1
00:00:00,990 --> 00:00:08,040
In the last lesson, we created a payload using MSF venom and metabolite, so we created a payload that

2
00:00:08,040 --> 00:00:15,810
will run them interpretor reverse Tsipi attack that will allow us to ring home, ring our Dotto three

3
00:00:15,810 --> 00:00:19,840
point five Kaili Linux box from a Windows seven computer.

4
00:00:20,220 --> 00:00:25,380
Now all we need to do is put this game some someplace at the Windows seven computer can be tricked into

5
00:00:25,380 --> 00:00:26,240
surfing to it.

6
00:00:26,610 --> 00:00:33,510
So back over here and my second command window, my second terminal window, I'm going to cede to the

7
00:00:33,720 --> 00:00:44,820
route, then I'll lose and I'm going to surf into my VA folder because under VR w w w Kadivar else under

8
00:00:44,820 --> 00:00:51,450
this w WW folder is usually where my Apache Web server will run and that's where it works on this current

9
00:00:51,450 --> 00:00:57,690
version of Calli Linux CD and a W-W else.

10
00:00:58,770 --> 00:01:04,410
And depending on which version of colonics you're running on Version 1.0, your Apache Web server will

11
00:01:04,410 --> 00:01:07,290
run just from VARE WWLP on 2.0.

12
00:01:07,530 --> 00:01:11,100
It's via wordage HTML.

13
00:01:11,100 --> 00:01:13,060
So we'll see me one more time HDMI.

14
00:01:13,740 --> 00:01:20,310
And now if we allow less or list the contents of the bar HTML, you'll see there's an index that each

15
00:01:20,310 --> 00:01:24,080
HTML that is just your standard Apache a welcome page.

16
00:01:24,390 --> 00:01:29,820
Well we want to do is create a folder called Downloads or Sha're.

17
00:01:29,820 --> 00:01:31,370
We can call this anything we want.

18
00:01:31,560 --> 00:01:34,800
I'm going to make a directory share.

19
00:01:37,860 --> 00:01:43,890
And I have a folder called Share, and I'm going to go ahead and copy that game down XY, so I'm going

20
00:01:43,890 --> 00:01:54,180
to SEPI space slash root slash desktop capital G and that's the only thing on my desktop.

21
00:01:54,190 --> 00:01:55,410
So I just hit tab.

22
00:01:56,320 --> 00:02:02,260
And they got root desktop game to slash or to my share folder.

23
00:02:04,220 --> 00:02:12,470
So if I copy that game down from the desktop where it was created using Metabolite into my share folder

24
00:02:12,470 --> 00:02:18,240
and bar HTML, it's going to be in a folder called Share Out on my World Wide Web server.

25
00:02:18,740 --> 00:02:22,850
I can see that and then I see the end to share less.

26
00:02:23,660 --> 00:02:24,110
Good.

27
00:02:24,120 --> 00:02:27,150
I'll need banks one more dot.

28
00:02:27,530 --> 00:02:30,470
So I'm back up in var html.

29
00:02:32,690 --> 00:02:40,570
And I need to S.H. Mod, C.H. Hammoudeh, this will change some properties of the shareholder Dasch

30
00:02:40,640 --> 00:02:45,000
Ah, that'll be recursive and I'm going to see it in a seven five five.

31
00:02:45,020 --> 00:02:49,400
That just means read, write, execute, read, execute and read, execute.

32
00:02:49,700 --> 00:02:51,350
You can learn more about that on the web.

33
00:02:51,350 --> 00:02:53,180
Just look, search for chmod.

34
00:02:53,450 --> 00:02:59,840
But we're going to make this executable and downloadable from the web and we just have to tell the folder

35
00:02:59,840 --> 00:03:06,050
name share S.H. Mod Bashar 755 share because I'm in my var html folder.

36
00:03:07,310 --> 00:03:13,070
I can El's code and share and else dash a.l.

37
00:03:15,160 --> 00:03:23,050
And you can see I have read and execute privileges on that game, Dodik Folbre, I can download that

38
00:03:23,050 --> 00:03:25,330
now through my Web server running Apache's.

39
00:03:25,330 --> 00:03:31,870
So I just need to set up my Apache Web server so I'll clear the screen and say service Apache.

40
00:03:34,570 --> 00:03:36,550
To start.

41
00:03:38,810 --> 00:03:44,030
And once that started, I should be able to surf out to a Web page, either locally or on.

42
00:03:46,100 --> 00:03:48,650
One of my other machines connected to this network.

43
00:03:50,380 --> 00:04:01,900
And go to localhost in this case, or I can say 10 dot oh dot three dot five Sha're.

44
00:04:03,040 --> 00:04:12,910
And I should see that game folder, so I have set up a folder under my VA W-W HTML folder called Share

45
00:04:13,480 --> 00:04:17,100
and then I start and I copy that game DUDI file in there.

46
00:04:17,500 --> 00:04:24,370
Then I started my service, Apache to Apache to is the Web server, one of the Web servers that are

47
00:04:24,370 --> 00:04:27,190
pretty popular and it's included in Calli Linux.

48
00:04:27,760 --> 00:04:34,870
And now anyone on this same internal hosted only network can surf to Tenggara three to five share.

49
00:04:35,350 --> 00:04:41,290
We're going to see how to run this exploit on our Windows seven computer in the next lesson.