1
00:00:00,390 --> 00:00:09,000
So in this, you know, we're going to do look at this Automator school injection scandal that is called

2
00:00:09,000 --> 00:00:15,720
a school map, and this will automatically automate or the task and give you the whole database for

3
00:00:15,720 --> 00:00:15,870
you.

4
00:00:16,440 --> 00:00:19,830
And all you need to do is follow your order.

5
00:00:19,860 --> 00:00:31,190
You need to, uh, to start, uh, why don't you just click on this, uh, uh, GitHub link copy this

6
00:00:31,200 --> 00:00:33,630
year and decided on this.

7
00:00:33,630 --> 00:00:37,900
You are so in default manuscript.

8
00:00:38,250 --> 00:00:42,780
Uh, it comes in your Kleenex, but it's, uh, uh, not updated.

9
00:00:42,930 --> 00:00:48,540
And it's better to get on this, uh, repository and new type.

10
00:00:48,540 --> 00:00:50,630
And I have already hit the button.

11
00:00:51,030 --> 00:00:54,240
Uh, then there will be a folder, uh, called a school map.

12
00:00:54,690 --> 00:01:03,200
And you go into this, uh, using KDDI, say, unless I get all these, uh, files and us now what I

13
00:01:03,210 --> 00:01:07,710
want to simply say, Python three is Google Map Dot.

14
00:01:09,660 --> 00:01:12,130
So for the help, Petrozza, my message?

15
00:01:15,220 --> 00:01:22,530
So as you can see, there is a lot of options here, uh, you can specify whether you are using the

16
00:01:22,540 --> 00:01:27,640
you and you can keep the status to the post and you can set the key.

17
00:01:27,650 --> 00:01:34,180
So there is a, uh, positionally or anything like the random ID.

18
00:01:34,270 --> 00:01:40,720
You can set the key value here and you can also set the proxy if you have the proxy server.

19
00:01:42,830 --> 00:01:52,700
And you can you can, uh, increase the levels of this testing using this level and the risk and so

20
00:01:53,900 --> 00:02:01,460
and now the enumeration options minus here for what it will do everything possible to try and manage

21
00:02:01,460 --> 00:02:09,770
it before it reaches the bottom of this database and guarantees that it will get the name of this current

22
00:02:09,770 --> 00:02:13,430
user are running on and the current database.

23
00:02:13,730 --> 00:02:16,750
So we have used this is quite right.

24
00:02:16,940 --> 00:02:23,870
So there'll be an actual database and you get the current database running on this as and again, I

25
00:02:23,900 --> 00:02:32,360
know that the database, uh, management users and the passwords in the articles from the database and

26
00:02:32,360 --> 00:02:38,120
you can also get the algorithms, you're going to get the schema and you can dump, uh, to see if you

27
00:02:38,120 --> 00:02:43,570
can also dump all the database entries also and if you want to particularly.

28
00:02:43,850 --> 00:02:50,420
But if you want to open the database, you need to specify minus B and, uh, database name and then

29
00:02:50,420 --> 00:02:54,630
you can start the column so you can ask for Shell.

30
00:02:54,680 --> 00:02:58,910
It will try to upload a shell and it will execute that.

31
00:03:00,140 --> 00:03:01,910
So let's see.

32
00:03:03,110 --> 00:03:03,530
Uh.

33
00:03:04,820 --> 00:03:14,030
So first you need to give the minus for Europe and we discussed so the rich I went to this, uh, previous

34
00:03:14,030 --> 00:03:17,920
page where we have this all Escorpion induction and use it for.

35
00:03:18,800 --> 00:03:23,240
So let me type the admin and admin.

36
00:03:25,210 --> 00:03:34,930
So these you all read this and what are the injectable locations are this one username and password

37
00:03:34,930 --> 00:03:35,570
is equals two.

38
00:03:35,620 --> 00:03:46,750
So you need to specify these locations as locations based this year in the conditions.

