1
00:00:00,450 --> 00:00:05,100
OK, what's going on in this room will be doing the Arctic box from the box.

2
00:00:07,410 --> 00:00:15,120
This is Ben, Ben, Ben and I hope in this box a few weeks ago and I recorded the video in the last

3
00:00:15,120 --> 00:00:23,190
week, but at the time I got one problem and I was sure what the problem is and how I read and my skin.

4
00:00:26,170 --> 00:00:32,980
So we can see the A puts up one to two five eight four zero zero and four nine one five four.

5
00:00:34,060 --> 00:00:39,310
So at first I did not know what to search because I don't know at this point.

6
00:00:39,340 --> 00:00:41,650
But even then, Mobb cannot find.

7
00:00:42,040 --> 00:00:43,530
That's why I put this question mark.

8
00:00:44,470 --> 00:00:48,010
So I have to look for this aid for report.

9
00:00:48,010 --> 00:00:53,110
And it told me that generally it's been a bit of cold fusion and mix up.

10
00:00:53,380 --> 00:01:02,980
So it's a a cold fusion with these, uh, similar to, uh, this, uh, website hosting service.

11
00:01:04,210 --> 00:01:06,070
So it's similar to a passive server.

12
00:01:06,760 --> 00:01:09,980
Uh, this is a cold fusion server by Adobe.

13
00:01:10,810 --> 00:01:12,740
No, let's go into the.

14
00:01:13,120 --> 00:01:15,120
So this is the browser.

15
00:01:15,130 --> 00:01:17,190
You can see this is the index page.

16
00:01:17,410 --> 00:01:22,030
And if you to see if the equal dimensionality and the red box.

17
00:01:22,030 --> 00:01:23,650
So that does not do anything.

18
00:01:25,600 --> 00:01:31,200
The website takes at least 20 to 30 seconds to process the cost.

19
00:01:31,960 --> 00:01:36,370
So I will show you why it takes so fast.

20
00:01:36,370 --> 00:01:40,080
I don't know how to spend this because I never did one.

21
00:01:40,360 --> 00:01:45,270
Then I Googled, uh, for this, uh, hope and confusion.

22
00:01:45,280 --> 00:01:47,680
So I came up on this website.

23
00:01:48,910 --> 00:01:55,110
So you can I put these links in the description and you can just search for cold fusion and.

24
00:01:57,420 --> 00:02:03,390
So then, see, this is the, uh, British and here.

25
00:02:04,860 --> 00:02:05,580
Let's go back.

26
00:02:06,200 --> 00:02:07,860
This is what we want.

27
00:02:12,380 --> 00:02:20,900
So if you go to this website and it's about egg and confusion, hacking, so did they, uh, showed

28
00:02:20,900 --> 00:02:29,110
a vulnerability that it will expose the password hashes when you will be this this financial confusion

29
00:02:29,660 --> 00:02:39,640
library and then password poverties pathology, digital and so personal digital and needs to truncate

30
00:02:39,840 --> 00:02:41,570
the remaining order?

31
00:02:43,730 --> 00:02:52,250
No, let me just say dot com and put this in one eight three zero zero.

32
00:02:55,080 --> 00:02:55,490
So.

33
00:03:06,590 --> 00:03:13,490
So this is the landing page already had been has been put there, so we need to find the parcel.

34
00:03:20,900 --> 00:03:26,570
I think we've entered the cartoon or we can go with this one.

35
00:03:32,000 --> 00:03:34,300
Well, before this.

36
00:03:40,420 --> 00:03:46,740
So now let me push this here, that extra forward slash.

37
00:03:50,600 --> 00:03:53,440
So let's see which one gets first.

38
00:03:56,990 --> 00:04:05,090
So how long been that this enormous window in the window, I did not run, so nobody should get the

39
00:04:05,090 --> 00:04:06,050
password hash.

40
00:04:08,930 --> 00:04:11,810
And can the past couple this?

41
00:04:16,600 --> 00:04:19,240
And Global Krag Station lorgnette.

42
00:04:25,700 --> 00:04:27,170
And both the Hachiro.

43
00:04:29,670 --> 00:04:37,190
And on crashes and you can see the person is happy to know you can just type happy day

44
00:04:40,560 --> 00:04:48,990
and another, uh, you can see me type the happy day, but it has been changed into this long because

45
00:04:49,320 --> 00:04:52,150
it is being converted to hash by the diverse group.

