on a system and then we're going to click on change settings right here.

255
00:17:41,890 --> 00:17:51,350
And it's going to allow us to change our name on the computer as well so we can change Windows 10 Dash

256
00:17:51,430 --> 00:17:54,790
Target and we're going to join the domain.

257
00:17:55,030 --> 00:18:01,690
Click the box right here at the Code Hacking Lab..

258
00:18:01,960 --> 00:18:02,660
There we go.

259
00:18:02,710 --> 00:18:03,940
That's the name of our domain.

260
00:18:04,540 --> 00:18:06,000
Enter this here.

261
00:18:06,010 --> 00:18:07,150
OK, right here.

262
00:18:07,160 --> 00:18:09,730
That's how big of a deal is that bio's name?

263
00:18:10,030 --> 00:18:17,500
And now it's going to pop up with a box that's going to ask us to input administrative credentials.

264
00:18:17,770 --> 00:18:21,900
So this is whatever the admin credential you set, you know, on the domain controller.

265
00:18:22,120 --> 00:18:23,680
So let's go ahead and try that out now.

266
00:18:30,630 --> 00:18:32,220
Super secret password.

267
00:18:37,670 --> 00:18:46,050
Now we're now on the domain, so we're good to go, so we hit OK, and now we have a domain where we

268
00:18:46,050 --> 00:18:46,150
can.

269
00:18:46,210 --> 00:18:50,540
So what we're going to do is we're going to have to worry about that.

270
00:18:50,780 --> 00:18:52,390
So we have to restart our computer.

271
00:18:52,580 --> 00:19:00,230
And what we're going to do is we're going to log in to the computer with the poor victim account that

272
00:19:00,230 --> 00:19:00,800
we created.

273
00:19:01,760 --> 00:19:06,100
OK, so when once you computers restarted, you should be a member of the domain.

274
00:19:06,950 --> 00:19:09,370
So we're going to pick our other users.

275
00:19:09,410 --> 00:19:11,210
I was going to say sign into ethical.

276
00:19:11,210 --> 00:19:13,660
That's the ethical hacking domain.

277
00:19:14,990 --> 00:19:16,490
So what we're going to do.

278
00:19:18,960 --> 00:19:29,400
Let's see, poor Victor, and then we're going to put in the password, I should sign it into the domain.

279
00:19:34,050 --> 00:19:40,380
And it's going to be an initial log in for the domain, so it might take a little bit of time and it's

280
00:19:40,380 --> 00:19:44,460
going to do this right here, even though we were logged in before, because now we're logging in with

281
00:19:44,460 --> 00:19:45,450
the domain account.

282
00:19:45,480 --> 00:19:51,300
OK, so once all this stuff is done, you're pretty much good to go and you have to remain together

283
00:19:51,630 --> 00:19:54,660
and we've got to be able to use it when we start attacking our networks.

284
00:19:54,960 --> 00:19:59,250
OK, so now that we have a lab set up and everything is supposedly on the same network, we can go ahead

285
00:19:59,250 --> 00:20:01,550
and test connectivity, which we machines.

286
00:20:01,830 --> 00:20:03,750
So you see some screenshots here.

287
00:20:04,050 --> 00:20:10,560
These are showing the command prompt output from when I ran, you know, the IP config.

288
00:20:10,560 --> 00:20:11,830
I have config commands.

289
00:20:11,830 --> 00:20:17,970
So before we do this, just make sure that they're never going to be sitting for each VM is set to host

290
00:20:17,980 --> 00:20:23,790
only mode and then that's going to allow us to test test the connectivity by doing a ping.

291
00:20:23,820 --> 00:20:24,260
All right.

292
00:20:24,750 --> 00:20:33,080
So like I said, you could find the IP address, open up windows and type in IP config or in Mac or

293
00:20:33,080 --> 00:20:33,780
in Linux type.

294
00:20:33,780 --> 00:20:38,370
And I have coffee and the version of the virtual machines that they're Linux.

