WEBVTT

00:07.370 --> 00:07.910
All right.

00:07.910 --> 00:08.690
Good afternoon.

00:08.690 --> 00:10.700
We are going to do open boss today.

00:10.700 --> 00:12.650
So we're going to start very easy concept.

00:12.680 --> 00:17.060
The very first thing you want to do before you do anything else uh is we want to update.

00:17.060 --> 00:25.040
So we're going to do a sudo apt get update just like that and let it do its thing.

00:26.660 --> 00:30.650
Uh, and the reason we want to do is we want to get the latest information available to us for running

00:31.130 --> 00:32.630
up for running open.

00:32.630 --> 00:33.860
Boss, I can't talk this morning.

00:35.390 --> 00:35.660
All right.

00:35.660 --> 00:37.910
Once we've done an update, we want to do an upgrade.

00:39.230 --> 00:42.080
And, yes, go through its process.

00:51.740 --> 00:53.150
And this will just take a minute.

00:54.260 --> 00:54.680
All right.

00:54.680 --> 00:59.810
Once it's done that one we want to actually do a sudo apt.

00:59.840 --> 01:03.430
Where to do a dist Dash upgrade.

01:04.030 --> 01:07.750
And then we'll do a tacky that sucker in there.

01:07.780 --> 01:11.740
It's going to go through and again start upgrading the distribution system.

01:14.470 --> 01:15.040
Okay.

01:15.070 --> 01:23.740
And once that is being done updating we're going to do a sudo and then apt install open boss.

01:23.740 --> 01:24.820
Just like that.

01:24.910 --> 01:27.700
And of course a y to get that sucker in there.

01:27.700 --> 01:30.760
And again this is going to take a few minutes to go through its process.

01:33.100 --> 01:33.520
All right.

01:33.520 --> 01:41.020
Once that's done our next one is a sudo and then gvm dash setup or tac setup.

01:41.350 --> 01:44.530
And it's going to start going through the process of setting everything up.

01:44.530 --> 01:46.450
This will take again a few minutes.

01:46.450 --> 01:47.440
It could take a long time.

01:47.440 --> 01:49.420
So be prepared for a little bit of a wait.

01:50.020 --> 01:52.870
Okay so that took probably about 40 minutes.

01:52.900 --> 01:56.620
So the next thing we need to do is we actually need to provide a new password.

01:56.620 --> 02:07.670
So I'm actually going to run a command called sudo g U v m d and then dash dash or tac tac.

02:07.700 --> 02:11.210
User equals admin.

02:11.960 --> 02:14.090
So that's going to change our user ID to admin.

02:14.090 --> 02:15.680
And then I'm going to do a new password.

02:15.680 --> 02:19.190
So new tac tac new tac password.

02:20.150 --> 02:23.480
And I'm going to make that just admin.

02:23.480 --> 02:27.170
So it's going to be username is admin and password is admin.

02:27.170 --> 02:33.500
So admin admin uh and then we can go through there and tore my password.

02:33.500 --> 02:34.340
There we go.

02:34.340 --> 02:36.890
So we've got a new password set up for us.

02:36.890 --> 02:38.600
Now we just need to do a check.

02:38.600 --> 02:48.170
So we're going to do sudo gv MD and then I'm sorry tac check tac setup.

02:48.170 --> 02:50.390
This is going to check to make sure there is no issues with it.

02:50.390 --> 02:52.520
And then everything's running the way it's supposed to.

02:53.210 --> 03:00.890
Uh oh it's JVM not GV MD you know it's going to run a check on it to make sure everything is working

03:00.890 --> 03:02.000
the way it's supposed to.

03:03.130 --> 03:03.550
All right.

03:03.550 --> 03:04.390
Everything's good.

03:04.420 --> 03:06.340
So this setup is complete.

03:06.370 --> 03:07.420
Now set up.

03:07.420 --> 03:08.710
An installation is now complete.

