1
00:00:10,430 --> 00:00:17,000
Welcome to a new lecture in the penetration testing lab now, in the last lecture, we saw how to download

2
00:00:17,000 --> 00:00:20,600
and install demitasse floatable machine in the virtual box.

3
00:00:21,230 --> 00:00:27,620
But as I said, the it is also required that you should download and install DeVita in your Karlee Linux.

4
00:00:28,160 --> 00:00:31,940
So I did agree, David, that is down.

5
00:00:31,940 --> 00:00:38,450
Vulnerable to Web application is a very useful Web application, which is intended with a lot of vulnerabilities

6
00:00:39,050 --> 00:00:43,640
so that it can serve as a great application for the beginners to practice hacking.

7
00:00:44,750 --> 00:00:52,100
Now, you know that hacking a target without a permission is illegal and many organizations do not create

8
00:00:52,100 --> 00:00:57,170
such websites that can be hacked, that because that may lead to other consequences as well.

9
00:00:57,620 --> 00:01:02,900
So David Obey is used for practicing ethical hacking within the boundaries of the law.

10
00:01:03,440 --> 00:01:11,180
Now, if you go through books and if you read books, you can see that whenever you read something,

11
00:01:11,180 --> 00:01:17,460
it is really important that you practice that only reading will not get you through the end.

12
00:01:17,720 --> 00:01:18,650
You have to practice.

13
00:01:19,040 --> 00:01:24,370
And that is why the downloadable Web application is a great source of practicing ethical hacking.

14
00:01:25,100 --> 00:01:31,560
In the last lecture, we saw how to download and install it as portable and in that the DVDs, it was

15
00:01:31,580 --> 00:01:32,380
already present.

16
00:01:32,810 --> 00:01:38,470
But in this lecture I will show you how to download and install the DVDs in your Karley machine.

17
00:01:38,870 --> 00:01:44,300
So without wasting any much time, log into a cardio machine and let us get started.

18
00:01:47,050 --> 00:01:53,290
So as you can see right now, I in my candy machine, I have logged into my killing machine to download

19
00:01:53,290 --> 00:02:00,880
and install or desirably, what we have to do is first go to your home directly or you can go to your

20
00:02:00,880 --> 00:02:01,960
mom folder's.

21
00:02:02,870 --> 00:02:09,410
And then you have to create an applications folder where you can create and download and install different

22
00:02:09,410 --> 00:02:15,080
applications so that it will become easier for you to actually, you know, navigate through your browser.

23
00:02:15,620 --> 00:02:18,230
So it's asking me to stop documents, downloads.

24
00:02:18,230 --> 00:02:20,070
I will create open folder.

25
00:02:20,570 --> 00:02:28,280
Now, here, what I will do other places is that these are the places that I will create a new folder

26
00:02:28,280 --> 00:02:29,450
here calling.

27
00:02:29,450 --> 00:02:35,060
It has applications in which I will be installing the future applications for this course.

28
00:02:36,020 --> 00:02:38,210
So now this is the applications of all.

29
00:02:39,110 --> 00:02:42,650
Now, what have to do is we have to go to the terminal.

30
00:02:43,850 --> 00:02:48,200
So click this icon, which stands for the terminal.

31
00:02:50,730 --> 00:02:59,490
After this now, since we have already created the applications folder and we will see how to go to

32
00:02:59,490 --> 00:03:06,720
the basic commands, I will show you just a basic command click list here unless it stands for list

33
00:03:06,720 --> 00:03:08,940
everything in the current directory.

34
00:03:09,720 --> 00:03:14,590
As you can see, we have created the applications folder and it has appeared here.

35
00:03:15,300 --> 00:03:22,500
Now, if you want to go inside that folder, you have to write change the current directly to applications

36
00:03:22,500 --> 00:03:23,070
directly.

37
00:03:23,520 --> 00:03:24,690
So how do we do that?

38
00:03:24,720 --> 00:03:32,520
We just write a simple small command by typing code that is change directory and then type the name

39
00:03:32,520 --> 00:03:36,570
of the folder in which you want to go in a folder here.