295
00:20:38,370 --> 00:20:40,440
So use I have to find it.

296
00:20:41,280 --> 00:20:46,590
OK, so now let's actually go through the process of testing connectivity between these and we actually

297
00:20:46,590 --> 00:20:48,030
got that actually works.

298
00:20:50,210 --> 00:21:00,290
So I'm going to open up a command prompt that's IPV and we're going to look for one that says Ethan

299
00:21:00,290 --> 00:21:05,300
and Ethan adapter virtual box host only network.

300
00:21:05,570 --> 00:21:12,980
Some I address from my laptop on that network that is set up is one nine two one six eight five six

301
00:21:13,250 --> 00:21:13,970
dot one.

302
00:21:14,010 --> 00:21:16,640
So now let's go over to our political machine.

303
00:21:17,930 --> 00:21:19,030
I if config.

304
00:21:20,330 --> 00:21:26,540
Now, if your address doesn't start with the same one nine two down one six eight, whatever, as your

305
00:21:27,440 --> 00:21:33,590
host, as your laptop does, try to reboot this because you might need to reboot it after you change

306
00:21:33,590 --> 00:21:34,790
the network adapter sitting.

307
00:21:35,000 --> 00:21:36,100
So just keep that in mind.

308
00:21:36,320 --> 00:21:43,430
So now that we know that they're pretty much on the same subnet, I could try to pin one onto the one

309
00:21:43,430 --> 00:21:46,910
six eight, five, six, down one.

310
00:21:48,140 --> 00:21:51,020
And we're getting we're getting responses back.

311
00:21:51,040 --> 00:21:52,980
So now these machines can talk to each other.

312
00:21:53,000 --> 00:21:53,760
So that's awesome.

313
00:21:53,930 --> 00:21:56,120
So just be you guys reference as well.

314
00:21:56,300 --> 00:21:59,630
I want to let you know where you can find other machines that you could practice on.

315
00:21:59,840 --> 00:22:02,300
We'll talk about this a little bit and then, of course, as well.

316
00:22:02,300 --> 00:22:07,640
But I just wanted to, you know, offer this hour right now, if you want to expand your hacking lab

317
00:22:08,330 --> 00:22:13,680
to test on some things as you learn, here are a couple of options where you can get some virtual machines

318
00:22:13,680 --> 00:22:14,300
to test on.

319
00:22:14,480 --> 00:22:20,150
So on Hub Dotcom, they allow you to download virtual machines that were intentionally made vulnerable

320
00:22:20,360 --> 00:22:22,310
so that, you know, you could practice hacking.

321
00:22:22,550 --> 00:22:25,150
We'll warn you that some of them are extremely hard.

322
00:22:25,160 --> 00:22:33,350
So be careful and then also have the box that you use, a site where you can connect directly to a network

323
00:22:33,350 --> 00:22:36,470
of vulnerable machines in an attempt to hack into the practice.

324
00:22:36,710 --> 00:22:42,350
But the catch this Web site is you have to hack into the Web site to actually gain access to us.

325
00:22:42,370 --> 00:22:43,430
That was pretty fun.

326
00:22:43,670 --> 00:22:44,420
Don't cheat.

327
00:22:44,630 --> 00:22:45,100
All right.

328
00:22:45,500 --> 00:22:47,390
OK, so we've got a lab set up.

329
00:22:47,390 --> 00:22:48,320
So what's next?

330
00:22:48,590 --> 00:22:53,010
So before we dive into the first stage of hacking is actually essential that we go over some Linux and

331
00:22:53,010 --> 00:22:53,980
the scripting basics.

332
00:22:54,200 --> 00:23:01,190
So I'm going to quickly go over some Linux fundamentals, Python fundamentals and Basche basics so that

333
00:23:01,190 --> 00:23:04,280
you're ready to encounter and use them when you're hacking.

334
00:23:04,310 --> 00:23:09,350
So I appreciate you guys for watching this section of the course, and I'll see you in the next section.