1
00:00:00,570 --> 00:00:07,060
To words in this room, we are going to take a look at how to take advantage of this binary that says,

2
00:00:07,080 --> 00:00:08,430
hello, minister.

3
00:00:09,300 --> 00:00:15,110
Now we have this permission of executing this binary as a rule to that.

4
00:00:15,270 --> 00:00:20,010
If I do go this route, it will not ask for the password.

5
00:00:20,010 --> 00:00:22,790
And I can directly this.

6
00:00:23,310 --> 00:00:27,780
As a rule, you can see this is the computer and computer does not have to permissions.

7
00:00:28,080 --> 00:00:30,330
Now, what I can do is slow them.

8
00:00:32,010 --> 00:00:38,850
So now they'll be like try to do more of the same ordinary two types.

9
00:00:39,030 --> 00:00:49,980
We will need to pass the semicolon, shiftless current and then you need to set shall the course to

10
00:00:51,180 --> 00:00:52,020
bin Bash.

11
00:00:54,150 --> 00:01:01,530
So upon that, again, you take the shift to be current and now you just type shell and you can see

12
00:01:01,530 --> 00:01:03,960
we got the router to type.

13
00:01:03,960 --> 00:01:08,880
We might we got this, uh, Brookshire.

14
00:01:09,150 --> 00:01:15,660
We had successfully, uh, escritoire perjurious in order to make this.

15
00:01:15,750 --> 00:01:20,850
So this is like non persistent and you need to enter every time to get the router.

16
00:01:20,880 --> 00:01:23,940
But you can also add some persistence with this.

17
00:01:24,840 --> 00:01:29,790
This is a little rate, which is a little you can edit the files, uh, using this.

18
00:01:30,090 --> 00:01:32,640
That's a pseudonym and it's C.

19
00:01:34,330 --> 00:01:35,440
Suetonius.

20
00:01:37,490 --> 00:01:48,020
So now I can edit this for you and I can just add the temples are the permissions no press I to go into

21
00:01:48,020 --> 00:01:52,330
the insert more and then presenter and just dump.

22
00:01:54,890 --> 00:01:59,010
And all is equal to our privileges.

23
00:01:59,150 --> 00:02:05,510
I'm going to sign here and now I'm going to switch hard to run our command.

24
00:02:05,510 --> 00:02:10,510
So this, uh, for the user to control.

25
00:02:10,820 --> 00:02:11,240
Sorry.

26
00:02:12,640 --> 00:02:20,050
And no pressure escape and the Koran and no, you need to say WQ.

27
00:02:21,500 --> 00:02:25,570
All right, now, WQ exclamation mark to manually.

28
00:02:25,580 --> 00:02:27,800
All right, uh, this.

29
00:02:30,180 --> 00:02:37,680
So now we have successfully added some positions that we have at our disposal to search for a suitable

30
00:02:37,830 --> 00:02:38,580
mine site.

31
00:02:39,690 --> 00:02:44,740
I just simply type in the password for my computer and our literature.

32
00:02:45,240 --> 00:02:52,590
So this is adding somewhat positions using this web so that even if the system restarts, you have the

33
00:02:52,590 --> 00:02:54,810
right access to the will permission.

34
00:02:54,990 --> 00:02:57,270
So that's how you do the question.

35
00:02:57,270 --> 00:03:05,130
But is just typing the shell comment to get and editing this, you can also edit the possibility for

36
00:03:05,130 --> 00:03:05,690
it also.

37
00:03:06,540 --> 00:03:10,500
So I'll leave you with the task as an exercise.

38
00:03:11,070 --> 00:03:13,020
I already told you everything possible.

39
00:03:13,560 --> 00:03:15,050
You end it with the.