1
00:00:08,790 --> 00:00:14,670
OK, so the last lecture we finished is setting up callisthenics, our attack machine, and now we're

2
00:00:14,670 --> 00:00:18,210
going to set up our targets, Windows 10 targets.

3
00:00:18,660 --> 00:00:24,960
So if we go to Microsoft Dotcom and then we go to the evil center, we can start the evaluation.

4
00:00:25,310 --> 00:00:25,860
What do we want?

5
00:00:26,310 --> 00:00:27,910
We want Windows 10.

6
00:00:28,110 --> 00:00:35,100
All I did, I went to Microsoft dot com for such nwc for slash evil center.

7
00:00:36,070 --> 00:00:36,450
I clicked.

8
00:00:36,480 --> 00:00:39,000
It started like like Windows.

9
00:00:39,000 --> 00:00:40,980
And then I'm going to choose Windows 10 Enterprise.

10
00:00:42,450 --> 00:00:42,830
All right.

11
00:00:42,840 --> 00:00:44,280
So we get a 90 day eval.

12
00:00:44,280 --> 00:00:48,210
Plenty of time for Elad and we can always be with it if the eval expires.

13
00:00:49,110 --> 00:00:51,630
Click continue putting your name.

14
00:00:55,330 --> 00:00:58,640
So let's put my company data in here and you can just make up this information really.

15
00:00:59,040 --> 00:01:03,390
I mean, obviously try to be accurate, but we don't have a company then, you know, it's kind of hard

16
00:01:03,390 --> 00:01:05,430
to figure out what to put here.

17
00:01:06,340 --> 00:01:07,030
So what am I?

18
00:01:07,060 --> 00:01:10,700
I am the business executive.

19
00:01:11,220 --> 00:01:11,820
That's funny.

20
00:01:12,240 --> 00:01:20,760
I'd say researcher, I'm guess because I don't want spam click continue 64 bit and make sure we get

21
00:01:20,760 --> 00:01:21,450
our language.

22
00:01:24,660 --> 00:01:29,340
OK, so we'll let this download and when it finishes, we'll continue setting up our VM.

23
00:01:29,670 --> 00:01:31,560
All right, so our download finished.

24
00:01:31,890 --> 00:01:36,170
Let's go ahead and run it over to the anwer workstation.

25
00:01:37,230 --> 00:01:41,250
And the first thing I'm going to do is shut down this VM because we don't need a consuming resources

26
00:01:41,250 --> 00:01:42,030
since we're not using it.

27
00:01:47,960 --> 00:01:48,570
All right, cool.

28
00:01:49,130 --> 00:01:56,000
Now, what we can do is we go to file virtual machine next, but we don't point to the disk.

29
00:01:56,000 --> 00:01:58,190
Instead, we say I will install the operating system later.

30
00:01:58,650 --> 00:02:00,890
If you try to install it from the ISO first, it will fail.

31
00:02:01,070 --> 00:02:08,120
So we're going to say next we're going to pick Microsoft Windows 10 64 bit, actually, next.

32
00:02:08,360 --> 00:02:10,880
I'm just going to name this PC one.

33
00:02:12,980 --> 00:02:19,580
Next story is a single file to improve performance next, and I believe everything else looks pretty

34
00:02:19,580 --> 00:02:24,350
good, let's just double check processes and keep it at not for now.

35
00:02:24,380 --> 00:02:25,910
We will change this later.

36
00:02:25,940 --> 00:02:26,920
Everything else looks good.

37
00:02:27,080 --> 00:02:28,160
Close finish.

38
00:02:30,260 --> 00:02:31,790
And we will now create a new folder.

39
00:02:32,030 --> 00:02:33,200
So we'll say right.

40
00:02:33,200 --> 00:02:35,300
Click your folder.

41
00:02:35,480 --> 00:02:39,800
Let's just start this with modern ethical hacking.

42
00:02:42,530 --> 00:02:43,640
Who put public in there?

43
00:02:46,520 --> 00:02:49,040
And then what we'll do is we'll create another subfolder.

44
00:02:50,940 --> 00:03:01,230
Private Irag that under public what we got to make sure it's actually inside of this folder doesn't

45
00:03:01,230 --> 00:03:07,530
look like it is, let's drag it, drag private into modern ethical hacking and then put it under public.

46
00:03:07,770 --> 00:03:08,300
There we go.

47
00:03:08,790 --> 00:03:10,140
Drag PC into private.

48
00:03:11,160 --> 00:03:11,940
Now we're looking good.

