1
00:00:00,560 --> 00:00:01,910
Hello and welcome.

2
00:00:02,420 --> 00:00:10,850
In this new session, I'm going to show you how to create your own chancre using this bill by using

3
00:00:10,850 --> 00:00:13,070
Metasploit Insight Linux.

4
00:00:13,760 --> 00:00:20,600
So this link here you can get from my notes and I share for you an internal session.

5
00:00:20,990 --> 00:00:21,890
You can go in there.

6
00:00:22,790 --> 00:00:25,600
So we are going to use Metasploit in.

7
00:00:25,880 --> 00:00:28,490
You need to run your Linux.

8
00:00:29,150 --> 00:00:36,430
Avoiding stories from the earlier section, which I taught you how to install Kali Linux and the pacity

9
00:00:36,440 --> 00:00:38,080
login is already shared with you.

10
00:00:38,150 --> 00:00:41,450
Is username is Kali and your password.

11
00:00:43,130 --> 00:00:49,450
So after you are locked in into your calibrator machine, you need to create a folder.

12
00:00:50,650 --> 00:00:54,190
So good of our system here and then.

13
00:00:55,270 --> 00:00:58,150
Yaser Kalihi for the Clingan in California.

14
00:00:58,990 --> 00:01:02,730
Again, we are going to create a new food they chocolates.

15
00:01:03,310 --> 00:01:08,530
So just right click here and select create for the anguish.

16
00:01:08,530 --> 00:01:12,560
Michelle Corey, Schellekens Kinkead.

17
00:01:13,960 --> 00:01:21,820
We are going to start all our Chalco inside this folder and then get on Kapela into how a shareholder

18
00:01:22,420 --> 00:01:24,730
so that we can retrieve it from Windows Machine.

19
00:01:25,780 --> 00:01:26,680
He's a shareholder.

20
00:01:28,600 --> 00:01:31,510
OK, next thing we have to do is start your Metasploit.

21
00:01:31,960 --> 00:01:35,620
So open it, Daniel, by clicking this icon here.

22
00:01:37,330 --> 00:01:37,960
And then.

23
00:01:39,120 --> 00:01:48,840
He can start Metasploit by using the Met F console command and Taseff Council can enter.

24
00:01:55,400 --> 00:01:58,640
And after a while, the console has started.

25
00:01:59,270 --> 00:02:04,490
So the first thing you do is change directory to your new Chalco directory.

26
00:02:05,420 --> 00:02:14,270
You can view your current path by clicking by typing BWT, which stands for preened, looking at a tree

27
00:02:14,540 --> 00:02:15,350
and enter.

28
00:02:15,890 --> 00:02:19,220
And he shows you you are now in just for the Calhoon.

29
00:02:20,870 --> 00:02:22,730
So you are here home.

30
00:02:22,730 --> 00:02:23,270
Currey.

31
00:02:23,660 --> 00:02:25,040
So in sight Kaleo home.

32
00:02:25,970 --> 00:02:29,180
You had your Chako for doveish you've just created.

33
00:02:29,630 --> 00:02:34,580
You can confirm that by typing to content presidenta.

34
00:02:34,970 --> 00:02:37,760
And you see your shellcode.

35
00:02:38,570 --> 00:02:39,680
For those who were here.

36
00:02:40,460 --> 00:02:43,940
So we are going to change into this for them by typing a combined.

37
00:02:45,140 --> 00:02:54,170
Which means Chidiac tree spacebar and a name of these for the struggles that sahd in Presti techi for

38
00:02:54,170 --> 00:02:56,600
auto completion and hit enter.

39
00:02:57,230 --> 00:03:01,100
And now you are in your shuckers folder if you take BWT again.

40
00:03:01,700 --> 00:03:04,310
He didn't tell you or confirmed that he owned this folder.

41
00:03:05,120 --> 00:03:10,580
So whatever Sherko you generate, you can he will now be safe in this shall call folder.

42
00:03:11,840 --> 00:03:12,110
All right.