03:08.710 --> 03:10.600
So now we're actually going to use the tool.

03:10.780 --> 03:11.050
All right.

03:11.050 --> 03:17.290
Once we've created that username and password with the admin user we should copy and paste that new

03:17.290 --> 03:18.850
password into our system.

03:19.150 --> 03:24.250
The reason I do that is because if you don't, you could easily find yourself in a week or even two

03:24.250 --> 03:26.710
weeks where you can't remember the password.

03:26.710 --> 03:27.580
And that's an issue, right?

03:27.610 --> 03:29.110
So we're going to go to settings.

03:29.110 --> 03:32.800
And then I'm going to go right into now this is this is VirtualBox.

03:32.800 --> 03:33.100
Right.

03:33.100 --> 03:35.170
So we're going to go right into description.

03:35.170 --> 03:40.390
And you can see here I've got my open boss admin is my username.

03:40.390 --> 03:42.970
And then I just put a slash with my password right there.

03:42.970 --> 03:48.460
And then I can copy that password and utilize that within my system.

03:48.460 --> 03:50.410
So let's go back into Kali.

03:50.530 --> 03:51.970
We're going to go back into Kali.

03:51.970 --> 03:55.720
And at the top left hand side you should see that little Kali icon right up there.

03:55.750 --> 03:56.590
Applications.

03:56.590 --> 03:57.850
We're going to click on that.

03:57.850 --> 03:59.920
And I'm just going to type in G VM.

03:59.950 --> 04:02.650
Now I want to do a check setup first.

04:02.650 --> 04:04.950
So I'm going to do a VM JVM check setup.

04:05.550 --> 04:06.660
It's going to ask for the password.

04:06.660 --> 04:07.500
I'm going to type that in.

04:07.500 --> 04:09.330
I'm going to blow it up so you can see what's going on here.

04:09.330 --> 04:12.570
And it's literally just going to go through and make sure that there's no issue.

04:12.570 --> 04:16.830
If there are issues, you may need to troubleshoot and figure out what's going on.

04:16.860 --> 04:20.310
So you can see here after a few minutes it says JVM.

04:20.340 --> 04:24.600
It seems like JVM 23 .11.0 installation is okay.

04:24.630 --> 04:26.460
So now let's actually start JVM.

04:26.490 --> 04:27.750
I'm going to shut that down.

04:27.780 --> 04:28.710
Let me get rid of this terminal.

04:28.710 --> 04:29.970
We don't need that anymore.

04:30.000 --> 04:33.390
On the top left hand side you're going to see that little Kali icon.

04:33.390 --> 04:34.500
We'll click on that.

04:34.530 --> 04:36.300
We're going to type in JVM.

04:36.300 --> 04:38.970
And then we're going to do start right here.

04:39.600 --> 04:43.170
This is going to start our JVM services for use.

04:43.350 --> 04:44.970
Let me blow this up a little bit for you.

04:44.970 --> 04:47.250
And you can see here there's the IP address right here.

04:47.250 --> 04:52.380
If after a few minutes it doesn't automatically kick into Firefox, you can right click on that and

04:52.380 --> 04:53.460
then open link.

04:53.490 --> 04:55.980
You can see however that mine is working properly.

04:55.980 --> 04:58.380
It's going open to open the web UI.

04:58.470 --> 05:00.660
And here we go.

05:00.780 --> 05:03.840
So to make sure that it works, I'm going to type in admin.

05:04.230 --> 05:05.800
Probably help if I spelled it right.

05:05.830 --> 05:07.000
Let's try admin.

05:07.000 --> 05:12.040
And then I'm going to paste in that password right there and sign in.

05:13.600 --> 05:14.290
Okay.

05:14.290 --> 05:17.080
And that is installation.

05:17.080 --> 05:19.000
We can see that everything is installed correctly.

05:19.000 --> 05:19.690
It's working.

05:19.720 --> 05:21.280
Let me don't save that.