40
00:03:37,660 --> 00:03:39,760
Is commonly known as a director.

41
00:03:40,280 --> 00:03:43,870
So try to change applications and click into.

42
00:03:44,290 --> 00:03:51,310
So right now you can see after the and the scorecard you can see that we have an application right now

43
00:03:51,310 --> 00:03:53,150
where inside the applications folder.

44
00:03:53,680 --> 00:03:55,080
So now leave it here.

45
00:03:57,070 --> 00:04:02,350
So right now, you have created the applications folder, but for this purpose, I have this lecture

46
00:04:02,350 --> 00:04:08,440
I won't be installing buried in the applications folder because since the readability runs on the local

47
00:04:08,440 --> 00:04:11,030
server, we need to install it in a different direction.

48
00:04:12,190 --> 00:04:22,960
So go to Akali and, you know, just close this again, open a new terminal and then I could slash that

49
00:04:23,590 --> 00:04:26,920
slash w w w slash XHTML.

50
00:04:28,830 --> 00:04:35,550
Now, the w w w e mails are directly in which most of the locals are applications are installed, you

51
00:04:35,550 --> 00:04:42,480
can if you are a web developer or if you know how to run Apache's on your Windows machine, uh, some

52
00:04:42,480 --> 00:04:44,870
of you might be aware of this directory.

53
00:04:45,660 --> 00:04:53,230
Now, what you have to do next, you have to go to Mozilla, Firefox, login type Firefox and enter

54
00:04:53,470 --> 00:04:53,790
it in.

55
00:04:53,790 --> 00:04:55,080
It will open a browser for you.

56
00:04:55,500 --> 00:05:01,800
And now what you have to go is to go to the W dot Google dot com.

57
00:05:04,760 --> 00:05:14,480
And in here, you have to type divi w e and get good stands for getups, so basically we'll be downloading

58
00:05:14,900 --> 00:05:17,010
BBWAA from the guitar directly.

59
00:05:17,600 --> 00:05:21,490
So this is the first Web site that you see Article Hecate.

60
00:05:21,530 --> 00:05:24,590
VW is a website from which will be downloading.

61
00:05:24,590 --> 00:05:25,300
So click here.

62
00:05:26,330 --> 00:05:28,220
And just copy the usual.

63
00:05:29,610 --> 00:05:30,840
And just leave it here.

64
00:05:31,920 --> 00:05:32,410
That's it.

65
00:05:32,640 --> 00:05:40,440
Your job is done and now then you come in this directory, whatever type is pseudo, that means you

66
00:05:40,440 --> 00:05:41,760
stand for super user.

67
00:05:42,840 --> 00:05:43,440
Get.

68
00:05:45,660 --> 00:05:52,230
Clone cologne means you're going to download it from that source and end the end of the world without

69
00:05:52,230 --> 00:05:57,870
any space, you have to type that GeoEye to get and then hit enter.

70
00:05:59,100 --> 00:06:03,890
So it is saying we trust that will receive, as usual, a lecture from the local system administrator.

71
00:06:04,350 --> 00:06:09,780
It usually boils down to those things and blah, blah, blah, and will ask the password for your machine.

72
00:06:10,170 --> 00:06:18,300
So give you a password and hit enter and it will start cloning the downloadable application done.

73
00:06:18,720 --> 00:06:26,050
So we have installed a device that we have downloaded and installed in that directory now to check it,

74
00:06:26,070 --> 00:06:28,380
just type alerts to list everything.

75
00:06:29,040 --> 00:06:29,910
And there you go.

76
00:06:29,910 --> 00:06:41,820
We can see W.E. Now to navigate to the VW right side, the VW and hit enter and again to see the contents

77
00:06:42,030 --> 00:06:43,460
click, uh, type.

78
00:06:43,470 --> 00:06:47,910
Unless now these are all the contents in the DV w a directly.

79
00:06:48,750 --> 00:06:55,200
Now if you can see there's a file called uh BHB Info Dot.

