1 00:00:00,990 --> 00:00:08,100 Hi, within this lecture, we're going to set it up so that we can reach the dial machine and then we 2 00:00:08,100 --> 00:00:15,320 can just start with a map or any other information gathering or scanning tool that we want right now, 3 00:00:15,330 --> 00:00:16,260 I'm in the world. 4 00:00:16,260 --> 00:00:24,920 So as you can see, this machine is set to be retired, OK, and is said to be Windows and it is said 5 00:00:24,930 --> 00:00:25,870 to be easy. 6 00:00:26,370 --> 00:00:37,260 So as you can see, we have a difficulty rating over here and it's rated as easy by the users, by actually 7 00:00:37,260 --> 00:00:39,740 the people who sold this machine before. 8 00:00:40,290 --> 00:00:44,640 So you can see a little people just rated this high. 9 00:00:44,650 --> 00:00:49,170 It's hard and a lot of people just rated as easy or medium. 10 00:00:49,680 --> 00:00:55,140 So as you can see, this is the machine rating, which indicates the quality of the virtual machine 11 00:00:55,140 --> 00:00:56,240 that we're going to solve. 12 00:00:56,550 --> 00:01:00,390 And this is the chip or some kind of user. 13 00:01:00,690 --> 00:01:03,580 And he actually invented this machine. 14 00:01:03,600 --> 00:01:06,120 So congratulations to him. 15 00:01:06,120 --> 00:01:11,580 And actually, I believe he uploaded a lot of machines to hack the bug. 16 00:01:11,610 --> 00:01:13,610 So he's a good guy. 17 00:01:13,620 --> 00:01:20,820 So over here, we have a number of people who owns the system, and this is the number of the users 18 00:01:21,570 --> 00:01:24,350 that actually own the user. 19 00:01:24,690 --> 00:01:33,000 So some of the users, I believe, just straight went into the router rather than user or just didn't 20 00:01:33,000 --> 00:01:34,050 submit the flag. 21 00:01:34,950 --> 00:01:40,430 So over here we have the statistics page and activity page. 22 00:01:40,950 --> 00:01:42,960 So we have reviews. 23 00:01:42,960 --> 00:01:48,480 You can just read the reviews of the users who actually sold this machine. 24 00:01:48,870 --> 00:01:52,270 And we have the walkthrough over here as well. 25 00:01:52,530 --> 00:01:58,710 So this vulture's is important because if you get stuck at some point and not for this machine, but 26 00:01:58,710 --> 00:02:04,110 for the other machines in the hack the box, you can just come over here to walk through and see if 27 00:02:04,110 --> 00:02:10,950 you have any tutorials regarding to that machine and just to see how it's sold by other people. 28 00:02:11,080 --> 00:02:18,960 OK, so sometimes you can see a video tutorial here as well, but sometimes it's just a PDF or something 29 00:02:18,960 --> 00:02:19,520 like that. 30 00:02:19,880 --> 00:02:29,830 OK, so if you scroll down a little bit, as you can see, we see this spool machine over here. 31 00:02:30,060 --> 00:02:34,180 So if you click on the spam machine, it will just start the machine, OK? 32 00:02:34,380 --> 00:02:41,280 It will give you an IP address so that you can reach it via your color Linux, because that's where 33 00:02:41,280 --> 00:02:43,670 we actually executed the RPM. 34 00:02:44,070 --> 00:02:44,440 Right. 35 00:02:44,460 --> 00:02:46,130 So it's the same as before. 36 00:02:46,140 --> 00:02:47,760 It's the same master I hacked me. 37 00:02:48,780 --> 00:02:52,130 So what does retired mean, by the way? 38 00:02:52,140 --> 00:02:58,410 Retired means you get to reach this machine only if you're a VIP member. 39 00:02:58,470 --> 00:03:04,020 OK, so basically you need a VIP subscription in order to reach this machine. 