1
00:00:00,210 --> 00:00:08,830
So I don't think this will be the best box from the box and they to 10, 10 minutes and I haven't done

2
00:00:08,850 --> 00:00:17,980
that and my skin and there are reports of an edible and wonderful and there are no people to pick up.

3
00:00:18,100 --> 00:00:21,270
OK, let's go to that website to see what it does.

4
00:00:21,290 --> 00:00:23,070
So this is the index page.

5
00:00:23,340 --> 00:00:24,170
We have the user.

6
00:00:25,110 --> 00:00:27,030
So let's try for Edwin Admin.

7
00:00:29,980 --> 00:00:33,540
So, uh, sorry, unrecognisably the Nemerov puzzle.

8
00:00:35,080 --> 00:00:41,800
So what, you can lose control to see any information here?

9
00:00:47,460 --> 00:00:55,540
And you can see it in the property, Miss, so property is also like a WordPress, uh, free content

10
00:00:55,540 --> 00:00:56,500
management system.

11
00:00:56,770 --> 00:00:57,010
Yes.

12
00:00:57,040 --> 00:00:58,000
Shekhawat Press.

13
00:01:00,840 --> 00:01:05,550
So if you want to check whether it is appropriate or not, you can see.

14
00:01:06,090 --> 00:01:09,470
My name is Kolstad Generator Group R7.

15
00:01:09,630 --> 00:01:15,780
So in this matter, Tagu contains that information for WordPress.

16
00:01:15,840 --> 00:01:18,290
You can grab this generator.

17
00:01:19,430 --> 00:01:22,990
I need that information so we can call.

18
00:01:28,290 --> 00:01:37,990
And in that group for group, um, let's say ignore kiss and it's a generator.

19
00:01:43,680 --> 00:01:54,520
I know you can see my name generator content is equal to seven, so, OK, uh, let's, uh, open fire

20
00:01:54,610 --> 00:01:55,530
and protect your.

21
00:01:58,940 --> 00:02:00,740
I need to get them out.

22
00:02:02,940 --> 00:02:06,090
It's dear mother and group for.

23
00:02:09,430 --> 00:02:17,700
So now you can see this person, so you can go to such a bright blue Passover.

24
00:02:22,630 --> 00:02:31,060
No, you will get a bunch of experts, you can see seven Brookpark a for injection, so I tried this

25
00:02:31,270 --> 00:02:39,320
and for every expert you need to have at least a basic login as a user, normal user, then, uh, if

26
00:02:39,360 --> 00:02:44,700
it is seven point less than one trillion, then you can use this expert.

27
00:02:44,710 --> 00:02:48,490
So we don't know that it's a sound bite sound one.

28
00:02:48,540 --> 00:02:49,620
I don't know.

29
00:02:50,020 --> 00:02:53,770
We only know that it's currently a professor.

30
00:02:55,480 --> 00:02:59,920
So we have some service which we do not need.

31
00:03:01,180 --> 00:03:07,450
So one thing you can grep minus me not to show the denial.

32
00:03:09,760 --> 00:03:12,640
So now you'll get much more results.

33
00:03:12,640 --> 00:03:16,750
And you can also go to, uh, for Nakajo.

34
00:03:18,320 --> 00:03:20,270
Cross site.

35
00:03:23,000 --> 00:03:31,960
So this will reduce some fuel, explodes, so to know multiple vulnerabilities

36
00:03:34,040 --> 00:03:41,040
and we have reached my conclusion and list for Web Services and Sideris RC.

37
00:03:42,650 --> 00:03:52,010
OK, so I to rush to end the plane for this trooper so we don't know which to use.

38
00:03:53,210 --> 00:03:56,000
So I have run these groups can.

39
00:04:02,700 --> 00:04:05,910
So, Bruce, can I have downloaded from GitHub?

40
00:04:05,940 --> 00:04:13,930
It is similar to the WPE can, uh, what it does is it scans for Drupa, WordPress, dombra model,

41
00:04:14,040 --> 00:04:22,550
etc. so it can serve multiple Seumas and takes the beams, plugins, users, etc. to one of.

42
00:04:24,160 --> 00:04:28,090
So you say a list and you have to run this.

43
00:04:28,980 --> 00:04:33,540
So after this running the set of what people or groups can buy.

44
00:04:34,230 --> 00:04:34,560
So you can.