43
00:03:12,110 --> 00:03:15,620
So this is what your console for Metasploit looks like.

44
00:03:16,100 --> 00:03:19,760
If you need help, you can type his GOP.

45
00:03:20,000 --> 00:03:23,890
H, e, l, b, r, yes, kusuma.

46
00:03:24,950 --> 00:03:29,360
And then you shochu the description of the metasploit.

47
00:03:31,330 --> 00:03:38,500
Framework and also the kauffman's over here, you can see you can take command questionmark for our

48
00:03:38,500 --> 00:03:45,610
menu, which we are looking at nicely, have a menu or you can type in full help his GOP.

49
00:03:46,580 --> 00:03:52,310
To get help, and they were here, you can.

50
00:03:53,830 --> 00:03:55,180
Have commodity commands.

51
00:03:57,770 --> 00:03:58,880
Search for more U.

52
00:04:01,860 --> 00:04:02,940
Did you hear in your comments?

53
00:04:04,230 --> 00:04:06,720
So our show, we wish the comments are useful.

54
00:04:07,230 --> 00:04:14,610
You can also download are the comments from my research session for this far here, which I share with

55
00:04:14,610 --> 00:04:14,850
you.

56
00:04:16,200 --> 00:04:26,610
So the first thing you want to do is to change, to use particular Bill Mordu, you can use if you only

57
00:04:26,610 --> 00:04:33,000
use Batel as you type, and even the more you press it decky for auto completion.

58
00:04:34,070 --> 00:04:35,870
And then if you press them again.

59
00:04:39,630 --> 00:04:42,930
In my assume you and your show or Farinelli, two possibilities.

60
00:04:43,530 --> 00:04:48,820
So if you're not sure which beer you want, he said yes, and you shoot all the fine and then he, too.

61
00:04:49,410 --> 00:05:00,510
But you know that you want this pale, pale windows slash 64 slash haze so we can use Taibe incorrectly.

62
00:05:01,020 --> 00:05:04,280
So here we know no to dismiss this opinion.

63
00:05:04,740 --> 00:05:10,860
You thymine windows have you can press it decky for auto completion.

64
00:05:11,730 --> 00:05:15,600
And then if you don't know which parent windows, what do you want?

65
00:05:15,600 --> 00:05:22,680
You can press the techie again twice and ask you whether you want to listen to an invite possibility.

66
00:05:23,310 --> 00:05:26,130
If you don't know which more you, then you answer yes.

67
00:05:26,760 --> 00:05:31,800
But if you only know that you one particular Modu press end for no here.

68
00:05:32,190 --> 00:05:36,750
And you can just type the name of the menu that you own.

69
00:05:37,140 --> 00:05:43,230
So in this case, the name of the more you than you want Heyst a 64.

70
00:05:43,890 --> 00:05:54,000
This is the more you below Windows 64 slash is so you can just take hex an impressive teki to complete

71
00:05:54,360 --> 00:05:57,420
and then survey type into.

72
00:05:58,460 --> 00:06:05,520
Or you press issue on this, more use there has gone acidify site.

73
00:06:06,370 --> 00:06:07,830
So you want to see better.

74
00:06:07,840 --> 00:06:09,160
You can drag this to the right.

75
00:06:10,120 --> 00:06:18,430
Do I spend with a repeater command by pressing you up, Haruki, and tagging and you have a rookie.

76
00:06:18,730 --> 00:06:26,050
You would go back to the history of their commands and then you present to you re execute in command.

77
00:06:26,680 --> 00:06:29,320
So now you can see a list of this more U.S.

78
00:06:30,030 --> 00:06:31,780
Bay window actually before.

79
00:06:32,170 --> 00:06:33,790
And you have a set here.

80
00:06:34,410 --> 00:06:34,630
Yeah.

81
00:06:34,690 --> 00:06:36,520
No libris messagebox.

82
00:06:37,180 --> 00:06:37,810
Yeah, me too.

83
00:06:37,890 --> 00:06:42,910
Preta buying IPv6 DCPI being checked.