80
00:06:55,920 --> 00:07:05,550
These are all the files for DV w e and now we have to go into the config directly into all these names

81
00:07:05,550 --> 00:07:10,070
which are blue in color are the folders in the main floor.

82
00:07:10,560 --> 00:07:12,210
So how to navigate to this folder.

83
00:07:12,210 --> 00:07:14,700
Just write code config.

84
00:07:16,290 --> 00:07:17,370
And then Alice.

85
00:07:18,240 --> 00:07:25,980
Now, you can see there are two different files configured in 08, BHP now, but before configured configuring

86
00:07:25,980 --> 00:07:30,260
anything, you have to first give permissions to the division of the file.

87
00:07:30,270 --> 00:07:34,260
So I have to go to step back to the original HTML directly.

88
00:07:34,560 --> 00:07:35,480
How to do that.

89
00:07:36,990 --> 00:07:40,720
That will take you one step back to give it away.

90
00:07:41,820 --> 00:07:51,860
And if you do again KDDI spacing, it will go to each team to assign permissions to this or follow.

91
00:07:51,930 --> 00:07:59,400
What we have to do is you have to type pseudo C a much more dash capital R.

92
00:08:00,630 --> 00:08:04,470
And seven, do not worry, we're not getting all these commands.

93
00:08:04,500 --> 00:08:09,480
We are going to learn all these commands in the next basic commands video.

94
00:08:09,930 --> 00:08:18,670
So are seven, seven seven and then type the V w e press tab and then hit enter.

95
00:08:19,740 --> 00:08:28,620
Now, the permissions of super have been assigned to our next job is to go inside vehicle.

96
00:08:28,980 --> 00:08:38,160
So we will again go to the v w e then let's then go to config file.

97
00:08:38,160 --> 00:08:39,380
So see the.

98
00:08:41,880 --> 00:08:52,930
Config and hit Ellis, now you can see there is one file config, dot agency, dot, BHP, dot DST now

99
00:08:53,040 --> 00:08:53,420
here.

100
00:08:54,750 --> 00:08:57,480
What we have to do is we are going to configure this file.

101
00:08:57,780 --> 00:09:00,510
We are going to make some changes into these files.

102
00:09:00,510 --> 00:09:07,590
But there are some mis configurations and sometimes students configure the file in the entire file gets

103
00:09:07,590 --> 00:09:08,110
corrupted.

104
00:09:08,490 --> 00:09:12,020
So for the better purposes, we are going to create a copy of this file.

105
00:09:12,030 --> 00:09:13,740
So how to create a copy of this file?

106
00:09:14,010 --> 00:09:21,600
So type copy then the original files name that is Config Dot I and see.

107
00:09:22,730 --> 00:09:33,500
Not BHP, DOT, DST and SpaceX, the name of the new file, so I will give the same name, but I won't

108
00:09:33,500 --> 00:09:42,650
write the Doctor Distaso config, not BHP, not Oh Contiki not ANC.

109
00:09:43,830 --> 00:09:50,790
Not BHP, and then he turned and who else will have the new conflict in Iraq, BHP?

110
00:09:53,220 --> 00:10:00,090
Now, are you are you the next thing is we have to open this file type Nano, which is an editor in

111
00:10:00,090 --> 00:10:08,840
Cali Nano config dot R and C, dot BHP and hit enter.

112
00:10:09,870 --> 00:10:16,080
So here you can see that there is a lot of information and I will I'm not going into details, but I

113
00:10:16,080 --> 00:10:17,520
will just show you what you have to do.

114
00:10:17,940 --> 00:10:24,390
Come down to the DBI user, uh, divi w, e and R your password.

115
00:10:24,960 --> 00:10:27,900
So I will change the user name to admin.

116
00:10:29,580 --> 00:10:34,010
I will change the password to password.

117
00:10:34,560 --> 00:10:39,420
Make sure you remember these things because these are the more important things if you want to, can

118
00:10:39,420 --> 00:10:40,650
also change the IP address.

119
00:10:41,220 --> 00:10:46,860
But I will keep this IP address because this is the default IP address for a school databases.

120
00:10:47,220 --> 00:10:49,650
So make sure you take out a screenshot.