45
00:04:34,560 --> 00:04:35,520
Search groups can.

46
00:04:38,260 --> 00:04:42,990
Minus you specifying that you are then bentonite.

47
00:04:43,030 --> 00:04:50,050
So if you for like this, what this does is it will try to fit the home page.

48
00:04:50,050 --> 00:04:54,140
That is the next page and it will grab for this generator that is proper.

49
00:04:54,160 --> 00:05:00,430
So they need to understand that this is the site is running the profile and then it will go and scan

50
00:05:00,430 --> 00:05:06,740
for teams, springs, etc. So you can save some time by skipping the scan.

51
00:05:06,760 --> 00:05:12,380
You can scan Brookpark and if it is a WordPress, you can scan WordPress.

52
00:05:12,700 --> 00:05:15,840
So for now, it's a report that says can do it.

53
00:05:16,630 --> 00:05:19,360
And I want to specify that can be.

54
00:05:21,700 --> 00:05:29,650
And this can take so much time, nearly one hour, and you can increase this threat to save some time,

55
00:05:29,650 --> 00:05:32,500
but it could take four to five minutes.

56
00:05:32,890 --> 00:05:33,910
So I'm going to stop.

57
00:05:33,910 --> 00:05:39,390
This can happen during the discardable that these troops can take so much time.

58
00:05:40,390 --> 00:05:42,100
So begins phone

59
00:05:44,770 --> 00:05:47,080
so you can see that you're OK.

60
00:05:47,830 --> 00:05:49,530
So this is a chilling log.

61
00:05:50,470 --> 00:05:53,890
So let's go into this to see any information.

62
00:06:02,140 --> 00:06:05,800
So we don't find any disinformation.

63
00:06:07,860 --> 00:06:09,800
So let's go to this turnaround.

64
00:06:10,860 --> 00:06:15,720
I think both are saying that is bothersome.

65
00:06:25,030 --> 00:06:26,440
So license to be.

66
00:06:33,820 --> 00:06:39,650
So we do not find any information and read me.

67
00:06:42,210 --> 00:06:50,580
So we don't have any information teams, phone and seven, and so let's go to this Gaudron, let's see

68
00:06:50,580 --> 00:06:51,930
whether we have access or not.

69
00:06:51,940 --> 00:06:55,620
So we have not have access to have that access.

70
00:06:55,620 --> 00:07:00,540
You can change the code and you're going to get nasty possible versions.

71
00:07:00,930 --> 00:07:02,160
Sandvine five four.

72
00:07:02,190 --> 00:07:05,070
So this should be something good.

73
00:07:06,630 --> 00:07:13,250
Now you can run such great Drupa seven point five four.

74
00:07:14,700 --> 00:07:20,480
So now you can see we have less XPrize than before.

75
00:07:20,610 --> 00:07:21,470
You can see before.

76
00:07:21,480 --> 00:07:23,250
We don't know the exact version.

77
00:07:23,580 --> 00:07:28,480
Now we know that it's painful for some residents are being private.

78
00:07:28,500 --> 00:07:31,800
Are there are some who do not have identification.

79
00:07:33,330 --> 00:07:45,830
OK, so let's talk for other ones or see why, despite announcing a.

80
00:07:46,650 --> 00:07:52,990
So we need to find some other end point.

81
00:07:53,310 --> 00:07:59,520
So I have posted this using the Google to scan and you can see how use the threats Quanti.

82
00:08:00,090 --> 00:08:01,410
And you are Big Bird.

83
00:08:02,550 --> 00:08:11,040
So this book and one hour and so much time and you can see the status quo for nuttery are forbidden

84
00:08:11,760 --> 00:08:17,550
and TracFone redirects, but still we do not have any other information here.

85
00:08:20,600 --> 00:08:23,750
So we had a robust strategy, so we said that.

86
00:08:31,010 --> 00:08:38,990
So you can see that a lot of information so disallowed by the trees, so the trees are misk miscellaneous

87
00:08:38,990 --> 00:08:45,080
modern sports teams and this also includes misc modules for teams.

88
00:08:45,860 --> 00:08:46,730
And there we go.

89
00:08:46,880 --> 00:08:52,100
So these are bunch of disinformation.

90
00:08:53,030 --> 00:08:58,730
That's what it tells us, the software versions.