49
00:03:13,200 --> 00:03:15,240
So now we just need to make sure we pointed to the ISO.

50
00:03:16,170 --> 00:03:20,370
So I'm going to say that a virtual machine settings go to the key point to the back of the ISO.

51
00:03:21,090 --> 00:03:21,630
Looking good.

52
00:03:21,630 --> 00:03:24,770
Click OK, and it's part of the baby.

53
00:03:29,340 --> 00:03:33,450
So I press any key to boot to the VM control all to escape.

54
00:03:33,450 --> 00:03:36,900
And then I'm going to kill Kelly Axia Kelly when.

55
00:03:38,030 --> 00:03:38,640
All right.

56
00:03:38,640 --> 00:03:45,510
So we'll go through the setup process and we'll just keep all the defaults except the license.

57
00:03:45,840 --> 00:03:53,010
Click next, click the custom install next with a partition and we're off to the races, so we will

58
00:03:53,010 --> 00:03:54,360
come back once this finishes.

59
00:03:55,410 --> 00:03:56,040
Oh, right.

60
00:03:56,040 --> 00:03:58,860
So now we're going to finish this set up.

61
00:03:58,860 --> 00:04:04,320
So we're going to select our region, click into the VM, OK?

62
00:04:04,320 --> 00:04:11,350
They're keyboard use for me at least I don't need a second keyboard, so skip that.

63
00:04:12,150 --> 00:04:12,760
Oh, right.

64
00:04:12,760 --> 00:04:15,630
So now it's going to ask us to sign in.

65
00:04:16,710 --> 00:04:18,810
We're actually not going to use our Microsoft account.

66
00:04:19,020 --> 00:04:21,000
We're going to click one domain, join instead.

67
00:04:23,340 --> 00:04:27,720
And then we're just going to set up the local admin account, so for me, in my case, I'm going to

68
00:04:27,720 --> 00:04:28,260
put Varnay.

69
00:04:28,650 --> 00:04:29,850
You should, of course, put your name.

70
00:04:32,860 --> 00:04:33,220
Right.

71
00:04:33,250 --> 00:04:35,110
I'm just going to put in a default password,

72
00:04:39,490 --> 00:04:45,580
and for the purposes of this lab, I am using an intentionally weak password because we may want to

73
00:04:45,580 --> 00:04:48,370
crack it or exploit it later.

74
00:04:50,020 --> 00:04:50,290
Right.

75
00:04:50,410 --> 00:04:55,150
I mean, the whole purpose of this lab is to learn you don't want to make it something too complicated.

76
00:04:58,230 --> 00:05:02,620
So I'm just entering it like random answers to these security questions, like next.

77
00:05:05,340 --> 00:05:11,280
And then I'm going to opt out of all of the intrusive privacy settings.

78
00:05:13,790 --> 00:05:22,340
Right, cancel no to all those click accept and then we will not use Cortana.

79
00:05:25,190 --> 00:05:29,450
And then we'll let this process complete, so I will come back once this finishes.

80
00:05:29,480 --> 00:05:30,980
It shouldn't take longer than a few minutes.

81
00:05:31,700 --> 00:05:31,880
All right.

82
00:05:31,880 --> 00:05:32,840
I'll see you guys in a little bit.

83
00:05:33,560 --> 00:05:33,950
All right.

84
00:05:33,950 --> 00:05:34,620
So that finished.

85
00:05:34,640 --> 00:05:38,030
I'm going to go ahead and click the start button in the bottom left corner.

86
00:05:39,520 --> 00:05:42,170
I'm just going to type environment variables.

87
00:05:44,850 --> 00:05:47,650
That I'm going to go to the first tab and change the computer name.

88
00:05:50,280 --> 00:05:51,480
To pick one.

89
00:05:54,170 --> 00:05:56,320
Oh, sweet.

90
00:05:57,230 --> 00:06:03,020
That's good, that's installed the Immortal's, we will restart later control alt to exit the VM.

91
00:06:03,200 --> 00:06:08,180
I was going to go to the install the tools, then I'm going to click back into the VM.

92
00:06:09,400 --> 00:06:10,360
Open up, explorer.

93
00:06:12,320 --> 00:06:14,390
And find my DVD, which is right here.

94
00:06:17,030 --> 00:06:23,360
And right, so we're just going to basically next next finish will use the complete installation while

95
00:06:23,360 --> 00:06:30,860
that works, will change the power settings so that the computer doesn't fall asleep on us to use power

96
00:06:30,860 --> 00:06:31,490
plan.