84
00:06:42,970 --> 00:06:50,110
Buying a shell buying shell by injecting a lot too.

85
00:06:50,470 --> 00:06:56,450
So what we are going to generate is the FCC so we can Twitter.

86
00:06:56,470 --> 00:06:58,870
We got the name.

87
00:07:00,720 --> 00:07:04,250
Dress up Iraqis and go back to their command history in time.

88
00:07:04,530 --> 00:07:07,850
Yes, he is an impressive techi for team condition.

89
00:07:08,720 --> 00:07:12,530
Now he can enter and this time he was selected.

90
00:07:12,920 --> 00:07:17,320
And once he has selected this exact Miyu, he comes from this bill.

91
00:07:17,870 --> 00:07:21,080
Windows four, for he was shown in red here.

92
00:07:22,540 --> 00:07:26,450
So the next thing you want to do is to find out the options.

93
00:07:27,040 --> 00:07:33,790
Every Monju you need to specify the parameters for the mind you, those parameters, huckle options.

94
00:07:34,660 --> 00:07:42,820
So to see the options, by the way, just to let you know, if you want a list of commands, you can

95
00:07:42,820 --> 00:07:47,650
get it from here is far, which I share with you in the recession.

96
00:07:47,680 --> 00:07:48,400
You can download.

97
00:07:49,270 --> 00:07:50,740
So this is a list of commands.

98
00:07:50,740 --> 00:07:51,640
Do you need to do?

99
00:07:52,030 --> 00:07:53,020
Just follow the step.

100
00:07:53,080 --> 00:07:55,240
One, two, three, four, five and six.

101
00:07:55,900 --> 00:08:01,690
So presently we have completed step one, step two, know view and to show your options.

102
00:08:02,530 --> 00:08:08,290
So to show you options, for example, you will type this common show options.

103
00:08:08,890 --> 00:08:09,850
So let's do that now.

104
00:08:10,930 --> 00:08:11,470
Sure.

105
00:08:12,430 --> 00:08:15,190
Options enter in your face.

106
00:08:15,190 --> 00:08:16,350
And there are two options.

107
00:08:16,360 --> 00:08:24,550
You need to set the CFD option in the function option, and both are required.

108
00:08:25,510 --> 00:08:28,570
So the CMD is the command string then you want to execute.

109
00:08:29,140 --> 00:08:36,790
So this particular module is that here allows you to create a shellcode, which you can use to run any

110
00:08:36,790 --> 00:08:38,290
program that you want.

111
00:08:38,830 --> 00:08:44,500
So for demonstration purposes, you want to join it and shellcode that can open.

112
00:08:44,500 --> 00:08:49,110
Not that you could also use other programs, for example, calculator.

113
00:08:49,540 --> 00:08:57,970
You if you want a list of the the programs that are running on your Windows computer, you can go to

114
00:08:58,000 --> 00:08:59,560
your Windows computer, see?

115
00:09:00,490 --> 00:09:02,260
You go to Windows folder.

116
00:09:03,600 --> 00:09:04,550
Go to windows.

117
00:09:04,880 --> 00:09:14,990
And then here go to a system data system, Taito, and then here you can list scroll down and look for

118
00:09:14,990 --> 00:09:21,710
some of the programs which which you show can run quite a lot, actually.

119
00:09:22,490 --> 00:09:25,340
So you can just scroll down and look for something you want to try.

120
00:09:26,080 --> 00:09:32,790
See here seeing EIC or you can also try look.

121
00:09:32,810 --> 00:09:33,020
Bet.

122
00:09:34,160 --> 00:09:34,700
You bet.

123
00:09:35,300 --> 00:09:35,560
Yeah.

124
00:09:35,570 --> 00:09:36,650
Magnifies, huh?

125
00:09:37,190 --> 00:09:38,330
And here is not bad.

126
00:09:38,900 --> 00:09:40,180
The spelling is.

127
00:09:40,190 --> 00:09:42,850
And penalty it easy.

