1
00:00:00,450 --> 00:00:00,860
All right.

2
00:00:00,870 --> 00:00:08,640
So this room in the next room that we're going to do are part of a paid version of try to hack me if

3
00:00:08,760 --> 00:00:11,910
you are interested in pursuing a paid version.

4
00:00:11,910 --> 00:00:14,220
Please consider checking it out.

5
00:00:14,340 --> 00:00:17,430
If not you can just follow along for this video.

6
00:00:17,430 --> 00:00:21,490
So go ahead and just click on activities if you're going to follow along.

7
00:00:21,600 --> 00:00:27,120
And what we're going to do is we're just going to search for Steel Mountain and you could see right

8
00:00:27,120 --> 00:00:31,500
here we'll just click on Steel Mountain and make sure that you join the room.

9
00:00:32,160 --> 00:00:34,900
And there should be a button over here that says hey join the room.

10
00:00:34,920 --> 00:00:36,480
Go ahead and join the room.

11
00:00:36,480 --> 00:00:42,000
So this says I can do it Mr. Robot themed Windows machine use Metis boy for initial access utilize power

12
00:00:42,000 --> 00:00:47,550
shelf for Windows privacy escalation enumeration and learn a new technique to get administrator access.

13
00:00:47,550 --> 00:00:54,450
So the thing again though I like about try hack me is this type of task so we can deploy the machine

14
00:00:54,480 --> 00:00:59,130
which I'm going to do now and I'm going to get this scan and meet you in the next video.

15
00:00:59,130 --> 00:01:04,650
Once we get it all said and done so go ahead we can actually start our scan wait till this give it like

16
00:01:04,650 --> 00:01:07,390
two or three minutes and make sure you can ping it before you scan it.

17
00:01:07,590 --> 00:01:14,250
And then we can walk through these so we can do our basic enumeration come through here and we can say

18
00:01:14,280 --> 00:01:20,760
OK here we go we've deployed the machine let's get our shell we'll walk through that we'll get the escalation

19
00:01:20,760 --> 00:01:25,740
which you probably should know what it is already and then we're going to do this again without any

20
00:01:25,740 --> 00:01:27,010
sort of metal boy.

21
00:01:27,030 --> 00:01:29,580
We're going to do a complete manual path.

22
00:01:29,580 --> 00:01:30,990
So from here.

23
00:01:30,990 --> 00:01:35,420
And it says something in here that this machine does not respond to ICMP.

24
00:01:35,430 --> 00:01:39,600
So give it a few minutes to boot up maybe even five minutes before you scan it.

25
00:01:39,780 --> 00:01:45,230
And then when you do scan it make sure that you use the pen feature which just assumes the box is online

26
00:01:45,610 --> 00:01:54,240
so you might say something like and map T for all ports dash a and then dash pen lowercase n and then

27
00:01:54,240 --> 00:02:01,040
you would just give the IP address which for me is ten dot ten that 148 that one thirty nine so go ahead

28
00:02:01,070 --> 00:02:06,140
give us a few minutes get your scan running and then we're gonna do is we're gonna walk through this

29
00:02:06,230 --> 00:02:11,270
and if you want actually to walk through this whole thing by yourself feel free come back check on the

30
00:02:11,270 --> 00:02:12,920
videos once you're done with it.

31
00:02:12,920 --> 00:02:17,690
Same thing as before you can do this initial access I have full faith that you can do this initial access

32
00:02:18,080 --> 00:02:23,570
and then I do believe now that we've covered the privilege escalation once already you could run power

33
00:02:23,570 --> 00:02:27,280
up or even do some manual enumeration and find this escalation.

34
00:02:27,310 --> 00:02:31,100
So we'll talk about that and then we'll redo this whole thing again without meds flight.

35
00:02:31,130 --> 00:02:35,720
So I'll catch you over in the next video as we start to walk through this lower level enumeration.