39
00:03:47,020 --> 00:03:55,870
And you are so in this, what you want to do is you need to put a strict symbol of the place of the

40
00:03:55,870 --> 00:03:56,390
infection.

41
00:03:56,530 --> 00:04:08,500
So since I can inject here, mean I can start out and get the password where I can start and now I can

42
00:04:08,500 --> 00:04:12,790
mention what I want from this, uh, obscure database.

43
00:04:12,790 --> 00:04:17,170
I can see currently the hundreds of Ashburnham must be Forbearer.

44
00:04:20,100 --> 00:04:23,120
So it's just a marker for that option.

45
00:04:23,310 --> 00:04:29,930
So since we have said there are two markers, it will identify the two markers I want to press enter

46
00:04:30,150 --> 00:04:31,920
by default, it will take as yes.

47
00:04:31,950 --> 00:04:32,640
Presenter.

48
00:04:35,700 --> 00:04:42,900
And know, resuming back on my so it has found that it's using my school and you are the great cookies

49
00:04:43,230 --> 00:04:46,170
sorority's had its own cookie.

50
00:04:46,170 --> 00:04:47,640
So I want to say yes.

51
00:04:48,510 --> 00:04:53,400
And now it's asking for our induction points we need to set up.

52
00:04:53,550 --> 00:04:54,840
So we have the two places.

53
00:04:54,930 --> 00:04:57,100
And you any anyone that you wish.

54
00:04:57,120 --> 00:05:04,340
I'm going at zero and they're going to see the banner says that, uh, five zero five.

55
00:05:05,080 --> 00:05:11,340
This is the worst number we got from previous managers injection using this address, the direct version.

56
00:05:12,540 --> 00:05:18,970
And you can see that are good to text first under home carry that a school map or put an IP address

57
00:05:18,990 --> 00:05:24,840
so you can also go over here and check the output in case, if you want, for the future reference.

58
00:05:26,160 --> 00:05:27,690
So now let's hit.

59
00:05:30,430 --> 00:05:36,370
So what we have got first, we have got the burner and now let's try to get to the current loser.

60
00:05:36,400 --> 00:05:43,120
So this is very important whether we need to check, uh, escort services running as a route or not.

61
00:05:46,340 --> 00:05:56,480
And in the same matter, the same presenter and and then and to zero percent or the second loser is.

62
00:05:57,050 --> 00:06:01,410
So you don't even forget this address percentage, which can be regarded as incorrect.

63
00:06:02,480 --> 00:06:07,590
So now we got the current user, current user as well.

64
00:06:07,760 --> 00:06:16,760
So you can see these are the basics of this clear that we don't need to do any of this testing like

65
00:06:17,000 --> 00:06:19,700
we did in the manual school in action video.

66
00:06:21,440 --> 00:06:23,150
But you need to specify this.

67
00:06:23,150 --> 00:06:25,100
It's very easy to a school map.

68
00:06:26,120 --> 00:06:33,830
So I can just say tables to the two are that I was the chairman of awareness tables.

69
00:06:38,220 --> 00:06:42,340
And presenter and enter and draw one.

70
00:06:43,260 --> 00:06:47,500
And as you can see, there are so many tables over here, it has it.

71
00:06:48,480 --> 00:06:51,280
So there is a database to give you an idea.

72
00:06:51,510 --> 00:06:56,250
And these are the tables inside this database and.

73
00:06:58,750 --> 00:07:05,950
You can see again, Tochigi database with this, uh, Abels, and you can see there is a database of

74
00:07:05,960 --> 00:07:15,160
S10 and you'll see the accountable for the action we have to select from icons where username and password

75
00:07:15,160 --> 00:07:15,450
is called.

76
00:07:15,490 --> 00:07:20,050
So this is where the logging takes place.

77
00:07:20,830 --> 00:07:25,360
And you can see there is MySQL database and BBWAA.