46
00:04:54,120 --> 00:04:59,130
So within this website, they have posted the password.

47
00:05:01,160 --> 00:05:14,600
You can call this one and you can, uh, inspect this one and you can pick this, uh, uh, download

48
00:05:14,640 --> 00:05:19,320
the software and the password and need to perform this Peachment function.

49
00:05:20,850 --> 00:05:29,070
And then you put it on the actual you so captured the random request and post the password there and

50
00:05:29,190 --> 00:05:31,590
then, uh.

51
00:05:31,620 --> 00:05:40,140
But the problem is, uh, this, uh, website takes some time, like 20 to 30 seconds in the time where

52
00:05:40,150 --> 00:05:42,270
you decide where it gets changed.

53
00:05:42,600 --> 00:05:50,190
So that so even though you have to start running after twenty seconds, decided to become the me start

54
00:05:50,310 --> 00:05:50,470
with.

55
00:05:51,000 --> 00:05:54,560
So that's why you need the password to generate the.

56
00:05:54,930 --> 00:05:57,740
Oh I it's like a legit drug.

57
00:05:58,830 --> 00:06:00,210
So now global council.

58
00:06:09,550 --> 00:06:18,510
I don't know why this quarter, so you can try this getting the hash hex value, so after logging in,

59
00:06:18,820 --> 00:06:20,870
all you need to do is go mappings.

60
00:06:21,370 --> 00:06:27,130
So what we need to apply, shall we create a new word asks?

61
00:06:30,780 --> 00:06:40,470
So global mappings, so we need to understand where appropriate and and which, uh, this not reflect.

62
00:07:01,050 --> 00:07:02,190
OK, I we'll show you.

63
00:07:27,700 --> 00:07:29,950
So I will show you what to approach.

64
00:07:30,580 --> 00:07:33,550
So let's look at Chelse.

65
00:07:36,350 --> 00:07:45,430
Group Sea of Socialism is called a markup language, you cannot create a Russian, uh, because, uh,

66
00:07:45,440 --> 00:07:50,450
it does not have a socket functionality so that it is chief executive.

67
00:07:51,800 --> 00:07:53,600
So it's generally normal.

68
00:07:53,600 --> 00:08:00,770
Uh, Absher, you need to enter the commands it will execute for you so you can see the logical parts

69
00:08:01,430 --> 00:08:08,390
of it has been made up of this physical part sequence made up.

70
00:08:10,310 --> 00:08:16,160
So that's going to be putting a nagging contributors.

71
00:08:26,900 --> 00:08:29,500
You can also create a new mapping if you want.

72
00:08:41,930 --> 00:08:44,310
So this Web site is taking forever.

73
00:09:10,050 --> 00:09:14,070
But they know he helped create the Shingletown scare, I have already created one.

74
00:09:19,340 --> 00:09:29,720
So I'm going to show you how this looks, because the cities are lagging, so you need to have the task

75
00:09:29,720 --> 00:09:36,980
task name and you need to bring order here and hope to see if that scene from here and it will download

76
00:09:36,980 --> 00:09:40,990
the file and you need to disable it.

77
00:09:41,240 --> 00:09:45,790
So this file will be sealed into this better secured route.

78
00:09:45,840 --> 00:09:49,510
See if I see you fighting this here.

79
00:09:49,640 --> 00:09:50,390
Fighting here.

80
00:09:52,510 --> 00:10:00,440
So I've got to click on this, so watch this, so come on this task.

81
00:10:00,460 --> 00:10:01,710
So there you go.

82
00:10:01,720 --> 00:10:11,010
But this year for the these year, you know, you need to put the CMB here and see me come on this mission.

83
00:10:12,100 --> 00:10:15,580
So it's always better to try to ping your mission.

84
00:10:18,250 --> 00:10:27,130
So this is the Superdome, I'm using a from the 10th and 11th and ICMP, so the Bingu, this ICMP.

85
00:10:29,440 --> 00:10:37,270
So by default, this is a Windows box you can see in windows by default takes for packets.

86
00:10:40,230 --> 00:10:48,830
So let's explore this one, if this is successful, we see the package here from 10, 10 to 11 to our

87
00:10:48,830 --> 00:10:49,830
current Xbox.

