Time
1 hour 18 minutes
Difficulty
Intermediate
CEU/CPE
2

Video Transcription

00:00
Well, welcome back to the course. My name is David Apparatus. And in the secondary video, what we're gonna be going through is that now that we've been sold a virtual box, I'd like to go in and demonstrate how one can install an I S O phile. So just the previously recall we did download of Windows 10 Environment.
00:16
And now what we're gonna be doing is teaching. How do we set this up?
00:20
So disregard the previous machines that I have here. These are all virtual machines gonna click on new
00:26
and again, you can specify where the director is. I'm gonna call this, for example, Windows 10 on their score too.
00:34
And when I click on continue, I am able to specify how much bran will be allocated to this particular virtual machine. We'll keep it at 2048.
00:44
Now we want to create a virtual hard this,
00:47
and from here Oh, you want to always do the M. D. K. Stands for a virtual machine disc.
00:53
Now you have the option of choosing dynamically Ellicott or a fixed size dynamically allocate. It will allow you to save space on your hard drive.
01:02
So I'm gonna say, You know, I don't really need 50 gigs, so let's bring it to 20.
01:07
Click on, Create.
01:10
Now we're not done. You'll see this is powered off.
01:12
Now, when we click on start,
01:15
what is going to specify is that I need to actually locate that Windows 10 file That s O.
01:22
So we'll go ahead and scroll down to win those 10 click on open start.
01:29
And now we're gonna let virtual Box do its thing. And now, here's how we set up a free version of Windows. This is the first of many steps
01:38
once we have our Windows environment set up after that, we're gonna go out in the stall several materials to implement a session hijacking so the language to install will be English. We're going to install this now.
01:53
We'll give this a few moments, and while this is going through, I'll also explain each and every process and what it's doing. So in this particular point in time, we don't have a product. He gives you a free 30 day trial. Now you have the option here to choose from any of the environments. It doesn't matter for what we're doing for session hijacking.
02:13
Well, go ahead and choose Windows 10. Home
02:15
click on next
02:16
and let's let this install. Yes, we accept the license times.
02:21
You always want to click on custom install
02:23
and click on next.
02:25
Now. Now, what this is doing is this is basically grabbing
02:30
the contents from the start. I s O file here
02:32
and the files were getting ready for installation. So let's go in and give this a few minutes.
02:43
Now you see that there's five
02:45
options for a checkbox. So number one, we have already copy the Windows files. Based on that, I s O.
02:51
And now this is getting ready for installation. We're approaching almost 20%. The next step would be in Seoul in futures,
02:59
installing updates and then finishing up.
03:01
There's a few key components here that I would like. I'm goingto reiterate here so that one does not get confused or get messed up during this process.
03:10
So let's go ahead and give this another moment or two should be fairly quick.
03:15
In fact, what I have done on this side is I've actually enabled a turbo boost on my actual neck
03:22
just to make this a little bit quicker.
03:23
So we'll go ahead and let this load.
03:29
Okay, so we're almost approaching 50%
03:38
now, this may seem slow. I can always speed up the video, etcetera, but at this point in time, this should be done within the next
03:45
a moment or two.
03:49
So while this is loading, what I'm gonna do is I'm gonna go back to my virtual machine and see that this is running again. You didn't have to worry about these. You're also free to install more than one machine.
04:01
So I'm gonna go back to the current Windows environment. And also at the same time, you have the option to change the display size.
04:09
So this thing I want to scale to maybe 125% make it a little bit bigger.
04:14
Okay, so we're approaching the 90 percentile range.
04:26
Okay, 96.
04:29
Now, when installs, the future's in the updates. This is not anything that we really need to worry about. If we were running, this is her own environment against some of the students may be running off windows. However, I still suggest to run your own virtual machines so that no damage is done.
04:45
It's your own private environment.
04:46
So this is going to finish up and wrap
04:48
100% stolen features. Now you notice in the bottom collecting information, which is fine installing Windows. Now it's installing the updates,
04:59
and the final step will be to finish up.
05:00
So let's go ahead and let this run through.
05:12
