1
00:00:07,050 --> 00:00:13,530
So I hope you enjoyed learning how to hack into Windows, using to reboot to special commands and for

2
00:00:13,530 --> 00:00:19,410
commands at the command line terminal, but I have something extra special as a bonus video a few students

3
00:00:19,410 --> 00:00:25,770
have asked already, well, how do we hack into a Mac or wow, I'm really glad that I use a Mac because

4
00:00:25,770 --> 00:00:27,220
the PC was so easy to hack.

5
00:00:27,600 --> 00:00:29,900
Well, I've got bad news for Mac owners as well.

6
00:00:29,910 --> 00:00:34,920
You've got just as easy a time, maybe even easier hacking into a Mac.

7
00:00:34,920 --> 00:00:42,030
You only need one reboot, one special key combination and four commands to create a new admin user

8
00:00:42,030 --> 00:00:47,070
account or to hack the route account and change the password and then log in and do anything you want

9
00:00:47,070 --> 00:00:48,500
to do on a Macintosh computer.

10
00:00:48,870 --> 00:00:53,700
So if you've got an old Mac sitting around or if you ever forget your password, it can be a little

11
00:00:53,700 --> 00:00:54,300
scary.

12
00:00:54,960 --> 00:00:59,130
But I can show you how to get back all of your files unless you've got things encrypted.

13
00:00:59,130 --> 00:01:00,860
And we'll talk about that right at the end here.

14
00:01:01,290 --> 00:01:05,010
So I've got Mac booted up here in the background.

15
00:01:05,280 --> 00:01:12,600
I'm going to use one reboot, one special key combination, and then four commands at the terminal so

16
00:01:12,600 --> 00:01:13,680
that we can get into this.

17
00:01:13,680 --> 00:01:18,960
Mac Well, I don't remember the password on this Macintosh, so I'm going to have to do a restart.

18
00:01:19,590 --> 00:01:25,770
And my first special KCM, or my one and only special key combination for Mac is going to be Command

19
00:01:25,770 --> 00:01:26,460
S.

20
00:01:27,600 --> 00:01:28,920
So as I restart.

21
00:01:31,920 --> 00:01:38,760
All right, when we reboot, we have to press the command and eskies to boot up in a single user mode,

22
00:01:39,100 --> 00:01:45,210
I've just run a simple, clear command to clear the screen on my MacBook so that you can see what we've

23
00:01:45,210 --> 00:01:45,830
got here.

24
00:01:46,140 --> 00:01:52,200
We're going to we've used our one reboot, our one special key combination with command s for single

25
00:01:52,200 --> 00:01:52,860
user mode.

26
00:01:53,130 --> 00:01:55,950
And now we're going to use these for.

27
00:01:57,030 --> 00:02:05,640
Commands Espin, FSC K Neshev Why that is going to do a filesystem check so we say Espin.

28
00:02:07,160 --> 00:02:12,890
And we can you'll notice I can do S.B and then tab the tab key will help me.

29
00:02:12,890 --> 00:02:21,380
Autofill, if you've not used that before on a Mac and then F sc k, I can just hit the tab dash f y

30
00:02:21,390 --> 00:02:22,940
so that's going to be my first command.

31
00:02:23,270 --> 00:02:25,040
You hit that and let it run.

32
00:02:25,040 --> 00:02:26,570
It will take just a little bit of time.

33
00:02:28,430 --> 00:02:34,640
That I'm going to show you, the second command has been slash mount.

34
00:02:36,050 --> 00:02:39,830
So we're going to mount the filesystem or mount the disk drive.

35
00:02:41,340 --> 00:02:52,440
Space W and their spaces between these, because we're using some flags or arguments with our Mount

36
00:02:52,440 --> 00:02:57,060
Command and you hit enter, that'll take just a little bit of time as well.

37
00:02:58,670 --> 00:03:03,980
And this next command and command is a long one, so I'm going to split it up over two lines and is

38
00:03:03,980 --> 00:03:04,670
launch.

39
00:03:05,700 --> 00:03:08,340
Seitel space lowed.

40
00:03:09,760 --> 00:03:15,250
Space and then this is a long line, so I'm going to span two lines by using the backslash here.

41
00:03:16,690 --> 00:03:25,240
I'm going to type capital or slash capital s y hit tab, and it'll fill in system than a library.

42
00:03:25,960 --> 00:03:32,050
So Capital L little capitalization matters on a Mac tab and then we need lunch.

43
00:03:32,920 --> 00:03:34,180
So lay you in.

44
00:03:34,540 --> 00:03:35,710
There's more than one lunch.

45
00:03:35,710 --> 00:03:45,640
So we do a capital D lunch Damons and then come dot Apple and we can do AP tab open.

46
00:03:46,970 --> 00:03:54,800
Open directory, Deadshot P list, if you want a really old Mac, there's a complete Apple dot directory

47
00:03:54,800 --> 00:03:56,710
services, local dot p. list.

48
00:03:57,170 --> 00:04:06,500
So if you don't get an O, P and Hattab, try Capital D, you know, directory services, local DOPs,

49
00:04:06,860 --> 00:04:10,730
Capital D, I, R and tab, and it should fill in that last piece as well.

50
00:04:11,150 --> 00:04:13,310
So we'll hit enter on that.

51
00:04:14,290 --> 00:04:18,750
Then we just need to run the password command post, W.D..

52
00:04:19,900 --> 00:04:22,300
And it'll ask us for a new password twice.