88
00:11:03,330 --> 00:11:05,340
A response for an hour from.

89
00:12:00,470 --> 00:12:02,920
So again, it's worth again.

90
00:12:09,070 --> 00:12:10,690
So you can submit.

91
00:12:20,160 --> 00:12:23,700
I don't know whether it's turning a response.

92
00:12:33,010 --> 00:12:36,450
I think we got wrong with the PNG government.

93
00:13:11,950 --> 00:13:17,320
OK, so that's the thing I missed with the ping comment.

94
00:13:21,690 --> 00:13:23,220
So now let's bring this.

95
00:13:28,850 --> 00:13:30,050
So we are resiling.

96
00:13:36,120 --> 00:13:37,380
But this one.

97
00:14:00,110 --> 00:14:09,680
So you can see there are four packets, so that means these commands execute correctly noted a system

98
00:14:09,680 --> 00:14:18,440
and for unfortunately for us, we cannot run the system in full because they'll probably not be shown

99
00:14:18,440 --> 00:14:18,740
here.

100
00:14:20,630 --> 00:14:26,570
So what you can do is you can put this on Potosí Slash.

101
00:14:28,330 --> 00:14:32,390
Cold fusion, the

102
00:14:35,620 --> 00:14:41,050
and in the troop this year, for the year for the CFO detail puberty.

103
00:14:42,070 --> 00:14:43,200
So they should do fine.

104
00:14:43,510 --> 00:14:51,600
So the system should be, uh, into this and it should reflect here.

105
00:14:51,820 --> 00:14:53,590
So like this one.

106
00:15:12,910 --> 00:15:18,880
So, OK, let's go and finish this, we shall see how by No.

107
00:15:27,170 --> 00:15:32,620
So we can see we shall see the only solution from the maps can go.

108
00:15:32,710 --> 00:15:34,160
We don't have the solution.

109
00:15:34,700 --> 00:15:38,810
So we will we should have no alternative.

110
00:15:48,740 --> 00:15:53,840
So based on this version, we see if there is a partial inshala not.

111
00:15:57,440 --> 00:16:01,280
So it's 2008, so that means power should be there.

112
00:16:01,930 --> 00:16:07,430
And what you can do is, uh, you should get the reversal rate.

113
00:16:07,700 --> 00:16:15,770
So I'm using this, uh, and see how let's use normal and see, uh, we should get into this, uh,

114
00:16:15,770 --> 00:16:21,610
temporary so we can power shall, uh, w get.

115
00:16:28,150 --> 00:16:34,370
Solutions and see that the and a. fired two percentage.

116
00:16:36,690 --> 00:16:46,590
So it should be a longer term slash and Siddharta exit, so I got this one and we should see it pretty

117
00:16:46,890 --> 00:16:47,380
soon.

118
00:17:14,350 --> 00:17:15,730
So we do not get any.

119
00:17:19,980 --> 00:17:23,660
Request here, so our comment has been failed.

120
00:17:26,120 --> 00:17:27,620
So that's a partial.

121
00:17:54,220 --> 00:17:55,390
So for this.

122
00:17:58,470 --> 00:18:02,010
So we're trying to determine the portion of version.

123
00:18:15,020 --> 00:18:16,610
We're going to finish this page.

124
00:18:31,970 --> 00:18:37,000
I think those quotes in the past, partial one has been broken.

125
00:18:37,040 --> 00:18:37,490
Come on.

126
00:18:41,010 --> 00:18:42,050
So let's try.

127
00:18:47,010 --> 00:18:48,180
Without the courts.

128
00:19:32,610 --> 00:19:37,290
So are getting better, and so let me check my notes how I downloaded this.

129
00:19:44,080 --> 00:19:46,990
OK, I did not use the Porsche.

130
00:19:47,060 --> 00:19:47,450
OK.

131
00:19:47,470 --> 00:19:49,030
There is no Porsche, so.

132
00:19:52,720 --> 00:19:55,570
So what we are going to do is look.

133
00:20:33,310 --> 00:20:34,750
So let's grab a copy.

134
00:20:43,040 --> 00:20:43,820
Shelled.

135
00:20:58,400 --> 00:20:59,850
So let's do this.

136
00:21:01,850 --> 00:21:04,190
So what we are going to do is call Pete.

137
00:21:06,570 --> 00:21:08,550
Ben, Ben, 16, 190.