128
00:09:43,340 --> 00:09:48,220
OK, so we are going to use shark to launch your pet.

129
00:09:48,960 --> 00:09:52,500
So we're here for the common good.

130
00:09:53,180 --> 00:09:54,890
So the common string is not bad.

131
00:09:54,920 --> 00:09:56,090
How do you set common?

132
00:09:57,020 --> 00:10:05,450
You tell your common set then seemed not that easy.

133
00:10:06,800 --> 00:10:08,360
That's how you set the command.

134
00:10:08,780 --> 00:10:10,520
Then you run your show, go to lunch.

135
00:10:11,300 --> 00:10:15,560
Once you've done this, we have completed this spot here.

136
00:10:16,070 --> 00:10:20,190
You sign here, sets the Yemeni scout.

137
00:10:21,050 --> 00:10:24,980
You can use count or you can use notepad for up to you.

138
00:10:25,310 --> 00:10:26,350
So let's say you in the U.S.

139
00:10:26,820 --> 00:10:28,870
You just take S.D..

140
00:10:29,320 --> 00:10:29,610
Bet.

141
00:10:30,050 --> 00:10:30,930
And to.

142
00:10:33,410 --> 00:10:34,370
So just to.

143
00:10:34,970 --> 00:10:36,770
And now he sees a common set.

144
00:10:37,260 --> 00:10:40,970
He's not back next year Nix's he went to senior function.

145
00:10:41,430 --> 00:10:46,830
I said, function is the history, Tangi, that means how you won your show exit.

146
00:10:47,540 --> 00:10:54,620
So currently it is set to be processed into your Chalco is trained to be run as a process.

147
00:10:55,220 --> 00:11:00,250
But in our example, in our cost, we are using a create transformation.

148
00:11:01,070 --> 00:11:08,890
So if you are using create function, use it as a chess well, so you should to function to be tracked.

149
00:11:09,740 --> 00:11:16,910
So these are all the possible things you can set normally you centric whole process.

150
00:11:17,630 --> 00:11:20,570
So in this case, we are going to set track.

151
00:11:20,600 --> 00:11:23,070
So we just have to set exit,

152
00:11:26,360 --> 00:11:32,300
exit function, space, train design and enter.

153
00:11:33,800 --> 00:11:40,340
And now you see Bowe has been set command has been set back and its information has been sent to track.

154
00:11:41,150 --> 00:11:42,020
Now you want to check.

155
00:11:42,260 --> 00:11:44,780
You can just type set without any parameters.

156
00:11:45,050 --> 00:11:49,820
You enter and then you show you all the things that has been set.

157
00:11:51,200 --> 00:11:59,240
Out of all the here first two compulsory mandatory requirements, you can see Soviet already comply

158
00:11:59,240 --> 00:12:00,080
with this requirement.

159
00:12:00,410 --> 00:12:01,970
And yes, it is, too.

160
00:12:02,630 --> 00:12:04,610
So now we are ready to change it now.

161
00:12:05,960 --> 00:12:13,190
So if you need to have help home, what are the parameters to use for generating?

162
00:12:13,460 --> 00:12:17,890
You can take Jan Gache Hitch, which means Helfer.

163
00:12:18,600 --> 00:12:18,950
Sorry.

164
00:12:18,950 --> 00:12:20,000
Just take Jan.

165
00:12:21,290 --> 00:12:23,490
Jan Page.

166
00:12:23,880 --> 00:12:24,560
Presenter.

167
00:12:25,490 --> 00:12:29,630
And he was showing all your options for generating a chocolate.

168
00:12:30,860 --> 00:12:37,050
The important one is don't care for me that you want to January.

169
00:12:37,700 --> 00:12:40,310
So if you simply act like January

170
00:12:43,220 --> 00:12:50,390
and press enter every January in this kind of shellcode, we have to vaccinate.

171
00:12:52,130 --> 00:12:59,030
Format specifier for using your Internet or some other programs.

172
00:12:59,420 --> 00:13:05,540
If you are going to generally, Schuckert, for using in your binary, then you may not want this.

