#cybersecurity

Learn Coding
3 Views · 1 year ago

Jason Haddix shows us how he hacks Tesla and other companies.
Big thanks to Brilliant for sponsoring this video! Get started with a free 30 day trial and 20% discount: https://brilliant.org/DavidBombal

Jason demonstrates tools and techniques to discover targets using free and low cost tools. Find the weakest link and you can get inside. Learn how to attack the back door or side door instead of the front door.

//Jason's SOCIAL //
Youtube: https://www.youtube.com/c/jhaddix
LinkedIn: https://www.linkedin.com/in/jhaddix
Twitter: https://twitter.com/Jhaddix
Github: https://github.com/jhaddix
Boddobot: https://buddobot.com/
Bug Hunter’s methodology Course: http://tbhmlive.com/

// Youtube Videos Mentioned //
Darknet Diaries: https://youtu.be/oYcRD9kaoaY
How Nmap really works: https://youtu.be/F2PXe_o7KqM
Real World hacking demo with OTW: https://youtu.be/R1amgARgFDs

// Websites Mentioned //
Bugcrowd: https://bugcrowd.com/tesla
Xmind: https://xmind.app/
Hurricane Electric: https://bgp.he.net/
Typing Mind: https://www.typingmind.com/
Crunchbase: https://www.crunchbase.com/
Occrp Aleph: https://aleph.occrp.org/
Shodan: https://www.shodan.io/
Bugcrowd: https://www.bugcrowd.com/resou....rces/levelup/bug-bou

// David's SOCIAL //
Discord: https://discord.gg/davidbombal
Twitter: https://www.twitter.com/davidbombal
Instagram: https://www.instagram.com/davidbombal
LinkedIn: https://www.linkedin.com/in/davidbombal
Facebook: https://www.facebook.com/davidbombal.co
TikTok: http://tiktok.com/@davidbombal

// MY STUFF //
https://www.amazon.com/shop/davidbombal

// SPONSORS //
Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com

// TIMESTAMPS //
00:00 - Coming Up
01:14 - Brilliant Ad
01:52 - Introduction to guest
02:51 - Reconnaissance
05:55 - Live Training
06:49 - Real-Life Examples
10:52 - Jason's Background
16:06 - Hacking Tesla
22:40 - Hurricane Electric
27:44 - Security Leading
32:47 - Nmap Scan
34:30 - Crunchspace
37:20 - Wiferion
40:51 - OCCRP Aleph
47:26 - Builtwith
54:32 - Shodan
1:00:30 - IPV 6
1:07:44 - Whoxy
1:15:55 - Kaeferjaeger
1:20:50 - Jason's Online Classes
1:22:06 - Final Thoughts
1:22:24 - Outro

#tesla #hacking #cybersecurity

Learn Coding
2 Views · 1 year ago

Daniel demonstrates how to gain access to a Windows and Linux server using metasploit. This is one of his favourite tools.
Big thanks to ITPro.TV for sponsoring this video.
In future videos, he will show us additional tools.

======
Menu:
======
Menu:
0:00 ▶️ We like win
0:25 ▶️ I am administrator
0:40 ▶️ Linux access
1:20 ▶️ Password hashes
1:35 ▶️ Introduction
1:50 ▶️ Metasploit framework overview
2:28 ▶️ Why is this one of your favourite tools?
4:05 ▶️ Windows and Linux
4:43 ▶️ This is a local lab
5:40 ▶️ Windows Metasploit demo
6:35 ▶️ Eternal Blue overview
7:24 ▶️ Start eternalblue
8:35 ▶️ Check attack viability
9:35 ▶️ Specify target (RHOSTS)
10:32 ▶️ Exploit (check hosts)
10:50 ▶️ Gain access
11:30 ▶️ Reverse shell
13:01 ▶️ Set rhosts
13:28 ▶️ Set payload
14:08 ▶️ Set lhost
14:30 ▶️ Set lport
14:53 ▶️ Run exploit
15:58 ▶️ Win
16:10 ▶️ Shell access gained
17:20 ▶️ Full Admin access
18:14 ▶️ Summary of what was done
18:49 ▶️ This is much easier - use automation
20:35 ▶️ Why did this work?
21:15 ▶️ What about Linux?
21:48 ▶️ Linux demo example
22:29 ▶️ Linux shell bug
23:50 ▶️ Use option
24:39 ▶️ Set header
25:06 ▶️ Set rhosts
25:35 ▶️ Set targeturi
26:17 ▶️ Set lhost
26:33 ▶️ Exploit
26:55 ▶️ shell created
27:07 ▶️ Make pretty
28:01 ▶️ Use Linux commands
28:27 ▶️ Which user account is used
28:51 ▶️ Got a remote shell
29:00 ▶️ Escalate priv
30:28 ▶️ Get admin and root accounts
30:49 ▶️ Summary of what we have done
33:03 ▶️ What other tools are you going to show us

========================
Download software and VMs:
========================
VM used: https://www.vulnhub.com/entry/....bwapp-bee-box-v16,53
Kali Linux: https://www.kali.org/downloads/

================
Links:
================
ITProTV Free Training: http://davidbombal.wiki/freeitprotv
My ITProTV affiliate link: http://davidbombal.wiki/itprotv

====================
Connect with Daniel:
====================
LinkedIn: https://www.linkedin.com/in/daniellowrie
Blog: https://blog.itpro.tv/author/daniellowrie/

================
Connect with me:
================
Discord: https://discord.com/invite/usKSyzb
Twitter: https://www.twitter.com/davidbombal
Instagram: https://www.instagram.com/davidbombal
LinkedIn: https://www.linkedin.com/in/davidbombal
Facebook: https://www.facebook.com/davidbombal.co
TikTok: http://tiktok.com/@davidbombal
YouTube: https://www.youtube.com/davidbombal

metasploit
metasploit framewaork
eternalblue
eternal blue
ethernal champion
smb
windows
linux
linux apache
apache
kali
kali linux
cybersecurity
cybersecurity careers
ceh
oscp
itprotv
ejpt
cissp
ceh v10
elearn security
oscp certification

Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!

#metaspolit #eternalblue #cybersecurity