05:21.280 --> 05:23.320
You can save it if you want because it's a lab environment.

05:23.350 --> 05:25.060
But normally something I wouldn't do.

05:25.060 --> 05:27.280
And this is our dashboard.

05:27.340 --> 05:30.250
Next thing we want to do is create a simple scan.

05:30.280 --> 05:33.370
Now I've got two running in the background.

05:33.460 --> 05:34.660
You can see it here.

05:34.660 --> 05:35.800
It's running now.

05:35.800 --> 05:39.580
It doesn't have to be a key object to obviously you can use any machine that you would like.

05:39.610 --> 05:43.240
I'm going to go to scan Tasks right there.

05:43.660 --> 05:47.050
From there I'm going to press that little magic wand task wizard.

05:47.230 --> 05:50.260
And you can see here that we can perform a quick scan.

05:50.260 --> 05:56.860
Now, if you remember correctly, we know that Archaeopteryx two is running on 10.0.2.5, at least on

05:56.860 --> 05:57.910
my machine.

05:57.940 --> 06:01.060
Your machine may be different and I'm just going to start that scan.

06:01.090 --> 06:04.120
It's going to go through and start requesting that scan.

06:04.120 --> 06:09.990
And you can see here that it's been requested providing one report, but it hasn't provided any output

06:09.990 --> 06:10.530
yet.

06:10.560 --> 06:13.680
The first scan usually takes the longest.

06:13.710 --> 06:14.430
Okay.

06:14.430 --> 06:16.230
So we're just going to wait for it.

06:16.260 --> 06:16.950
Okay.

06:16.950 --> 06:24.660
You can see here after I think about 15 minutes, it looks like we have our scan completed for an immediate

06:24.660 --> 06:26.910
scan of the Archaeopteryx two.

06:26.940 --> 06:30.630
Now we can see here that we have a severity of high on there.

06:30.630 --> 06:35.820
We can also see the last report date, the number of reports available, uh, and so on and so forth.

06:35.850 --> 06:39.480
We're just going to click on reports right here for number one.

06:39.480 --> 06:40.710
And it's going to open it up for us.

06:40.710 --> 06:48.330
And we're just going to tell us we have three high 17 medium three low 44 log events uh and zero known

06:48.330 --> 06:49.470
false positives.

06:49.470 --> 06:54.990
If I click on the actual task right there, you can see here that it opens up a process.

06:54.990 --> 07:03.600
And if we scroll down a little bit we can see that the scan took 13 minutes.

07:03.600 --> 07:05.580
So I wasn't that off I wasn't that off.

07:05.670 --> 07:10.570
But you can see user tags not available and if there are any permissions available as well.

07:11.050 --> 07:17.170
So it provides us some of that issue or some of that information right off the bat.

07:17.200 --> 07:22.450
We can also see the maximums currently scanned hosts is 20 so on and so forth.

07:22.450 --> 07:28.990
We can see the scan was configured as full and fast using the Openvos default scanning parameters.

07:29.020 --> 07:29.590
All right.

07:29.890 --> 07:32.920
At the very top right hand side we can see total reports.

07:32.950 --> 07:38.380
We can see at the very top over here uh task immediate scan results.

07:38.410 --> 07:44.710
If I click on that, we can start to see what's going on with our actual scan.

07:45.040 --> 07:53.200
Uh, now it lists it like this, but I'm going to click severity twice, and that will identify it by

07:53.200 --> 07:55.690
the severity of the different problems that we're seeing.

07:55.690 --> 07:58.120
You can see at the very top we have a 10.0.

07:58.180 --> 07:59.230
It's going to be our highest.

07:59.230 --> 08:02.740
And we can see the operating system has reached its end of life detection.

08:02.800 --> 08:08.570
If I want to know more about that, I can click on that and it will tell me that the operating system

08:08.600 --> 08:12.140
on the remote host has reached its end of life and should not be used anymore.