Now if I check the status bar here, Okay, I'll leave. Announce here and let this go.
05:15
Here we go. Now it's loading.
05:18
Okay, so we're four. And if I've done now, here is one thing I want everybody to be
05:24
aware of. When the Windows machine starts or restarts,
05:29
it's going to come up with a prompt, and it's gonna stay the following. Here we go.
05:33
So one thing to be notified. Press and acute the boot from CD or DVD do not like anything. Let it simply load. If you do click
05:42
during that message, it's gonna actually ask you to reinstall Windows.
05:46
That's something that we don't want to do.
05:47
This is typical practice. It happens. So right now it's going ahead, and it's installing the Windows machine.
05:54
Starting service's etcetera.
05:57
Getting device is ready
06:02
now. Another thing to note while this isn't stolen, is that once you log in, you're gonna have to create what's called a
06:11
an account from Microsoft.
06:13
Uh, this could be done for free. I'll go and show that in the next demo.
06:16
Basically, once this load, I'll show you how to log in.
06:20
So what's getting ready at this present point in time?
06:30
You have a few more moments
06:42
again, as I mentioned earlier. If need be, I could speed this up. I just really wanna walk everybody through basically, how this would work.
06:48
Successor. And please don't mind the background. This this is just a lot of other information.
06:56
My primary goal here today is to walk you through how to set up the windows environment.
07:00
And once this is done, the next step would be to install the applications that we need to
07:05
to get ready for a session hijacking situation.
07:10
So again, based upon your CPU, et cetera. Er, how much you're over clocking your machine, uh, may vary in terms of timeframe. However, once this is set up, you will not see this kind of delay etcetera. So watch this. Now that this is done,
07:28
it's in the garden restart.
07:30
As I mentioned previously,
07:31
we're not gonna press any key. We're gonna let this just simply load.
07:35
Here we go. So that Windows 10 is loading
07:39
again. This is the home version. You're free to choose whatever you want.
07:44
We'll give this another moment or two.
07:46
And the reason why I'd like to take my time on this is to show exactly step by step and what somebody would go through.
07:54
So now you see that basically Windows is running.
07:57
So when we see the just a moment icon, that's fine. That's windows basically stating that. Okay, we're starting up in environment, etcetera. Now you'll notice again that I am running back.
08:09
You'll see that the current system, we're gonna ignore the use.
08:11
We're gonna focus on what we're currently running, which is Windows 10 Underscore, too.
08:16
Go back here.
08:18
Give it just a moment as the states,
08:22
no cortana is gonna come up.
08:24
And that's something I'm cortana.
08:30
A little signing here will bring this down.
08:33
Okay,
08:35
So what I would suggest is that at this point in time, there's no need to utilize cortana.
08:41
We're simply utilizing this virtual machine for a session hijacking
08:45
example. So let this go through. Okay? It's a narrator. We understand this. That's fine.
08:52
We'll give it another moment or two.
08:54
So now, OK, enough intro. What's digging?
09:00
You're gonna find this oftentimes. Just a moment. Always gonna stay just a moment. But once everything is set up, nothing to worry about again. For me, United States, you're free to choose and pick
09:11
from whichever option is available that suited suit your needs.
09:20
Okay, So what is the next step
09:22
now? Is the keyboard right? Us for me? Yes. I want to skip. I don't need a second there. You lay out.
09:33
Okay. Now, this is typical, for one knows again. The most painful aspect, if you want to call it people, is the time delay in first initializing your VM where
09:43
your actual set up
09:48
and what I'll show in additional videos to. And in fact, after this is how easy it is
09:52
to simply, uh,
09:54
restart
09:56
and go out and see that how quick it loads. So let's let this go ahead.
10:01
Go through what it has to do. Consideration lies. Of course.
10:20
Okay. We'll give another 10 2030 seconds maximum should be done.
10:26
And what I'll do at the same time is on my Mac. What? I'm gonna do is I'm gonna go ahead and
10:31
clear out some of the cash just to see if I could make this a little quicker
10:39
and not to sound redundant. But again, this This is the longest step out of the entire process. The rest is very easy.
10:48
So it looks at this point that we're basically just about done.
10:56
You don't need cortana. We don't need any assistant. Except we don't need to share anything.
11:01