78
00:07:25,810 --> 00:07:27,910
And also there is a lot of information on this.

79
00:07:29,020 --> 00:07:32,590
This is only the metadata about this database.

80
00:07:35,060 --> 00:07:38,810
So as you can see, you can generate these users to find out what other users.

81
00:07:40,460 --> 00:07:41,990
So now we got the tables.

82
00:07:49,580 --> 00:07:52,390
Let me try for that or dump.

83
00:08:11,240 --> 00:08:20,160
I know we can see the relatives of and the terrorist protesters, you can see how to read common type

84
00:08:21,050 --> 00:08:26,420
are the column names and you can see one is the to know.

85
00:08:34,590 --> 00:08:36,270
There is a lot of information going on.

86
00:08:37,750 --> 00:08:41,420
And you can see the US, so there you go.

87
00:08:41,440 --> 00:08:46,570
As you can see, Ostende is the database and accounts we have seen.

88
00:08:46,570 --> 00:08:50,060
Edward, we got only the user name and signature.

89
00:08:50,080 --> 00:08:50,300
Right.

90
00:08:50,890 --> 00:08:53,050
So this is the password user signature.

91
00:08:53,470 --> 00:08:54,810
But there are fake items.

92
00:08:54,820 --> 00:09:02,710
So we have found that these accounts payable as the fake by putting the final sort of numbers in a row,

93
00:09:03,040 --> 00:09:05,310
using the union basically as connection.

94
00:09:05,320 --> 00:09:12,340
And then we found that there are fake columns and we got the version and the, uh, username using this

95
00:09:12,760 --> 00:09:13,960
union basically as clinics.

96
00:09:14,260 --> 00:09:22,240
So the website Bakan BHP is filtering this and showing us only these three fields.

97
00:09:22,260 --> 00:09:23,800
That's where we found that.

98
00:09:23,800 --> 00:09:25,570
How many columns exactly are they in there?

99
00:09:26,380 --> 00:09:31,750
So there are a few columns and 16 entries can see here, the same output we have got in a previous.

100
00:09:35,710 --> 00:09:38,350
And as you can see, Western and the Broxton.

101
00:09:40,160 --> 00:09:50,960
And if you if you can see there is almost all the data and other data has been put to this useful and

102
00:09:50,960 --> 00:09:57,140
you can also see these CEOs before using our office software.

103
00:09:58,990 --> 00:10:05,880
So as you can see, there are some sample cuts just to show you the information, Ms.

104
00:10:07,490 --> 00:10:14,420
So like this, where you can just automate everything using this is very normal to worry about or anything.

105
00:10:16,940 --> 00:10:24,230
And we can try for oil, shall try to get the river back to us.

106
00:10:29,080 --> 00:10:38,300
Oh, maybe this won't get succeeded, but anyway, trying is a better value, so we have obligations

107
00:10:38,320 --> 00:10:39,830
and letters of support.

108
00:10:40,090 --> 00:10:45,040
I know it's BHP, but there is no SPOG speedier.

109
00:10:49,350 --> 00:10:57,630
So it's say, I got some advice because there is no right Perugia's in that destination, but if we

110
00:10:57,630 --> 00:11:06,080
have the right religious from the normal user, we can just write the parody to that and we get to worship.

111
00:11:08,340 --> 00:11:11,790
So it's definitely worth trying this oil option.

112
00:11:13,680 --> 00:11:20,550
So as you can see, you can also dump all the database entries and you can also dump specific data.

113
00:11:21,300 --> 00:11:26,760
So this is what this is, all you need to do is you need to do that.

114
00:11:26,760 --> 00:11:36,120
You are all I need to specify the locations where you want to get that balance just at the start and

115
00:11:36,120 --> 00:11:37,030
the puzzle start.

116
00:11:38,070 --> 00:11:39,780
So the terrible this is crap.

117
00:11:39,840 --> 00:11:40,980
I hope we have understood.