1
00:00:03,150 --> 00:00:08,730
Before we infect a Windows 10 virtual machine for the first time with our newly created virus from Kalli,

2
00:00:09,060 --> 00:00:14,030
we want to do a few steps of setup just to make it a little easier to do everything that we're going

3
00:00:14,030 --> 00:00:18,480
to do in this section and in the next section on the command and control phase.

4
00:00:18,810 --> 00:00:23,310
One of those things is we're going to add the ability to handle a U.S. B camera.

5
00:00:23,700 --> 00:00:31,380
So if you look at your settings for your Windows 10, you're going to be able to see us be connection

6
00:00:31,380 --> 00:00:31,920
down here.

7
00:00:32,250 --> 00:00:37,260
We need to double click or click settings or click on the USB connection if it is disabled.

8
00:00:37,590 --> 00:00:38,630
We want to turn it on.

9
00:00:38,680 --> 00:00:40,260
To be able to turn it on and off.

10
00:00:40,290 --> 00:00:47,580
We actually have to close our we have to shut down our windows machine all the way and power it off.

11
00:00:48,830 --> 00:00:53,900
So what we're going to do is power off the Windows 10 computer all the way full, shut down, come to

12
00:00:53,900 --> 00:00:58,240
the USP settings and we're going to enable the USP controller.

13
00:00:58,310 --> 00:01:00,500
And let's go in and turn it the USB 2.0.

14
00:01:00,950 --> 00:01:08,720
If you have already installed your virtual box guest or virtual box extinctions pack like we did back

15
00:01:08,780 --> 00:01:12,680
in Section two when we installed virtual box software.

16
00:01:13,040 --> 00:01:14,870
You're going to be able to turn on the USP controller.

17
00:01:14,870 --> 00:01:20,930
If not, go back and check out that section to add that extension's packs so that you'll be able to

18
00:01:20,930 --> 00:01:22,610
simulate a USB connection.

19
00:01:22,910 --> 00:01:29,900
Because I have a Web cam with a USB connector here that I want to be able to connect to my virtual machine.

20
00:01:30,920 --> 00:01:36,550
So I'm going to say, OK, there, I'm actually going to plug in my webcam.

21
00:01:36,620 --> 00:01:37,810
If you have a webcam.

22
00:01:37,910 --> 00:01:40,670
This is a good chance for you to go ahead and connect that.

23
00:01:42,330 --> 00:01:46,650
So I have physically connected my webcam to my laptop.

24
00:01:46,700 --> 00:01:50,640
Now, you can also use just the regular webcam that you have on your laptop.

25
00:01:51,090 --> 00:01:58,950
But I've got my webcam here, and that one is connected to my laptop now so that I'll have another option

26
00:01:58,950 --> 00:02:01,260
for a USP webcam.

27
00:02:01,830 --> 00:02:07,320
I've turned on the USP controls and that a restart my Microsoft Windows 10 computer.

28
00:02:08,880 --> 00:02:14,010
And when that computer starts back up, we're going to make two small changes that will give us the

29
00:02:14,010 --> 00:02:17,500
ability to infect this machine a little bit more easily.

30
00:02:17,520 --> 00:02:24,030
I mentioned about half of users out there don't use Internet antivirus software while they're surfing

31
00:02:24,030 --> 00:02:24,510
the Internet.

32
00:02:24,870 --> 00:02:29,370
We want to actually turn off the firewall and turn off the virus and threat protection that's built

33
00:02:29,370 --> 00:02:30,570
into the regular windows.

34
00:02:30,930 --> 00:02:34,950
Now, you may have already done this in the past because of a video game that had problems with the

35
00:02:34,950 --> 00:02:35,820
Windows firewall.

36
00:02:36,120 --> 00:02:38,670
I'm going to show you you want to turn that back on.

37
00:02:39,090 --> 00:02:47,070
So we're going to log into the Windows 10 machine now with password zero r d exclamation.

38
00:02:47,640 --> 00:02:54,660
That's p a ssw zero r d exclamation the windows password that comes with our Windows virtual machine

39
00:02:54,660 --> 00:02:55,350
we downloaded.

40
00:02:56,740 --> 00:03:01,840
And when Windows starts up, we're going to start a command prompt as administrator.

41
00:03:02,330 --> 00:03:05,090
We're going to search for our CMPD XY.

42
00:03:05,260 --> 00:03:05,490
Right.

43
00:03:05,500 --> 00:03:05,830
Click it.

44
00:03:05,830 --> 00:03:08,410
It runs administrator and we're going to run this command.

45
00:03:08,440 --> 00:03:09,970
The net were the net.

46
00:03:10,000 --> 00:03:16,810
S.H. gives us the acharn the ability to do some administrative tools, like turning on and off the firewall,

47
00:03:16,810 --> 00:03:17,500
setting up.

48
00:03:18,010 --> 00:03:22,990
Well, lots of options that we can do with S.H. That network show will let us to set all the profiles

49
00:03:22,990 --> 00:03:24,280
to state off.