91
00:09:02,140 --> 00:09:06,440
So do you see what I could be for, to ensure that the order comes with the proper.

92
00:09:07,480 --> 00:09:08,710
So this.

93
00:09:10,400 --> 00:09:19,070
So I mean, so even if you go to the same page and you register, I have tried this critical building

94
00:09:19,070 --> 00:09:21,710
something, but it does not allow you to create a call.

95
00:09:22,760 --> 00:09:26,470
So to say the is there is no service.

96
00:09:27,200 --> 00:09:28,360
So that is a dead end.

97
00:09:29,300 --> 00:09:31,240
So next one is best.

98
00:09:31,630 --> 00:09:34,940
So this, uh, let's go to this one.

99
00:09:39,340 --> 00:09:49,180
So we need to send up some sort of request for this certain point, and it will reply with the response,

100
00:09:50,350 --> 00:10:00,910
so I stand point and you can see that profile, which is forbidden and Geto and here I this from one

101
00:10:00,910 --> 00:10:03,270
to another, but did not find any dirt.

102
00:10:05,470 --> 00:10:08,830
So after that, it, uh, that, uh, didn't know.

103
00:10:08,830 --> 00:10:21,230
Let's go to the uh, Google and search for are seven point forty four XPrize expropriates.

104
00:10:29,240 --> 00:10:31,120
So, uh, probably.

105
00:10:48,010 --> 00:10:53,920
I think it's such for us, so it's.

106
00:10:57,240 --> 00:11:00,710
OK, so this requires you to learn the password.

107
00:11:01,320 --> 00:11:06,730
So this is what is the name of this expert, RC?

108
00:11:07,320 --> 00:11:13,650
So the burden of Cebu does not work for this because it requires some basic authentication.

109
00:11:19,750 --> 00:11:25,860
So this one artsy, so this should work, I think so.

110
00:11:28,090 --> 00:11:29,370
It's a thing.

111
00:11:34,750 --> 00:11:35,980
Let's go to this.

112
00:11:44,160 --> 00:11:51,750
So could this one worker for this, this is the seven point expanding services, actually thirteen point

113
00:11:51,750 --> 00:11:54,870
five for should be shown here.

114
00:11:56,070 --> 00:11:59,520
So this is the group that's.

115
00:12:01,940 --> 00:12:09,680
So let's go to three to six, right, I have already covered this one, so this is not the same page

116
00:12:11,620 --> 00:12:13,520
that BHP Nannerl.

117
00:12:20,880 --> 00:12:29,940
So what we are going to raise money to provide any of these in the past or for this group so it will

118
00:12:29,940 --> 00:12:36,380
you need to provide better standpoint, it will perform the quality, and then it will be a good indication.

119
00:12:36,420 --> 00:12:44,580
It will provide the user user details and session details and it will upgrade the script.

120
00:12:45,240 --> 00:12:48,560
So we need to change the rest and you need to change this IP address.

121
00:12:48,910 --> 00:12:53,890
So this is a return to current point and then action is final.

122
00:12:53,970 --> 00:12:56,780
So let me say this, too.

123
00:12:57,690 --> 00:13:04,530
It's not be and the data you are going to send is this one system.

124
00:13:06,030 --> 00:13:08,520
So basically, this will be some malfunction.

125
00:13:09,240 --> 00:13:13,510
You need to turn to this one so you can upload this file and New Mexico.

126
00:13:14,550 --> 00:13:19,620
So this so I have ran into some problems.

127
00:13:19,620 --> 00:13:23,670
You need to install the speaker for this.

128
00:13:23,940 --> 00:13:31,260
So after installing this, you need to run this dish like BHP Brutalism and the Bufano.

129
00:13:32,580 --> 00:13:32,820
So.

130
00:13:32,940 --> 00:13:33,480
And this.

131
00:13:42,230 --> 00:13:50,650
So you can see all the information in session that design and use information, you can use a lot different.

132
00:13:51,770 --> 00:13:55,670
So you can see this is the admin and the password is this hash.

133
00:13:55,790 --> 00:14:02,180
So you can crack this hash, uh, as well and you can use the session information.

134
00:14:03,440 --> 00:14:09,500
So what I have done is we have the three main obsession, M.I.T. and token, I have already created

135
00:14:09,500 --> 00:14:15,050
these variables in the copyeditor and I hope these values.

