Sexy Hacking - Naughty Script K1dd13Show Video Details ↓ [music] … … … …Narrator: Hey kid, what do you think you're doing, trying to be some kind of hacker? It's not going to happen with those lame script kiddy tools you're using. You need to get some real tools. [music] Tegan: My name is Tegan and welcome to sexy hacker. After school today you're going to meet me in detention and I'm going to be your teacher to show you how to probe for vulnerabilities. [music] [music] … … Well now that I have you in detention, we're going to learn about some real hacking tools. Check out sectools.org for a hot list of the many great security tools. There are plenty, but today we're going to work on Nmap, Nessus and Metasploit. We will start into bed with each of these tools and our instructions on how to download them, how to install and configure, and how to use them to construct a real hack. So let's review these 3 bad boys. Nmap, the network mapper, is a free and open source utility for network exploration and security auditing. Nmap is in every hacker's toolbox for port scanning, network sweeping, OS and service detection, and all around client probing on networks. Nessus is the world's most popular vulnerability scanner. Every real hacker has used a whole lot of Nessus at some point in their adventures. Metasploit is the relative baby of the bunch. Although it is younger than Nmap and Nessus, Metasploit has proven itself to be a penetration tester's gem for launching an exploit payload into a target system and gaining control of the remote target's shell. I noticed you were poking around sexyhacking.com when I busted you using that script kiddy crap. Were you looking for something sexy? Maybe something a little naughty? We will keep using the sexyhacking.com website as our target for these lessons. All the tools we discuss today run on many platforms, including Linux, Mac OS X, and Windows. However, we are talking about real hacking so we will be working with a unix shell in today's lessons. So we will start with Nmap. First you can download it from nmap.org then install it with these following steps. So first we open up the tarball. [music] Type dot slash configure. [music] … And when that is done, compile the source by typing make. [music] Hey kiddy, you did not start by executing and compiling downloaded code as root, did you? Now what we want to do is grab a root shell and install Nmap by typing make install. Now that we have Nmap installed, we look at its configuration and run-time options. There are no separate configuration files for Nmap. Everything is specified on the command line. Check out the Nmap man page or documentation for all the details. For our first attack we will use Nmap in verbose mode and with a hack TCP SYN scan, followed by scanning all ports, full OS detection, throw in some service fingerprinting too. Give us a traceroute to the target, enable the new scripting scan feature, save the output to a file and smack on sexyhacking.com as the target. [music] … … Once Nmap is done running, we now have a clear picture of some details about the target and all its network services. We know what operating system it is running, what ports it has open, and what is running on all those ports, versions and fingerprints of services, if not opened ports are filtered or just closed, and more. [music] [music] I'm [inaudible], bitch. [music] … … … … |