50
00:03:24,610 --> 00:03:27,970
So we're gonna turn off the advanced firewall built into windows.

51
00:03:28,300 --> 00:03:32,940
Then we're going to turn off virus and threat protection by searching for virus and turn it off in settings.

52
00:03:33,340 --> 00:03:40,030
So we're gonna type C, M.D., the command prompt, Dudi XY, but we're not gonna run it regular, just

53
00:03:40,030 --> 00:03:40,360
open.

54
00:03:40,360 --> 00:03:45,850
We're gonna say run as administrator because we want to be able to administer certain functions here.

55
00:03:46,180 --> 00:03:46,990
Click Yes.

56
00:03:47,950 --> 00:03:55,360
And the command is net s h a DV firewall set.

57
00:03:55,540 --> 00:03:59,920
All profiles is just one Leard State off.

58
00:04:01,210 --> 00:04:03,890
And you do have to type this whole command correctly as well.

59
00:04:03,910 --> 00:04:05,770
Make sure you get your spelling correct in there.

60
00:04:05,800 --> 00:04:13,420
But Net S.H. Advanced Firewall set all profiles state off and Windows just says, OK, but you may get

61
00:04:13,420 --> 00:04:19,480
a warning down here in your pop up messages that says that you've turned off the Windows firewall.

62
00:04:19,780 --> 00:04:21,220
That happens from time to time.

63
00:04:21,730 --> 00:04:25,810
Next, we're going to turn off virus and threat protection settings by typing in virus.

64
00:04:27,000 --> 00:04:28,630
We're gonna find the virus and threat.

65
00:04:28,650 --> 00:04:30,060
Protection settings.

66
00:04:31,630 --> 00:04:32,860
Under Windows Defender.

67
00:04:33,960 --> 00:04:37,350
And we're going to come to the settings.

68
00:04:39,580 --> 00:04:41,490
And turn off real time.

69
00:04:42,590 --> 00:04:44,120
And you may have to say, yes, what?

70
00:04:44,180 --> 00:04:45,860
Turn off Real-Time protection.

71
00:04:46,400 --> 00:04:48,140
And Cloud delivered protection.

72
00:04:48,370 --> 00:04:49,540
I'd love to say yes.

73
00:04:50,890 --> 00:04:54,190
And I'm going to turn off automatic sample submission as well.

74
00:04:56,380 --> 00:04:57,670
There's also one other piece.

75
00:04:57,700 --> 00:04:59,730
Now, you see the windows did pop up threat.

76
00:04:59,890 --> 00:05:01,630
You need to turn on your virus protection.

77
00:05:01,900 --> 00:05:05,290
We're going to see why that's important when we infect the machine here in just a moment.

78
00:05:05,770 --> 00:05:09,670
But you can also go one step further and add some exclusions.

79
00:05:09,700 --> 00:05:11,890
So the Windows defender won't scan some things.

80
00:05:11,890 --> 00:05:15,010
This will just make it easier not to lose some files.

81
00:05:15,250 --> 00:05:20,800
So if we want to add a folder, we can add an exclusion folder and we might just want to choose our

82
00:05:20,800 --> 00:05:21,790
documents folder.

83
00:05:22,210 --> 00:05:25,090
So there's a place that Windows won't look for viruses.

84
00:05:25,510 --> 00:05:28,260
We're using that this first time as some training wheels.

85
00:05:28,270 --> 00:05:33,820
You don't have to add the exclusion, but it's a nice extra touch to add in there with our virus protection

86
00:05:33,820 --> 00:05:35,440
and threat settings turned off.

87
00:05:36,520 --> 00:05:42,160
We will be able to run our virus and infect that Windows VM so that Caleigh can control it.

88
00:05:42,490 --> 00:05:47,140
You do need to know that from time to time, Windows will automatically turn back on your firewall and

89
00:05:47,140 --> 00:05:48,820
your virus and threat protection settings.

90
00:05:48,820 --> 00:05:53,380
It definitely turns it back on every time you reboot and a newer Windows 10 machine.

91
00:05:53,770 --> 00:05:57,570
So you'll just have to remember to run the that long command net.

92
00:05:57,670 --> 00:05:59,800
S.H. Advanced Firewall set.

93
00:05:59,830 --> 00:06:06,130
All profiles stayed off and do a search for your virus and threat protection settings by typing virus

94
00:06:06,130 --> 00:06:10,960
down here and going to the settings and turning off both those two real time protections.

95
00:06:11,350 --> 00:06:16,390
And it says that you're wired while your Windows firewall is turned off, your virus and threat protection

96
00:06:16,390 --> 00:06:16,810
settings.

97
00:06:17,170 --> 00:06:23,500
You are as vulnerable as around half to a third of all the pieces out on the Internet right now.

98
00:06:23,830 --> 00:06:27,280
So it's time to strike with our Windows virus.