9.3 Session Hijacking Lab Instructions Part 1

Video Activity
Join over 3 million cybersecurity professionals advancing their career
Sign up with

Already have an account? Sign In »

19 hours 55 minutes
Video Transcription
I welcome back to the course. In the last video, we talked about things like art and man in the middle.
If you haven't watched an introduction video yet, go ahead and pauses. Video. Go back to it. It's gonna cover a lot of things we're talking about in this lab.
So in this lab, we're gonna use a tool called Enter Cap, which is in Cali. Lennox. And we're gonna use that to do to a couple of things. We're gonna use it to poison the art cache of our target machine's on. What that's gonna do is allow us to perform a man in the middle attacks, and we could see the network traffic.
And then we're also gonna due in part to the lab is captured some lugging credentials.
So let's go ahead and get started. Now I'm gonna use in the cyber lapin farmer for this lab, and you're welcome to use this tool in your own environment. But we're not gonna cover that particular type of setup in this lab.
So we're gonna go ahead and get loved into the cyber labs. If you're not familiar. How to do that? Just logged into your cyber account. You'll see a little search box here, and we're just gonna search for certified ethical hacker so certified
ethical hacker and they just press the enter key. That's gonna pull up all the results for us. The last result option here is gonna be our lab. So once you pull that up, just click on the start. Now option.
It's gonna take you to a page where you'll see a big old launch button and go ahead and click on that. Now, I've already got this launched, so I'm just gonna click on the tab. I have open here.
So once it launches, its gonna take you into the practice laps. Ethical hacker. Now, for some reason, it doesn't. If it takes you into this main area where you've got python programming, Oracle will be a stuffy M where etcetera just go ahead and look for the practice labs ethical hacker and click on that. That will be the one we want.
Okay, so the next thing we want to do is we want to actually select our
type of lab we're gonna do here. So that's the implementing network level session hijacking. So it's about halfway down on the page here. It's this one right here. Just go ahead and click on that and click that start button that's gonna launch the lab for us.
Okay. And then our next step here is just turning on all our virtual machines. You just have your mouse overtopping click. Turn on. Now, all of minor on already.
Step four here. Once you've got all your virtual machines turned on, we're gonna can connect to the server. Soapy Lab s a 01 which I've already actually got pulled up here.
And then if we see the server manager window, we're gonna go ahead and close that. So I have it popped up here. I'm just gonna click the X to close out out.
All right, so move on to the next step of her lab. So Step number six. We're gonna click on the exam pie Khan from the taskbar. So let's go and do that. Now
we'll stroll down to the task bar, and it's gonna be this orange colored icon right here.
Once we click on that is gonna open the exam
window for us. We'll give that a second Might take a moment or so. There we go.
And what that's gonna do is that's gonna enable Apache Web service is with the N v A. That's running on port 80.
So one of the thing I found with this particular lab is I've had two. On my end of things, I've had to also start file Zillah for some reason to keep it from throwing an error message. So I would recommend Just go ahead and click. Start There is not gonna hamper anything we're doing in this lab. The only thing you could do is help, just in case you're getting the same issue as I had.
All right, so now we can move on to the next part of her lab.
So we've really got the exam. We've got all that initialized. Now we're gonna connect to our Windows 10 device, So let's go ahead and do that. We'll click on the Windows 10 right here. The people AB win 10.
So I've got a message here device not connected. So if you get that, just go ahead and click the refresh button.
And what that should do is refresh it with the demand controller here and establish a connection again. So while that's doing that. It might take a moment or so. We'll talk about the rest of this part One of the lab. So once we get into the Windows 10 we're gonna double cook on the V NC viewer because we want to open up our Callie Desta.
And then once we open that up, the DNC viewer, we're going to see the i p. Address for that Callie desktop. And then we're gonna click, connect and put in our password.
So you see here it was pretty quick about refreshing. So that's all you have to do if you get a little weird, our messages like that, and then just double click here on the V NC viewer. That's our next step.
What? You'll see her in a second herself, which should pull up. It's gonna initialize a few things first,
but once it pulls up, we're going to see that I p address off. The Cali machines are right there.
