1
00:00:01,810 --> 00:00:06,790
Now the web page that we've made so far is not very good because it still asks the user to change their

2
00:00:06,790 --> 00:00:07,910
username and password.

3
00:00:08,050 --> 00:00:11,670
And these are still pics what username and password they want to use.

4
00:00:11,680 --> 00:00:17,980
So now we're going to modify our code one more time and when this time we're actually going to make

5
00:00:18,010 --> 00:00:23,500
everything invisible and we're going to make this code to be submitted automatically once the user browse

6
00:00:23,500 --> 00:00:24,930
the page.

7
00:00:24,940 --> 00:00:31,300
So the first thing to make everything hidden we're going to convert all the inputs and we're going to

8
00:00:31,300 --> 00:00:34,160
add to them type equals hidden.

9
00:00:34,240 --> 00:00:42,230
So you can see we have an input here and I'm going to add an argument saying type equals hidden.

10
00:00:42,300 --> 00:00:47,860
I'm also going to add to this and put right here which is the input that confirms the password.

11
00:00:47,910 --> 00:00:49,890
So we're going to set that to hidden as well.

12
00:00:52,120 --> 00:00:57,730
And we're going to change the last input which submits the code as you can see here it's called change.

13
00:00:57,730 --> 00:00:59,590
We're going to change that to hidden as well.

14
00:00:59,590 --> 00:01:01,700
So the user wants this input either.

15
00:01:01,720 --> 00:01:02,910
This is the submit button

16
00:01:06,160 --> 00:01:10,910
and I'm going to remove everything written on the page so you can see that in here it says confirm password

17
00:01:10,920 --> 00:01:17,600
so I'm going to remove that and we can see that in here it's also asks for the new password so I'm going

18
00:01:17,600 --> 00:01:19,070
to remove this part as well.

19
00:01:20,170 --> 00:01:28,070
And I'm going to remove this tag and now I have my three inputs and I have my form so I only have the

20
00:01:28,070 --> 00:01:30,860
important part of the code.

21
00:01:31,020 --> 00:01:33,930
So we have our first input and it's not hidden.

22
00:01:33,930 --> 00:01:36,690
This is the first input that the user puts the password in.

23
00:01:36,970 --> 00:01:46,210
And we have the second input right here which is the Confirm password and then we have the submit button.

24
00:01:46,220 --> 00:01:52,260
Now we're going to remove the types from here from the inputs from the perswaded inputs and instead

25
00:01:52,260 --> 00:01:53,900
of that we're going to add value.

26
00:01:53,910 --> 00:02:00,120
So we're actually going to set the value for the new password and this time we're going to set it to

27
00:02:00,130 --> 00:02:07,730
6 6 so one two three one two three and I'm going to do the same with the confirm with the confirmed

28
00:02:07,730 --> 00:02:09,470
password input.

29
00:02:09,470 --> 00:02:17,780
So we're going to set it's value to 6 6 6 6 6 6 because we've already changed the type to hidden and

30
00:02:17,800 --> 00:02:19,580
I misspelled type in here.

31
00:02:20,540 --> 00:02:26,780
So I'm going to save this and I'll just open this in my browser just to see what this website looks

32
00:02:26,780 --> 00:02:27,450
like now.

33
00:02:28,900 --> 00:02:35,680
Now as you can see the page is actually empty but if we view the source you'll see that we still have

34
00:02:35,920 --> 00:02:38,550
our forms.

35
00:02:38,660 --> 00:02:45,720
So you can see I'm just going to zoom on this you can see that still submit in the form to the right

36
00:02:45,720 --> 00:02:46,870
place.

37
00:02:46,950 --> 00:02:53,830
It has the input which is set to head in and then it has the new password the value is set to 6:6.

38
00:02:54,060 --> 00:02:56,330
We also have the confirmed password.

39
00:02:56,340 --> 00:03:01,730
It's also set to hidden and the value is 6:06 is and we have our input.

40
00:03:01,740 --> 00:03:03,640
The one that changes everything.

41
00:03:03,750 --> 00:03:06,000
And this one is set to hidden as well.

42
00:03:06,060 --> 00:03:12,180
So all this good now the last thing we want to do is we want this to be executed automatically when

43
00:03:12,180 --> 00:03:15,520
the user clicks the file so we don't want the user to hit anything.

44
00:03:15,540 --> 00:03:19,220
We even made our input the submit button we made it hidden.

45
00:03:19,380 --> 00:03:24,660
So we want the user as soon as they were on this file they get redirected to the page that will change

46
00:03:24,660 --> 00:03:27,800
their password to do that.