173
00:13:05,840 --> 00:13:07,280
You might need a growing state.

174
00:13:07,310 --> 00:13:18,880
So over here under RFQ, the option we need to set raw rw RW is on the right.

175
00:13:18,890 --> 00:13:21,770
So we generate again.

176
00:13:22,200 --> 00:13:22,510
Yes.

177
00:13:23,780 --> 00:13:32,660
So for that, we can type generate the F the format extensa format.

178
00:13:32,930 --> 00:13:36,830
And we run raw nix's the output dasho.

179
00:13:38,470 --> 00:13:39,880
Optimise optional.

180
00:13:40,540 --> 00:13:46,330
So if you're doing type any of the optional parameters, then you will not save it to a far.

181
00:13:46,660 --> 00:13:48,700
You just show you in a screen like this.

182
00:13:49,220 --> 00:13:53,230
But if you want to say to a file, you must specify the output file.

183
00:13:53,740 --> 00:14:00,460
So Dasho is for Hapu, far followed by the name of the father.

184
00:14:01,120 --> 00:14:03,700
If you don't specify, you print, you stand out.

185
00:14:04,120 --> 00:14:05,320
So now is your screen.

186
00:14:06,100 --> 00:14:15,300
OK, so Ananya father went out to his car and not back shellcode I.

187
00:14:17,620 --> 00:14:21,060
Oh, you can just put an arm.

188
00:14:24,610 --> 00:14:26,200
Not that the icon.

189
00:14:27,490 --> 00:14:27,740
OK.

190
00:14:28,420 --> 00:14:34,490
She's too young to fake an icon in the resource O'Shannassy so we can back and icon.

191
00:14:35,410 --> 00:14:36,910
You can change the name later.

192
00:14:37,270 --> 00:14:38,710
You can call it anything you want.

193
00:14:38,710 --> 00:14:42,160
But we I'm going to call it my Baglan.

194
00:14:43,210 --> 00:14:44,680
So his presenter.

195
00:14:46,840 --> 00:14:56,610
And now if you go to your folder, you file system for that, you will be able to see and Carly Chilcote's

196
00:14:57,340 --> 00:14:58,870
is your SHAQUAN name.

197
00:15:00,460 --> 00:15:00,820
OK.

198
00:15:01,940 --> 00:15:08,720
So that's how you, Jan Ashaka, when you're finished with fifth generation of the chocolate to this

199
00:15:08,720 --> 00:15:14,840
Metasploit MSF console, you attack the command and presenter.

200
00:15:15,140 --> 00:15:17,870
Now you can shut down your computer before you do that.

201
00:15:18,590 --> 00:15:22,530
Make sure you copy Chalco to your shareholder.

202
00:15:23,060 --> 00:15:27,220
So, yes, Rackley, and copy a shortcut from the shock of order.

203
00:15:27,680 --> 00:15:31,580
Go to your shared folder here and dummy.

204
00:15:31,610 --> 00:15:38,570
In a new folder called Malware, you can create a new folder or malware and then right click in business.

205
00:15:39,740 --> 00:15:46,510
After that, you can go to your Windows computer and open that folder and you should be able to see.

206
00:15:47,450 --> 00:15:54,710
So if I go to my Windows computer now and go to my head for the for Linux, my computer, my Windows

207
00:15:54,710 --> 00:15:55,340
computer.

208
00:15:56,780 --> 00:16:00,000
This Shefford is who we're here in action.

209
00:16:01,310 --> 00:16:04,490
So we open this in the mail array.

210
00:16:05,060 --> 00:16:11,570
I should be able to see the show code, which I showed in my machine to machine.

211
00:16:12,470 --> 00:16:20,540
So in the next video, I will show you how to use this shortcut to create a bill inside the resource

212
00:16:20,540 --> 00:16:23,330
section of your malware.

213
00:16:24,020 --> 00:16:25,550
So that's all for this video.

214
00:16:25,790 --> 00:16:26,960
Thank you for watching.