1
00:00:00,530 --> 00:00:06,320
So now comes the time to familiarize you with this tool by covering some of the basic commands throughout

2
00:00:06,320 --> 00:00:13,520
this section, I will show you how to use just about every available interpreter command that you can

3
00:00:13,520 --> 00:00:16,250
consider with a usage scenario.

4
00:00:16,970 --> 00:00:19,040
OK, so one thing to keep in mind here.

5
00:00:19,250 --> 00:00:22,670
What is Stoppie and Rebe?

6
00:00:23,480 --> 00:00:30,080
First, I'm going to talk about my interpreter Corps Command, which can be used in every suitable interpreter

7
00:00:30,080 --> 00:00:39,410
session, but specifically STD, API and PRIV are the two most used extensions of interpreter.

8
00:00:40,100 --> 00:00:42,970
They will load on each session automatically.

9
00:00:43,340 --> 00:00:45,340
So that means you don't need to load them separately.

10
00:00:46,700 --> 00:00:52,370
And remember, don't hesitate to use the help command at any point for more information.

11
00:00:53,250 --> 00:00:55,190
So let's start her up.

12
00:00:57,510 --> 00:01:03,290
So these are the sessions that I gained entry into during the exploitation phase.

13
00:01:04,220 --> 00:01:07,910
One and two are interpreter sessions on the Windows machine.

14
00:01:08,390 --> 00:01:10,310
Well, you know that exploitable three.

15
00:01:11,500 --> 00:01:16,240
Third and fourth ones are the interpreter sessions for metastable, able to.

16
00:01:17,380 --> 00:01:22,720
And as you can see here, the second and fourth are the high privilege sessions.

17
00:01:24,380 --> 00:01:30,530
Now, I did this specifically because I want to show you that the capability of a session varies due

18
00:01:30,530 --> 00:01:33,810
to the privileges of the user of the exploited process.

19
00:01:34,940 --> 00:01:38,270
So let's start well at the very beginning.

20
00:01:38,270 --> 00:01:41,270
So I will first interact with session number one.

21
00:01:43,910 --> 00:01:47,810
Get UID is a command that will give you the name of the user.

22
00:01:48,970 --> 00:01:52,480
It also specifies who you are in the system.

23
00:01:53,830 --> 00:01:57,550
Now, to get the system information type system info as your command.

24
00:01:58,650 --> 00:02:02,730
And it's going to bring you to the basic information about the exploited system.

25
00:02:03,860 --> 00:02:09,200
Now to observe the difference between a system level session and a user level session.

26
00:02:10,190 --> 00:02:13,190
You can display the metaphor, TURKOMANS.

27
00:02:14,260 --> 00:02:19,660
Now, when you type the help command, immediately available commands will be listed.

28
00:02:21,230 --> 00:02:23,690
So this is what you have in a low level session.

29
00:02:25,790 --> 00:02:30,680
Now, I'm going to send session one into the background again and interact with session number two.

30
00:02:32,890 --> 00:02:40,000
Of course, when you type the health command, you can easily observe that there are more command with

31
00:02:40,000 --> 00:02:40,780
session to.

32
00:02:42,480 --> 00:02:46,290
Now, in a high privileged session, you can do many things.

33
00:02:47,700 --> 00:02:52,470
And to make it clear, in a low level session, you can't delete the windows locks.

34
00:02:53,280 --> 00:02:56,610
However, in a higher level session, it's very easy.

35
00:02:57,870 --> 00:03:00,300
OK, so now let's interact with session three.

36
00:03:03,750 --> 00:03:07,500
Now, this one is a low level session on meds, voidable to.

37
00:03:09,210 --> 00:03:11,610
Oh, no, my session died.

38
00:03:12,650 --> 00:03:18,200
I can quickly fix that, though, because I have an RC file.

39
00:03:20,690 --> 00:03:21,350
OK, great.

40
00:03:21,380 --> 00:03:23,660
So now I have a new session on matters voidable to.

41
00:03:25,800 --> 00:03:29,840
And these are the basic commands that my interpreter provides you for this session.

42
00:03:32,250 --> 00:03:34,560
And now to interactive session for.

43
00:03:37,850 --> 00:03:38,750
The user is route.

44
00:03:41,490 --> 00:03:44,280
And these are this session for comment.

45
00:03:46,470 --> 00:03:48,510
And I'm not going to find any difference between them.

46
00:03:50,120 --> 00:03:56,030
But when it comes to using them, you can't perform every action on a limited session.

47
00:03:57,570 --> 00:04:02,070
OK, so now I'm going to interact with session to on Métis Voidable three.

48
00:04:03,020 --> 00:04:09,200
And again, don't hesitate to ask for help when you're using interpreter, and you can either type a

49
00:04:09,200 --> 00:04:10,880
question mark or help.

50
00:04:11,870 --> 00:04:19,160
To view the commands with descriptions, the info command will display the information of modules,

51
00:04:19,850 --> 00:04:20,720
so tagged info.

52
00:04:22,160 --> 00:04:26,480
And then the name of the module that you want to view, it's information.

53
00:04:27,840 --> 00:04:33,000
Info post, windows gather check VM.

54
00:04:35,350 --> 00:04:43,300
And then after reviewing a module, you may want to run this module, so to do so type run and then

55
00:04:43,300 --> 00:04:44,080
the name of the module.

56
00:04:49,820 --> 00:04:53,120
And, of course, it's very easy to run a post module.

57
00:04:55,370 --> 00:05:03,830
And you may remember earlier that my interpreter has extensions such as NSDAP and Prive, so these two

58
00:05:03,830 --> 00:05:10,580
extensions are loaded automatically on every session, but you may want to load some other ones to.

59
00:05:11,540 --> 00:05:15,290
In order to do that, let's use the load command.

60
00:05:17,040 --> 00:05:20,430
And with the election, you can list the extension's.

61
00:05:21,910 --> 00:05:27,760
So to load an extension, simply load and then the name of the extension.

62
00:05:29,180 --> 00:05:30,290
Load Kiwi.

63
00:05:33,630 --> 00:05:38,430
So I'm going to type help he he to view the help screen for this extension.

64
00:05:39,690 --> 00:05:44,840
And now you can see that you will see the Kiwi commands when you ask the interpreter for help.

65
00:05:47,410 --> 00:05:55,120
And if you're done with a session, you can send it into the background, just type BGI or background

66
00:05:55,270 --> 00:05:57,160
to do this, not going to do it now.

67
00:05:58,860 --> 00:06:02,820
And to close the session completely, you can either quit.

68
00:06:04,290 --> 00:06:05,430
Or exit.

69
00:06:07,380 --> 00:06:10,110
And this will finish your connection to the target.