97
00:06:35,490 --> 00:06:41,550
We'll change it to ultimate performance, that should be good because, you know, one of the problems

98
00:06:41,550 --> 00:06:46,220
I've had with these labs is your voice will just go to sleep on you and super annoying because then

99
00:06:46,230 --> 00:06:50,220
you have to wiggle the mouse and, you know, it's really nice when everything just works.

100
00:06:51,330 --> 00:06:52,560
And so that's it for that.

101
00:06:52,570 --> 00:06:54,240
I'm going to actually not restart yet

102
00:06:58,590 --> 00:07:00,180
because we want to install some updates.

103
00:07:05,410 --> 00:07:09,820
And of course, you have maximum flexibility on how you do this, in my case, for my cyber range,

104
00:07:09,830 --> 00:07:11,890
I want it to be as realistic as possible.

105
00:07:11,890 --> 00:07:13,840
So I'm going to update these targets.

106
00:07:14,200 --> 00:07:14,830
If you want.

107
00:07:14,840 --> 00:07:16,390
You can leave them updated.

108
00:07:16,930 --> 00:07:19,390
That way, you know, you can run your metabolite attacks against them.

109
00:07:19,750 --> 00:07:20,500
You can pivot.

110
00:07:20,500 --> 00:07:21,250
You couldn't hack.

111
00:07:21,280 --> 00:07:22,300
It'll be a lot easier.

112
00:07:22,900 --> 00:07:24,380
But, you know, I'm trying to make this realistic.

113
00:07:24,400 --> 00:07:27,040
So that's why I'm updating these these hosts.

114
00:07:27,820 --> 00:07:29,200
So we're going to get these updates run.

115
00:07:30,310 --> 00:07:31,510
This is probably going to take a while.

116
00:07:31,750 --> 00:07:33,310
So I will let this run.

117
00:07:33,310 --> 00:07:36,000
And then once it finishes, I'll come back here and we'll wrap things up.

118
00:07:37,180 --> 00:07:37,890
All right.

119
00:07:37,900 --> 00:07:41,410
So it looks like we finally finished with our updates to see if we can log in.

120
00:07:46,410 --> 00:07:47,610
There anymore updates.

121
00:07:53,070 --> 00:07:55,450
So it looks like we might be up to date completely.

122
00:07:55,500 --> 00:07:56,310
This is pretty cool.

123
00:07:57,750 --> 00:08:00,810
The change, our resolution to a nicer resolution here.

124
00:08:10,870 --> 00:08:13,030
1920 by 10, 80 looks pretty good.

125
00:08:15,400 --> 00:08:16,780
We adjust the screen.

126
00:08:20,590 --> 00:08:24,550
I should go back to updates just to confirm I'm kind of paranoid.

127
00:08:24,570 --> 00:08:26,920
I just want to make sure that my machine is completely up to date.

128
00:08:26,990 --> 00:08:27,460
It is.

129
00:08:27,790 --> 00:08:28,120
All right.

130
00:08:28,120 --> 00:08:28,440
Sweet.

131
00:08:28,720 --> 00:08:32,260
So in the next election, what we're going to do is we're going to install Seaspan.

132
00:08:32,890 --> 00:08:34,630
And Sismondo is really cool.

133
00:08:34,630 --> 00:08:39,370
It's a tool that basically logs all the process creation that gives you the full command line.

134
00:08:39,490 --> 00:08:44,190
In all the arguments past those processes, it hashes all the processes that tells you, you know,

135
00:08:44,200 --> 00:08:46,580
which drivers in which deals are loaded up.

136
00:08:46,690 --> 00:08:48,460
It's very robust and it's free.

137
00:08:49,120 --> 00:08:54,700
So we're going to set that up and this will be our first step and our endpoint instrumentation phase.

138
00:08:54,910 --> 00:08:55,210
Right.

139
00:08:55,210 --> 00:08:57,090
So we're going to install this mine.

140
00:08:57,100 --> 00:09:00,580
We're going to make sure perishable logging is installed and subsequent lessons.

141
00:09:01,120 --> 00:09:04,360
And we're going to really you know, we're going to install this plug forwarder.

142
00:09:04,540 --> 00:09:05,770
It's going to be really, really awesome.

143
00:09:05,950 --> 00:09:09,200
And I cannot wait for you to jump into this journey.

144
00:09:09,430 --> 00:09:09,940
OK, guys.

145
00:09:10,180 --> 00:09:11,750
So I will see in the next lecture.

146
00:09:12,130 --> 00:09:12,340
All right.

147
00:09:12,370 --> 00:09:12,600
Bye.