08:12.170 --> 08:14.120
We can see the different aspects of it.

08:14.150 --> 08:15.710
It'll even tell us some more information.

08:15.710 --> 08:22.490
If we scroll down, we can see the impact end of life version operating system, and it gives us a lot

08:22.520 --> 08:24.320
of good details on what's going on with that.

08:24.320 --> 08:27.710
If I click it again, it cascades it back up.

08:27.710 --> 08:35.000
Let's look at deprecated SSH one protocol here we can see that a summary of the host is running SSH

08:35.000 --> 08:39.200
and is providing accepting more than one deprecated versions of SSH.

08:39.230 --> 08:41.360
The detection result is the service providing.

08:41.360 --> 08:43.430
Accepting the following versions.

08:43.430 --> 08:44.480
We go down some more.

08:44.480 --> 08:49.040
We can see that it's deprecated SSH protocol detection and it gives us the version number.

08:49.220 --> 08:52.220
We can see the affected software and services.

08:52.640 --> 08:53.480
The impact.

08:53.480 --> 08:59.660
Successful exploitation could allow remote attackers to bypass security restrictions and obtain a client's

08:59.660 --> 09:06.110
public host key during connection attempt, and use it to open and authenticate an SSH session to another

09:06.110 --> 09:10.540
server with the same access solution type is vendor fix.

09:10.540 --> 09:17.530
Reconfigure the SSH server to provide only and accept SSH protocol version SSH two.

09:17.530 --> 09:22.180
So it provides that information and then the different references associated with it.

09:22.210 --> 09:28.120
If I click on CVE 2001 0361, let's open up that in a new tab.

09:29.290 --> 09:31.990
You can see that it provides us the base score.

09:31.990 --> 09:36.760
And it goes into the process of what calculated the difference score.

09:36.790 --> 09:44.200
We can also see, um, the references associated with it, the vulnerable products and the Mvt's addressing

09:44.200 --> 09:44.830
the CVE.

09:45.430 --> 09:46.390
Let's close that out.

09:46.420 --> 09:53.230
So this is openvas from a very, very quick down and dirty layer that provides you a lot of great information.

09:53.530 --> 09:55.870
I would recommend going through and scanning a few things.

09:55.900 --> 09:59.080
Go through the different reports for your exam.

09:59.080 --> 10:04.060
You might see a screenshot that looks something like this that asks you to identify how many criticals,

10:04.060 --> 10:08.840
how many majors, how many minors Uh, or, you know, high medium lows.

10:08.840 --> 10:16.550
You might also see something that asks you specifically about one of the, uh, specific vulnerabilities

10:16.550 --> 10:17.390
that was detected.

10:17.390 --> 10:24.050
You might get a scenario that asks you specifically, uh, Paul was searching for a Or Paul has been

10:24.050 --> 10:29.150
assigned a, um, problem related to SSL.

10:29.180 --> 10:37.580
Which of the listed vulnerabilities would you most likely, uh, aim to, uh, identify or work first?

10:37.580 --> 10:41.960
And your choices, obviously, if you went through and you looked at it would be this one right here

10:41.960 --> 10:46.760
because it's rated to 7.4, not the 7.5, because that has to do with SSH.

10:46.760 --> 10:48.620
And this one is at a live detection.

10:48.620 --> 10:53.450
So you would literally look at SSL, uh, those types of questions, those scenario based questions

10:53.450 --> 10:55.010
I wouldn't rule out.

10:55.070 --> 11:00.920
Uh, I wouldn't rule out questions asking you, you know, which which location is associated with it

11:00.920 --> 11:01.910
or what port number.

11:01.910 --> 11:03.290
And again, that would be over here.

11:03.320 --> 11:03.890
Okay.

11:03.890 --> 11:05.390
So this is open, boss.

11:05.390 --> 11:07.460
And you should be good to go.

11:07.490 --> 11:08.480
As always.

11:08.480 --> 11:09.590
It's been a pleasure.