And then we're just gonna click that connect, but
and now it's gonna prompt us for a password. So let's go back to our lab documents. So you'll see here and step 11. I've got the password there for you. So it's gonna be the word password with a Capital P. But instead of a nowhere, that's gonna be a zero right there. So we're gonna type capital P
lower case A S S W zero,
and then lower case R D. And then you could either hit, enter or just click. Okay,
Gonna take a second or so, but it's gonna launch to Kelly desktop for us. You'll see it's launching there in the background.
So our next up here with a click the start icon on the Kelly desktop, and then we're going to select sniffing and spoofing and then the Etter cap graphic ALS. Let's go ahead and do that. So the start icon is this very bottom left one here. Now, if you get this pop up for some reason about a no session P i d just go and say okay to that, we don't care about that.
So back here, this is our start icon here. Just click on the very bottom left there,
and we're gonna cloak are we're gonna have our mouths over top of the sniffing and spoofing option here.
But it's taking a second or so to get all the way to it.
And now we're gonna click on Enter Cap Graphical about halfway down here,
and then just go ahead and click on that.
All right, I'm gonna take a moment or so to pull up. You'll see it launches enter Cat four. So we see that it's launching the other category or graphical user interface for us.
Our next appears to click sniff at the top and then unified sniffing.
So let's go ahead and do that. We're gonna click, sniff, appear at the top
and then choose the top option there, the unified sniffing.
It's gonna ask us for Ethernet interface here. So let's go and click on the lab document here and see which one we should choose. So Step 18 we should choose the e th zero. So let's go and do that and we see that's the one that's already in here. So we just say Okay to that.
Go back to allow Dr You see the background is starting to run Unified sniffing.
So now we're gonna do a scan for hosts were to select host at the top and then click the scan for host option.
So host at the top here and then scan for host about halfway down.
Go ahead and click on that. So what is gonna do is it's going to scan for host. And then what is also gonna do is it's gonna add the identify host to the host list. So we see it already finish the scan there. So now we're gonna click host at the top and then host list to see what kind of I p addresses or who those hosts are. So click on host and that host list the top choice.
All right, we see a couple I p addresses here. So the 100 to you once they say 04 that's our Windows 10 and then the top one there, the 0.1 is our server.
So let's go back to our lab documents to a kind of things we need to do next.
So step 25 year, we're gonna now we're gonna select and set our target host, so target number one is gonna be our Windows 10 machine, and then target number two is gonna be our server.
So let's go ahead and set those up. So all we have to do,
let's click on the I P address. So we'll start with the Windows 10. So that's that 1 98 Excuse me. The 102.168 dot zero doubt for. So once we click on it, we're just gonna click. Add to target one. So we want to make that target one,
and then you'll see at the bottom. Here. It's added that host to target one.
Okay, send thing with the server one
100 to 16801 We're just gonna click. Add to target two. We want to make that target too. So they've been at it. Now let's go back to our lab documents.
All right, so now we're gonna click on.
We've already clicked on both of those. We've added those targets.
Now we're gonna click on man in the middle of step 28 at the top window, and then we're in a select are poisoning. So let's go ahead and do that now. So we're gonna select men in the middle right here in the center
and then are poisoning the very top choice there.
That's gonna open a little window for us. It gives us few options here So let's go back to our lab and see what we need to do.
So step number 30 here under the optional parameters. We wantto check the boxes. Says sniff, remote connections.
So let's go ahead and do that. Now
we're gonna check this box here, and then we're just going to say, OK,
all right. So
you see here on a screen, it's poisoning the victims there. So it's poisoning. Target one target tubes with Windows 10 machine and also served.
All right, So in this lab, we just set up our poisoning of the art poisoning between the two machines. Now, in the next video, we're gonna go ahead and actually grab some user credentials from the machines.
Up Next
Penetration Testing and Ethical Hacking

Do you like breaking things or figuring out how things work? Join thousands of professionals who’ve entered the information security field by taking this class. Taking this ethical hacking course will give you the skills needed to become a professional penetration tester and prepare you for industry certifications, like the CEH.

Instructed By