47
00:03:27,830 --> 00:03:33,140
We're going to you need to use a javascript code that will automatically submit this form.

48
00:03:33,140 --> 00:03:36,890
So once the page loads it will automatically submit this form.

49
00:03:37,430 --> 00:03:39,010
So the first thing we need to do.

50
00:03:39,110 --> 00:03:44,620
We're going to need to set an ID for this format so that Javascript can identify this form.

51
00:03:44,720 --> 00:03:53,460
So I'm going to give it an ID and I'm going to add that to that say for one and I'm going to place the

52
00:03:53,460 --> 00:03:55,290
javascript code in here.

53
00:03:55,740 --> 00:03:59,760
And to do that we're going to need to put it between two javascript tags.

54
00:04:00,120 --> 00:04:04,420
So we're going to start with a script and we need to close that tag as well.

55
00:04:05,150 --> 00:04:06,430
So it's a sliced script

56
00:04:09,150 --> 00:04:12,140
then we're going to do document to access the current document

57
00:04:14,720 --> 00:04:20,020
that get element by ID so we can access the four that we just created.

58
00:04:20,060 --> 00:04:21,350
And we called it for one

59
00:04:24,260 --> 00:04:29,640
then we're going to place the idea that we just created and we called it for one right here.

60
00:04:29,900 --> 00:04:35,140
So we're going to change that here so we can say for one.

61
00:04:35,380 --> 00:04:40,490
So the code so far would access the current document and it's going to look for an element that has

62
00:04:40,490 --> 00:04:42,410
the ID of number one.

63
00:04:42,560 --> 00:04:46,790
Then we're going to tell that what we want to do with that element with that form and we're going to

64
00:04:46,790 --> 00:04:48,000
want it to submit.

65
00:04:48,050 --> 00:04:51,930
So we're going to say that submit.

66
00:04:52,080 --> 00:04:55,360
So the code is very simple we just added an ID to the current form.

67
00:04:55,480 --> 00:05:02,170
We called it form 1 and then we added a javascript code starting with a script and ending with a forward

68
00:05:02,170 --> 00:05:08,910
slash script and we said the document and we want you to get the element by ID.

69
00:05:09,130 --> 00:05:13,340
We want you to get form one and we want you to submit it.

70
00:05:13,570 --> 00:05:20,080
Now once the user clicks this file the file will be executed automatically without the user having to

71
00:05:20,080 --> 00:05:21,030
do anything.

72
00:05:21,920 --> 00:05:27,710
So let's see this in action I'm going to come now I'm going to close this and I'm going to close this

73
00:05:27,710 --> 00:05:28,500
one as well.

74
00:05:30,030 --> 00:05:32,880
And I'm just going to double click my new file right here.

75
00:05:34,420 --> 00:05:40,680
And as you can see automatically I got a new page and this page is telling me that the passwords haven't

76
00:05:40,690 --> 00:05:47,680
changed so the user didn't click anything the user didn't put any password on the page was executed

77
00:05:47,890 --> 00:05:53,400
from a place that's not on the same web server so it was executed from the local machine.

78
00:05:53,470 --> 00:05:55,670
But still it submitted the information.

79
00:05:55,780 --> 00:06:02,190
The website accepted the information and the website changed my password to the new password so my password

80
00:06:02,200 --> 00:06:07,550
now the admin password had been changed to 6 6 6 6 6 6.

81
00:06:07,650 --> 00:06:16,100
So if I log out and try to log in I'm going to put my user name as admin and the password to X X X X

82
00:06:16,100 --> 00:06:24,740
X X and enter and you'll see that I logged in with the new password instead of my original password.

83
00:06:24,950 --> 00:06:31,070
Now it's all up to you and how smart you are with how with tricking the targets with how to get them

84
00:06:31,070 --> 00:06:32,480
to run your file.

85
00:06:32,480 --> 00:06:34,690
So now it's all down to social engineering.

86
00:06:34,700 --> 00:06:40,940
How you're going to send it what you're going to pretend that the file is going to be one way is to

87
00:06:40,940 --> 00:06:43,480
send the file as it is as HDMI out.

88
00:06:43,700 --> 00:06:50,480
The other way is just to host the file on a hasty Al web hosting so you can upload it to and you are

89
00:06:50,480 --> 00:06:50,970
posting.

90
00:06:50,970 --> 00:06:52,250
There's a lot of free ones.

91
00:06:52,490 --> 00:06:57,260
And then you can just send the or all of the file instead of even get the target person to download

92
00:06:57,260 --> 00:06:59,830
the file which will be much less suspicious.