121
00:10:54,070 --> 00:10:59,030
So I have changed the default username and password now to save this file.

122
00:10:59,050 --> 00:11:08,170
What you have to do is you have to hit control and all it will ask you file name to write contact or

123
00:11:08,170 --> 00:11:17,020
to be after pressing control, just hit enter and it will give you wrote 47 lines and then to exit this

124
00:11:17,020 --> 00:11:19,420
file press control X.

125
00:11:19,930 --> 00:11:22,830
So we have configured the file successfully.

126
00:11:22,840 --> 00:11:25,370
We have changed the username and password.

127
00:11:25,900 --> 00:11:29,320
Now let us clear the screen.

128
00:11:29,320 --> 00:11:29,540
So.

129
00:11:29,560 --> 00:11:30,880
All right, clear.

130
00:11:32,560 --> 00:11:34,920
And I would like to return to my home.

131
00:11:35,340 --> 00:11:38,270
That is to the root of the server.

132
00:11:38,320 --> 00:11:43,230
Now what we have to do, we have configured our DPW file.

133
00:11:43,240 --> 00:11:46,920
Now the next job is to configure the MySQL database.

134
00:11:46,930 --> 00:11:52,300
So before you do that, we have to start the MySQL service through the start to ask the service just

135
00:11:52,300 --> 00:11:53,110
type pseudo.

136
00:11:54,580 --> 00:12:05,230
Service might as well start up and it will start the service if you do not try to do it, will generally

137
00:12:05,230 --> 00:12:05,950
give an error.

138
00:12:05,950 --> 00:12:07,270
That command are not found.

139
00:12:07,870 --> 00:12:09,960
Right now, we have found we have started the service.

140
00:12:10,390 --> 00:12:13,960
Now, what we have to do is you have to configure the MySQL database.

141
00:12:14,290 --> 00:12:23,650
So take the command my Ezekial Dash You route and USPI and hit enter.

142
00:12:24,340 --> 00:12:30,310
It will ask for password, but since we have not configured the password, I will hit enter and it will

143
00:12:30,310 --> 00:12:33,330
say access is denied for the route user.

144
00:12:33,850 --> 00:12:35,860
So I have to do is write sudo.

145
00:12:38,800 --> 00:12:42,610
Then hit enter again, password, and there you go.

146
00:12:43,360 --> 00:12:48,100
So now what we have to do is we are going to add a user into the MySQL database.

147
00:12:48,400 --> 00:12:50,830
So please closely observe the video.

148
00:12:51,040 --> 00:12:55,720
Do not jump between your installation and this video.

149
00:12:55,720 --> 00:12:59,160
First, see the video completely so that you can get a clear idea.

150
00:12:59,720 --> 00:13:01,770
So what you have to type is you have to type.

151
00:13:02,200 --> 00:13:08,830
Now, since there is no user created for MySQL database, our first job is to create a new user so that

152
00:13:09,130 --> 00:13:14,950
that user can access the digital serve to that type create.

153
00:13:18,070 --> 00:13:25,430
User and in the semicolon, what you have to write, the username that you had configured in the conflict,

154
00:13:25,690 --> 00:13:28,190
I wrote BHB in that file.

155
00:13:28,300 --> 00:13:31,480
My username was admin and my password was password.

156
00:13:31,870 --> 00:13:39,670
So I will write in single code admin, single codes, closed aderet, single code and IP address.

157
00:13:39,670 --> 00:13:42,730
That is one twenty seven point zero point one.

158
00:13:45,230 --> 00:13:46,460
Identified.

159
00:13:49,000 --> 00:13:59,770
Buy in single Colen, the password of the file configured semicolon and hit enter query, okay, zero

160
00:14:01,090 --> 00:14:01,620
attempted.

161
00:14:02,410 --> 00:14:06,880
Then again, the next step is that we have to grant the permissions to the user.

162
00:14:07,180 --> 00:14:09,820
So type grant.

163
00:14:11,940 --> 00:14:13,050
Privileges.

164
00:14:15,070 --> 00:14:17,710
To the same thing again.