No One thing to know too is that in this windows machine you're gonna have your own I p v for address now that it is very important as we go forward.
11:11
So now let's see what's new from Windows. Do not really need to be concerned about this. This is typical.
11:20
It's just about done setting up.
11:30
Of course we get that just a moment. No, I'm actually coming down this about 40 seconds.
11:35
There we go. So one thing here the note is that yes, you would need for me. I would have to sign it. And you could also do it offline account
11:43
which I'm gonna do
11:46
so for users who are not comfortable or simply do not want to go into signing with Microsoft. Not a big deal signing with Microsoft. No
11:54
click, no option. Just the moment.
11:58
And now what this is doing is rendering our desktop environment. Who is going to use this PC? So we're gonna call this
12:05
session
12:07
hijacking in one word.
12:13
Now, the password will be
12:15
session.
12:16
All lower case again regarding session S E S s Island.
12:20
Next.
12:24
Now security questions we don't need to worry about. I'll put none. One.
12:28
This is just typical Microsoft Protocol.
12:31
I'll go ahead and put this is then, too.
12:35
And then, of course, on the last one, I'll put this as none three.
12:39
Next.
12:43
Let's go ahead and wrap this up. Finalized how the initial windows will load.
12:48
Now, do we want to make a return? Our personal assistant you can Right now. I'm gonna decline it. I don't need it
12:54
because what I'm gonna do is going down the road and additional video. It is how to install devices don't need for the active history. No need for that.
13:03
Choose privacy settings. Just click and accept.
13:16
And now this. Load us into our actual windows environment.
13:22
So is polishing up a few items as it states Let's give this
13:26
70 80 seconds, maybe less. So now, now that we have this fully installed Okay, we're getting everything ready for you again. This is the only time once you initialize, this is the only time you're going to see such material. It'll stay. This might take several moments.
13:45
Obviously, we would not want to click on the close button,
13:48
Let this load.
13:56
It might seem time consuming, and we could actually state that it is.
14:00
But again, it's not a cyber. Remember, this is the way to go about this. Now what I've noticed through my my takes as that Windows eight might be a little quicker in the loading time. However, it does not support the actual applications that I'm gonna be demonstrating
14:16
in additional videos. Windows 10 again. The mother, whether it's home or pro et cetera,
14:22
absolutely supports
14:24
all the applications that we need to do to perform a session hijacking
14:28
example. So let's go ahead and give this and get another moment.
14:33
Although it's a several minutes, sometimes that's not really the case.
14:39
Okay, so leave everything to us,
14:48
and I'm gonna start my clock right now. I'm gonna time this for one minute as of now.
14:56
Make sure my mouse is working.
15:00
Okay,
15:07
Almost there.
15:11
Now there we go. There is the window's environment.
15:16
So if one wants to close out, you have two options. You can click on the expose
15:20
and always to compare off the machine,
15:24
or you can simply right click
15:30
and go ahead and shut down.
15:33
So, in this example, while the shuts down there maybe updates that are gonna be performed
15:37
Well, let's see what happens here. Closing one app. Yes. Shut down. Anyway, that's fine. That's a script running in the background.
15:46
And before I finalize this video once this is shut down, you'll see in your virtual box environment. This is powered off.
15:52
Now, if I want to restart this,
15:54
as I mentioned earlier, it's not going to take his long as it did before because we've already gone through the insulation again. Did not click on anything here with this look.
16:18
So obviously windows and now loading.
16:23
There we go.
16:26
So the past would be self obsession. S e s s I o n
16:30
Welcome.
16:33
There he goes. Now, this point in time. Ok, I've demonstrated how to install the virtual machine for Windows
16:40
in the next video. What I'm gonna demonstrate is basically how to install said material. This is all free software wise for the session hijacking.
16:48
Thank you for this. Look forward to seeing in the next video.

Up Next

Session Hijacking

This course covers session hijacking, which is where an attacker takes over a legitimately established session between a user and host. This is normally seen between a user and a Web server, but it could occur with a Telnet session or other TCP-based connection.

Instructed By

Instructor Profile Image
Ken Underhill
Master Instructor at Cybrary
Master Instructor
Instructor Profile Image
Dave Kupratis
Instructor