53
00:04:28,640 --> 00:04:32,720
So I've tapped a new password and then all I have to do is type exit.

54
00:04:34,240 --> 00:04:41,290
And the Mac will reboot, well, it'll finish booting all the way into Mac OS and we'll be able to log

55
00:04:41,290 --> 00:04:43,750
in as root using our new username.

56
00:04:45,610 --> 00:04:53,320
All right, now the Mac is back to back up into the regular Mac OS, but instead of the username and

57
00:04:53,320 --> 00:04:59,500
password that I can't remember, I'm going in a root as my username and the new password that I just

58
00:04:59,500 --> 00:05:00,100
created.

59
00:05:04,400 --> 00:05:08,630
And it will ask if I want to update the key chain password, I don't want to do that because I don't

60
00:05:08,630 --> 00:05:12,110
want to mess up anything on this, Mac, and I'm not going to create a new keychain.

61
00:05:12,110 --> 00:05:15,200
I'm just going to continue my log in as the root user.

62
00:05:15,470 --> 00:05:22,000
I'm a full administrator or super user on this Macintosh computer, so I'm going to be able to create

63
00:05:22,010 --> 00:05:23,240
new user accounts.

64
00:05:23,810 --> 00:05:30,260
I'll be able to see all the user's files just like I was able to on a PC computer.

65
00:05:31,390 --> 00:05:36,540
And the first time you're on this, you may see some setting up your Mac, you may have to click through

66
00:05:36,540 --> 00:05:41,820
a couple of things, but then you'll be logged in as a user on Windows.

67
00:05:41,820 --> 00:05:49,380
If I go to my Macintosh computer, if I go to the finder and come to users, I can find my real user

68
00:05:49,380 --> 00:05:52,830
account beeping And there are all my files.

69
00:05:53,790 --> 00:06:00,180
So if I go into my documents and I see all my Udemy course files.

70
00:06:01,990 --> 00:06:07,030
I go into downloads, I'll see everything that I've downloaded recently.

71
00:06:08,570 --> 00:06:09,440
Not too bad.

72
00:06:09,710 --> 00:06:15,340
So everything is there and I'm able to get to it, and if I want to create a new user account, all

73
00:06:15,350 --> 00:06:17,930
I need to do is come to the system preferences.

74
00:06:19,980 --> 00:06:22,230
And come to users and groups.

75
00:06:25,320 --> 00:06:27,750
And if I went to, I could create a new user here.

76
00:06:29,930 --> 00:06:31,700
And give that a new name.

77
00:06:36,860 --> 00:06:39,840
You get the idea so we can create a whole new user account.

78
00:06:40,130 --> 00:06:42,710
We can either have them as a standard user, which is smart.

79
00:06:42,710 --> 00:06:45,710
You don't want to run around with a brute privileges turned on on your Mac.

80
00:06:46,430 --> 00:06:50,410
Or we can if we need to have an administrative account, we can do that as well.

81
00:06:51,520 --> 00:06:55,190
So even a Mac is not completely safe from this attack.

82
00:06:55,210 --> 00:07:03,790
In fact, we only had to use one special combination after one reboot and then four commands at the

83
00:07:03,790 --> 00:07:04,420
command line.

84
00:07:04,420 --> 00:07:06,790
And now we've got access to all of our files again.

85
00:07:07,120 --> 00:07:11,110
And we're able to to do some well, pretty cool things.

86
00:07:11,110 --> 00:07:17,650
If you own the computer, make sure you only do this on a computer that you own or have explicit written

87
00:07:17,650 --> 00:07:21,670
permission from the owner and controller to do this kind of hack.

88
00:07:22,940 --> 00:07:27,720
So one more time, just some quick lessons learned, physical access is total access.

89
00:07:28,070 --> 00:07:34,190
Never leave your laptop or desktop unattended if someone has physical access notice on the Mac, we

90
00:07:34,190 --> 00:07:35,930
didn't even have to have a boot disk.

91
00:07:35,930 --> 00:07:42,950
We just used one of the special key combinations to get in as a single user mode user so that we were

92
00:07:42,950 --> 00:07:44,510
a route user on a Mac.

93
00:07:45,470 --> 00:07:47,600
Ethical hacking is useful and practical.

94
00:07:47,600 --> 00:07:50,390
You can get to files even when you forgot in your Mac password.

95
00:07:50,960 --> 00:07:53,920
The only thing is to protect against this aquil on windows.

96
00:07:53,930 --> 00:07:56,810
We saw that we could change the settings on a Mac.

97
00:07:56,810 --> 00:08:03,680
Really, we need to use file vault or use some other encryption on your hard drive to encrypt the files

98
00:08:03,680 --> 00:08:09,320
that are either sensitive or that you just want to keep other people out of and use a strong password.

99
00:08:10,130 --> 00:08:14,360
If you're using a business laptop, you definitely need to have encryption turned on because if you

100
00:08:14,360 --> 00:08:17,300
lose access to those files, it could have customer information or more.

101
00:08:17,600 --> 00:08:22,250
If you're doing this is a home user, if you encrypt your files, the one thing you need to know is

102
00:08:22,250 --> 00:08:26,840
that if you forget that password, you cannot recover those files.

103
00:08:27,230 --> 00:08:31,670
So we have to mix our security with the usability.

104
00:08:31,670 --> 00:08:36,230
But you can see that we've got a lot of really cool things we're going to be able to do in this course.

105
00:08:36,500 --> 00:08:39,080
And we will see you in the next lesson.