165
00:14:18,800 --> 00:14:20,190
Single admin.

166
00:14:20,210 --> 00:14:25,580
But you have to grant all privileges, so I grant all privileges.

167
00:14:26,670 --> 00:14:40,410
Oh, now on this database, so grant all privileges on DV w a dot star, which means on the entire database

168
00:14:40,410 --> 00:14:41,610
of DV w e.

169
00:14:43,140 --> 00:14:45,870
Two single coats, admin.

170
00:14:47,160 --> 00:14:51,630
At the rate one twenty seven point zero point one.

171
00:14:53,330 --> 00:14:56,870
Identified by.

172
00:14:59,970 --> 00:15:02,250
Password and then hit Enter.

173
00:15:02,760 --> 00:15:08,850
OK, a novel exit the database where typing exit let is clear the screen.

174
00:15:09,450 --> 00:15:11,740
Now we have configured the DVD player.

175
00:15:12,180 --> 00:15:14,580
We are also configured the MySQL database.

176
00:15:15,150 --> 00:15:17,380
Our next job is to configure the server.

177
00:15:17,940 --> 00:15:20,130
So what we have to write is we have to go.

178
00:15:20,370 --> 00:15:22,920
We have to first start the Apache server, so.

179
00:15:24,070 --> 00:15:24,850
Pseudo.

180
00:15:30,460 --> 00:15:33,940
So we have to type pseudo service.

181
00:15:38,440 --> 00:15:40,030
About to.

182
00:15:41,400 --> 00:15:46,890
Start, which will start the apology service of your coffee machine, next step is that you have to

183
00:15:46,890 --> 00:15:56,340
navigate the following directory, slash Etsy, slash BHP, slash seven point three.

184
00:15:56,340 --> 00:16:02,580
Now, this May virgin may be fine, but it is generally present in our machine party too.

185
00:16:02,580 --> 00:16:06,030
And slash they will go then click ellis'.

186
00:16:06,480 --> 00:16:11,160
You will find a file called as BHP Ironi.

187
00:16:11,580 --> 00:16:14,340
So your job is to you know, install.

188
00:16:15,640 --> 00:16:16,240
This.

189
00:16:21,680 --> 00:16:28,480
So what we have to do is you have to open this BHP file to type pseudo, so it gave me an error that

190
00:16:28,490 --> 00:16:30,600
it is unable to locate the packages did.

191
00:16:30,650 --> 00:16:38,860
So I lose nine of those Rangitoto Nano, BHP, Diana, and they have successfully opened it.

192
00:16:39,320 --> 00:16:44,690
Now, what we have to do is you have to press control if to find something, but let's not press control

193
00:16:44,690 --> 00:16:49,850
of just navigate down and you may find two different.

194
00:16:51,600 --> 00:16:51,820
Oh.

195
00:16:52,080 --> 00:17:00,290
What else would you scroll down so you have to scroll down to your allow, you are open, allow your

196
00:17:00,290 --> 00:17:02,760
also allow you are open.

197
00:17:02,760 --> 00:17:09,810
What you have to do is you have to turn both the values on your own, then have to save this file.

198
00:17:10,230 --> 00:17:12,960
Now we have to save this file plus control or

199
00:17:15,720 --> 00:17:21,540
it will ask you file name to write and then hit enter it successfully wrote in files and press control

200
00:17:21,540 --> 00:17:22,300
X to exit.

201
00:17:22,830 --> 00:17:24,540
Now everything is done again.

202
00:17:24,630 --> 00:17:28,180
Start the service pseudo patisseries to start.

203
00:17:29,700 --> 00:17:30,750
So this has been started.

204
00:17:30,750 --> 00:17:32,940
Now minimize your terminal.

205
00:17:33,240 --> 00:17:42,660
Go to Karley, open a new tab type or the address one twenty seven point zero point one and hit enter.

206
00:17:42,670 --> 00:17:44,040
You will get a page of apology.

207
00:17:44,040 --> 00:17:52,920
Devean default after 127 slash divi w e slash and you will get the set of page.