138
00:21:11,170 --> 00:21:24,280
So that share thresh and cirrhotics, sorry, S.P., some bizarre boy, and I'm going to move to Perske.

139
00:21:36,760 --> 00:21:40,930
No copy do percentage and.

140
00:21:47,450 --> 00:21:48,530
So this.

141
00:21:54,610 --> 00:21:56,380
We shall see there no.

142
00:22:07,660 --> 00:22:18,820
So give me one other request, so that means that Caird has been successfully copied what Wiggins's

143
00:22:18,820 --> 00:22:19,870
percentage item?

144
00:22:22,420 --> 00:22:23,320
Percentage.

145
00:22:24,920 --> 00:22:29,810
So insider cedar pixie and I pay.

146
00:22:33,220 --> 00:22:33,470
Correct.

147
00:22:33,650 --> 00:22:34,540
One, two, three, four.

148
00:22:34,570 --> 00:22:39,710
And upon correction, you could see on the chart there is not on.

149
00:22:39,730 --> 00:22:40,780
One, two, three, four.

150
00:22:43,200 --> 00:22:44,370
And this one.

151
00:23:02,910 --> 00:23:10,170
So we got the show so that we might show our people.

152
00:23:10,200 --> 00:23:15,420
So that means you can grab the flag.

153
00:23:17,530 --> 00:23:21,580
System and for now, it is unique to those in need.

154
00:23:22,510 --> 00:23:25,540
So let's try to matura exploit.

155
00:23:33,350 --> 00:23:42,080
So you can just try for this to me, Julie, if this is 2003, controvert Tarasco, so there should

156
00:23:42,080 --> 00:23:42,470
be some.

157
00:23:54,510 --> 00:23:56,070
So I don't have this.

158
00:23:58,840 --> 00:24:00,100
It's going down with this.

159
00:24:11,840 --> 00:24:12,790
So the first.

160
00:24:29,120 --> 00:24:31,580
Well, it's General Seatmates.

161
00:24:38,400 --> 00:24:42,700
Why do you think zettabytes open?

162
00:24:43,000 --> 00:24:45,660
OK, no, no, no, don't counter.

163
00:24:48,370 --> 00:24:50,520
So now you can see the white.

164
00:24:59,630 --> 00:25:01,510
So we already hosting this one.

165
00:25:05,770 --> 00:25:07,050
So that's good copy.

166
00:25:11,040 --> 00:25:11,730
Sure.

167
00:25:16,530 --> 00:25:17,270
Kosmidis.

168
00:25:23,160 --> 00:25:24,180
And to Kim.

169
00:25:28,910 --> 00:25:32,120
So let's start in the red zone around four four four four.

170
00:25:34,930 --> 00:25:37,270
So all these.

171
00:25:38,890 --> 00:25:45,810
So if you don't know why this, uh, binary, so you can just grab the system in the phone book and

172
00:25:45,990 --> 00:25:47,440
I love that expression.

173
00:25:52,760 --> 00:26:03,880
So the comment should be the IP address and the number four four four four, and you should that you

174
00:26:03,880 --> 00:26:05,180
should be getting Brookshire.

175
00:26:25,370 --> 00:26:26,690
OK, it's Farid.

176
00:26:42,470 --> 00:26:48,560
OK, maybe take some time, I didn't know to sure, sure we were.

177
00:26:57,880 --> 00:26:59,350
So we got the shot.

178
00:26:59,380 --> 00:27:08,520
So it took some time and we are still so this web may be backtracking, but you can do it.

179
00:27:08,920 --> 00:27:10,570
So that's all for this video.

180
00:27:11,110 --> 00:27:16,930
So what we have learned in this video is this confusion over his the person from that.

181
00:27:16,930 --> 00:27:23,580
We get me crack of the hash and got the password and Robin and we should do the task, which downloaded

182
00:27:23,590 --> 00:27:24,100
a script.

183
00:27:24,100 --> 00:27:26,020
And in the script we got the web.

184
00:27:26,830 --> 00:27:28,370
And from that option.

185
00:27:28,390 --> 00:27:29,350
Well, the reversal.

186
00:27:31,570 --> 00:27:39,900
And from that, we found out it's 2008 and it's mostly likely one, two to me to expect and we landed

187
00:27:40,180 --> 00:27:41,430
and we got Brookshire.