1
00:00:00,420 --> 00:00:03,060
Hey, what's up, you guys, so we are back in full effect.

2
00:00:03,180 --> 00:00:06,990
I'm going to actually show you a third method of connecting to the hack, the box penetration testing

3
00:00:06,990 --> 00:00:07,620
environment.

4
00:00:07,950 --> 00:00:08,220
Right.

5
00:00:08,240 --> 00:00:12,300
So the previous lecture I showed you how you can connect a phone box to SSA.

6
00:00:12,420 --> 00:00:15,120
And before that, we learned how we can get to it through the Web interface.

7
00:00:15,510 --> 00:00:21,030
But still, you might prefer to use the open VPN client, which is the old school method of connecting.

8
00:00:21,280 --> 00:00:25,440
Now, this is a method I still use and I do it through VMware workstation.

9
00:00:26,220 --> 00:00:31,500
Of course, you can install callisthenics on your host machine, but you know, I prefer to use windows

10
00:00:31,500 --> 00:00:34,560
on the whole and that I have Kawi as a guest VM.

11
00:00:35,310 --> 00:00:39,060
So first you make sure you have your Calli operating system installed and set up.

12
00:00:40,120 --> 00:00:43,920
You know, in this election, I'm not going to show you how to set up Calli, but if you want, I will

13
00:00:44,280 --> 00:00:47,760
go ahead and publish a video on that mailing this video.

14
00:00:48,220 --> 00:00:50,160
This course is about privilege, escalation.

15
00:00:50,160 --> 00:00:51,780
It's not about setting up Calli Linux.

16
00:00:51,950 --> 00:00:52,110
Right.

17
00:00:52,170 --> 00:00:53,310
So that's a separate piece.

18
00:00:54,090 --> 00:00:55,650
But leave a comment if you want to see that.

19
00:00:56,070 --> 00:00:59,460
Anyway, go ahead and go to the hack the box.

20
00:00:59,460 --> 00:00:59,810
Right.

21
00:01:00,270 --> 00:01:05,730
And log in and the upper right corner connection settings open VPN you such a VPN access.

22
00:01:06,300 --> 00:01:13,650
I'm going to USV VIP lab because I'm a VIP member and I'm in the U.S. put my server that I download

23
00:01:13,650 --> 00:01:14,430
the VPN back.

24
00:01:15,120 --> 00:01:16,230
Something goes wrong like this.

25
00:01:17,280 --> 00:01:20,070
It's OK, try it again and then you see it.

26
00:01:20,070 --> 00:01:24,450
It says the server has been switched and you should see in a moment a pop up that lets you download

27
00:01:24,450 --> 00:01:25,650
the VPN back.

28
00:01:27,480 --> 00:01:32,460
If you don't see anything pop up kind of like me, you can, you could download VPN and it should just

29
00:01:32,850 --> 00:01:33,990
allow you to download it.

30
00:01:36,450 --> 00:01:36,910
Here we go.

31
00:01:37,680 --> 00:01:42,870
So you click save and then that downloads, as you can see, it looks like a completed.

32
00:01:43,650 --> 00:01:44,490
All right, so.

33
00:01:47,040 --> 00:01:47,390
It's done.

34
00:01:47,840 --> 00:01:53,760
Let's go to the shell, so I press the Windows key type terminal and get in the terminal.

35
00:01:53,780 --> 00:01:58,700
OK, so let's see what LMI using.

36
00:01:59,120 --> 00:01:59,940
This is S.H..

37
00:01:59,960 --> 00:02:00,770
Yes, very cool.

38
00:02:01,080 --> 00:02:03,960
OK, so we are in the penthouse directory.

39
00:02:04,160 --> 00:02:08,540
I'm going to move it from my downloads directory, which I believe I can go to now.

40
00:02:13,050 --> 00:02:17,820
Yes, I'm going to move from here into different folders so you don't move.

41
00:02:19,010 --> 00:02:19,380
Exactly.

42
00:02:19,380 --> 00:02:21,250
That's I see how it goes.

43
00:02:21,270 --> 00:02:25,710
Completed this because I'm using DSH, which is the new default shell for.

44
00:02:26,010 --> 00:02:31,500
I can just put the right arrow in automatically complete what I typed in the past and it'll just drop

45
00:02:31,500 --> 00:02:31,860
it there.

46
00:02:36,480 --> 00:02:36,900
All right.

47
00:02:37,650 --> 00:02:47,880
So now I can go to Box's Arctic ice box is going to be working on, then I can do Tmax new and I want

48
00:02:47,880 --> 00:02:48,570
to do a new screen.

49
00:02:48,570 --> 00:02:51,390
So Tmax kind of like screen, sort of like Terminator.

50
00:02:51,660 --> 00:02:57,960
I recommend that you do all of your exercises or the all the examples or the best examples in this course

51
00:02:57,960 --> 00:02:58,660
in two months.

52
00:02:58,980 --> 00:03:02,550
And don't worry if you never use teammates before as first popularized by.

53
00:03:02,980 --> 00:03:04,500
That's how I learned about it and learned about it.

54
00:03:05,370 --> 00:03:08,430
But I'm going to show you how to use it as we go through this course.