136
00:14:15,350 --> 00:14:19,800
But even after placing all these values, I did not get administration.

137
00:14:20,720 --> 00:14:23,260
So that's another bummer.

138
00:14:23,270 --> 00:14:33,590
And at that point, that in some way you should worry about this password hash and this calculator when

139
00:14:33,590 --> 00:14:37,770
we have uploaded this exceptional page, let's open this one.

140
00:14:39,200 --> 00:14:42,500
So you need to say CMB, physical suhui are.

141
00:14:43,850 --> 00:14:51,670
So you can see we got the remarkable execution where, uh, I use a social service account.

142
00:14:52,130 --> 00:14:54,530
It's a system in four.

143
00:14:56,990 --> 00:15:06,200
So it's running Microsoft Windows 2000 eight, so we can are the service account and we could transfer

144
00:15:06,200 --> 00:15:07,550
to mutually exploit.

145
00:15:11,420 --> 00:15:13,670
OK, let's get the reversal.

146
00:15:13,700 --> 00:15:20,900
So obviously it's a revelation I think they have inside the system for a bit of this operating system.

147
00:15:21,830 --> 00:15:23,650
So you can see only 64.

148
00:15:25,520 --> 00:15:31,830
So let's run some bizarre other people in the firing them to Florida.

149
00:15:31,850 --> 00:15:34,600
I want to feel this Priscu at the Charanam.

150
00:15:41,370 --> 00:15:42,880
So that's one, two, three, four.

151
00:15:43,140 --> 00:15:52,110
I'm going to listen in on one, two, three, four later in a similar way to the Arctic box.

152
00:15:53,070 --> 00:15:53,680
It's called.

153
00:15:58,440 --> 00:16:02,610
And see, you've already percent system.

154
00:16:06,090 --> 00:16:09,570
So we should see the request here are done together successfully.

155
00:16:21,970 --> 00:16:24,680
So you can see the shadows, one fire has been copied.

156
00:16:24,700 --> 00:16:26,440
Now, what you're going to do is.

157
00:16:31,230 --> 00:16:40,500
And this that the U.S. and Canada IP and the 90 and the port piece, one, two, three, four upon Conexion

158
00:16:40,500 --> 00:16:42,080
execute the command prompt.

159
00:16:43,410 --> 00:16:48,570
Now we should see the come on Russia who my crew.

160
00:16:50,010 --> 00:16:53,130
And you can see a seamless Napravnik has been delivered.

161
00:16:53,310 --> 00:16:56,470
And we are certainly second and it's better than Azzara.

162
00:16:56,880 --> 00:17:02,300
So what you can do is you can simply parallel to me to exploit it should work most of the time.

163
00:17:02,520 --> 00:17:05,760
Otherwise you go for one piece of rock n roll.

164
00:17:08,040 --> 00:17:09,120
So let's copy.

165
00:17:31,380 --> 00:17:32,190
We should set.

166
00:17:40,310 --> 00:17:42,440
What you'll see is another indication.

167
00:17:46,100 --> 00:17:49,070
So it has got to sort of go to.

168
00:17:52,180 --> 00:17:52,570
M..

169
00:17:56,380 --> 00:17:57,910
Not backwards.

170
00:17:58,960 --> 00:18:04,110
And they use 190 and 46, two, four, four, four.

171
00:18:07,580 --> 00:18:08,180
And he didn't.

172
00:18:17,900 --> 00:18:23,420
So destigmatizing, afraid you're going to try for potatoe or prenda spoofer explode.

173
00:18:38,620 --> 00:18:40,930
So who am I and we are.

174
00:18:41,470 --> 00:18:46,180
No, we can get the user fixed and mutex so that's all for this box.

175
00:18:46,340 --> 00:18:54,940
So what we have done first, we have the proper website and we use the troops can and it does not find

176
00:18:54,940 --> 00:19:02,050
much information, but we have the precise version of the group that is on point five, four and then

177
00:19:02,050 --> 00:19:08,890
onwards we have found the to end point and then we search it straight for the expert for the rest.

178
00:19:09,260 --> 00:19:15,480
Without ID, we uploaded a page and we got good watcher.

179
00:19:16,210 --> 00:19:22,890
So being that to the over and we have them personally and book, we are expected to mature expert and

180
00:19:22,900 --> 00:19:23,210
got the.