40 00:03:04,770 --> 00:03:08,550 So you can just add this to your to do list. 41 00:03:08,870 --> 00:03:18,180 OK, and just come back and solve it later on and you can come over here and just submit your flags 42 00:03:18,180 --> 00:03:26,960 or something like review to see if you really hacked the machine or just gather your ranking over here. 43 00:03:27,810 --> 00:03:34,710 You can see the top 25 players who actually sold this machine and that's it. 44 00:03:34,710 --> 00:03:36,600 I believe for the dashboard. 45 00:03:37,320 --> 00:03:40,520 You can just wander around here and see how it goes. 46 00:03:40,830 --> 00:03:46,950 And by the way, for the active machines, for the machines that are not retired, you can actually 47 00:03:46,950 --> 00:03:50,310 solve them without having a VIP membership. 48 00:03:50,550 --> 00:03:53,240 But machines change from time to time. 49 00:03:53,250 --> 00:03:58,530 So for maybe it's valid for three months and then you cannot find it. 50 00:03:58,890 --> 00:04:06,060 So it's there is no point for me to record this on a machine that is currently active, because while 51 00:04:06,060 --> 00:04:08,370 you are watching this, probably be retired. 52 00:04:08,370 --> 00:04:11,860 So that's why you need a VIP membership anyway. 53 00:04:12,360 --> 00:04:15,360 OK, so a little bit time passed. 54 00:04:15,360 --> 00:04:17,400 Let me try to refresh this page. 55 00:04:18,000 --> 00:04:20,750 And better yet, I'm just going to close this down. 56 00:04:20,760 --> 00:04:24,120 I believe there is a connection issue within my Linux. 57 00:04:24,130 --> 00:04:27,990 I'm just going to reach it from my host machine, OK? 58 00:04:28,260 --> 00:04:34,410 Because it doesn't matter where I just start is because it's outside network. 59 00:04:34,410 --> 00:04:36,120 It's not internal network. 60 00:04:36,120 --> 00:04:36,410 Right. 61 00:04:36,600 --> 00:04:39,630 So I'm going to just open this on my host machine. 62 00:04:40,350 --> 00:04:41,670 It really doesn't matter. 63 00:04:41,700 --> 00:04:44,210 If you can just open it, then it's OK. 64 00:04:44,700 --> 00:04:46,890 So let me go over here and here you go. 65 00:04:46,890 --> 00:04:47,610 It's found. 66 00:04:47,790 --> 00:04:50,370 But we couldn't see it for some reason. 67 00:04:50,670 --> 00:04:54,180 And over here we have the address of ten, ten, ten, five. 68 00:04:54,420 --> 00:04:59,940 OK, you can stop the machine anytime you want and reset the machine, by the way, from that. 69 00:05:00,000 --> 00:05:05,470 But then you have seen over there, so let me try and see if we are still connected. 70 00:05:05,490 --> 00:05:06,610 Yep, here you go. 71 00:05:06,870 --> 00:05:11,050 Now, let me try to ping that machine and here you go. 72 00:05:11,070 --> 00:05:12,770 Now I can ping that machine. 73 00:05:12,780 --> 00:05:16,220 It means that I can run and MEPs can write. 74 00:05:17,010 --> 00:05:19,380 So let me clear this up. 75 00:05:19,380 --> 00:05:20,850 You can use your zip map. 76 00:05:20,850 --> 00:05:24,150 You can use your and map whatever you want over here. 77 00:05:24,360 --> 00:05:26,950 I'm going to go for a fast scan over there. 78 00:05:27,210 --> 00:05:34,650 I don't know if we are going to need all the ports or some of the ports, old TCP ports, something 79 00:05:34,650 --> 00:05:35,130 like that. 80 00:05:35,130 --> 00:05:40,410 I'm just going to go for the old ports, maybe in order to see in a comprehensive way. 81 00:05:41,040 --> 00:05:47,510 So I'm going to place the clipboard over here and I'm just going to add the all ports over there. 82 00:05:47,520 --> 00:05:50,040 OK, so I'm going to go for the first scan. 83 00:05:50,280 --> 00:05:55,570 Very I intend to scan verbals and the old ports over there. 84 00:05:56,250 --> 00:05:58,580 So as you can see, it started. 85 00:05:58,590 --> 00:06:03,060 I'm going to stop here and continue within the next lecture of my and my scan is done.