55
00:03:08,430 --> 00:03:09,810
So you're going to learn it as we go.

56
00:03:10,530 --> 00:03:12,750
So this just starts a new a new session.

57
00:03:14,520 --> 00:03:14,880
All right.

58
00:03:14,880 --> 00:03:16,040
So now we were in the session.

59
00:03:16,230 --> 00:03:20,420
I'm actually going to go full screen to make a little bit easier for us to work in this environment.

60
00:03:20,430 --> 00:03:22,260
So I'm going to click on screen here.

61
00:03:24,320 --> 00:03:28,790
And the resolution is way too high, so I'm going to hit the Windows Key.

62
00:03:30,900 --> 00:03:40,310
DPI change of Kelly DPI mode so that everything gets better with Windows scaling something click Yes,

63
00:03:41,000 --> 00:03:47,840
then I need to actually close out of the terminal because out of Firefox and then load everything back

64
00:03:47,840 --> 00:03:53,480
again, some terminal back and then load Firefox.

65
00:04:04,440 --> 00:04:11,210
So the sessions we have one there is the HDB session, so let's just get back into that session.

66
00:04:15,620 --> 00:04:17,200
You want to go to this Hackleburg session?

67
00:04:17,690 --> 00:04:18,150
Here we are.

68
00:04:18,570 --> 00:04:22,880
So first thing I want to do is get on, connect to the VPN, and that's really what this is all about.

69
00:04:22,910 --> 00:04:25,000
So first, I'm going to name and the bottom left corner.

70
00:04:25,040 --> 00:04:28,220
See how it says HDB zero Colon's star.

71
00:04:28,610 --> 00:04:29,660
So the star means I'm on this.

72
00:04:29,930 --> 00:04:38,270
I'm on this particular pain or tab in my terminal is the terminal is currently named ZJ and it's number

73
00:04:38,270 --> 00:04:38,680
zero.

74
00:04:38,990 --> 00:04:41,630
So I'm going to press controlled the comma.

75
00:04:42,320 --> 00:04:44,840
Rename this VPN enter right.

76
00:04:45,440 --> 00:04:52,970
Then I'm going to say sido open VPN config, open space dachas config and then I'm going to go up a

77
00:04:52,970 --> 00:04:58,790
directory and go to the Vinda OVP and file we download a moment ago I in my password.

78
00:05:01,200 --> 00:05:05,610
And that should connect me and we're going to go ahead and start the machine, so I'm trying to do this

79
00:05:05,850 --> 00:05:07,200
all tap to switch.

80
00:05:08,010 --> 00:05:11,310
Let's go to a search bar in the Arctic.

81
00:05:11,640 --> 00:05:12,310
There it is.

82
00:05:14,400 --> 00:05:18,960
OK, and now we're just going to start it up, some live export machine, and this will create the instance

83
00:05:18,960 --> 00:05:19,350
for us.

84
00:05:23,180 --> 00:05:27,390
Then the last step will just be tipping it to confirm that we're connected to the VPN also show you

85
00:05:28,000 --> 00:05:36,490
well, that starts up we press control B, C, they control the comma again, and then we can enter

86
00:05:37,030 --> 00:05:40,840
and we create a new traffic control, B, C creates a new tab, C4 create.

87
00:05:41,650 --> 00:05:49,150
And if we do IPA and enter, you can see we have a couple of adapters that you should only have one

88
00:05:49,570 --> 00:05:52,040
ton adapter, the ten adapters.

89
00:05:52,040 --> 00:05:53,050
You can only be Pantanal.

90
00:05:53,050 --> 00:05:54,430
If you have more than one you need to kill one.

91
00:05:54,520 --> 00:05:55,510
Let me show you how to do that.

92
00:06:08,030 --> 00:06:08,780
All right, there we go.

93
00:06:08,810 --> 00:06:12,100
So now we're good to go and you can see we've got an IP address on the VPN.

94
00:06:12,890 --> 00:06:20,630
Easier way to see this is just the IPA grep INET grep zero.

95
00:06:23,750 --> 00:06:24,260
There you go.

96
00:06:27,480 --> 00:06:31,770
This is still creating it takes a few minutes, so to speak, a little bit patient, I'll get back to

97
00:06:31,770 --> 00:06:32,400
you once it's done.

98
00:06:35,070 --> 00:06:36,210
So we see that it's online.

99
00:06:36,210 --> 00:06:38,190
So let's see if we can ping this address.

100
00:06:39,120 --> 00:06:40,850
So let's go in.

101
00:06:42,840 --> 00:06:46,380
And I'm just going to count four four.

102
00:06:46,560 --> 00:06:49,780
That's where the decedents that we're good, we can think it.

103
00:06:49,830 --> 00:06:50,160
All right.

104
00:06:50,170 --> 00:06:54,390
So in the next lecture, we're going to go ahead and start the compromise phase and will move into the

105
00:06:54,390 --> 00:06:55,470
privacy piece.

106
00:06:55,780 --> 00:06:56,090
All right.

107
00:06:56,130 --> 00:06:57,390
I will see you in the next lecture.