Lesson 37 : Spear Phishing Attacks Video Lecture | Ethical Hacking using Kali Linux (in English) - Software Development

hey guys welcome to the next tutorial of
ethical hacking and penetration testing
we are Kali Linux so in this tutorial we
will be taking a look at social
engineering attacks through Kali Linux
so the first part would be many new be
hackers focus upon the technical aspects
of hacking and fail to give enough
attention to social engineering attacks
in fact I would say that you should only
apply technical hacks of a if you have
attempted the social engineering attacks
and they have failed because why bother
spending hours and days trying to hack
into a password if someone is willingly
or simply ready to give it out to you
so social engineering is the act of
getting people to give you information
told you before and that trust may begin
by posing as someone in the authority
colleague or just someone who needs your
help and Kali Linux has a tool in build
to assist and automate social
engineering attacks called as s et or
the social engineering toolkit a city
was developed by David Kennedy and it
simplifies a number of social
engineering attacks such as fishing
spearfishing malicious USBs and many
more furthermore it has been integrated
with the Metasploit so that we can use
Metasploit exploits and payloads in our
social engineering attacks
so the to start with we would be first
going out and clicking our terminal over
here and we will type s e tool kit you
can either do and hit enter and you can
either do this or you can go to insulate
application Kali Linux and over here you
will find over here somewhere I don't
know where exactly notation to social
engineering NSE toolkit per fight it's
both are the same so it doesn't matter
exactly so once you cordon start you
will see the social engineering over
here the first so we would be using the
first point over here so I'll just click
one and enter so as you can see we have
a total of ten different types of attack
and a social engineering and inside that
also we have multiple attacks so the
first one we will be checking are the
spear phishing attack so I'll just go
and select one and I'll hit enter
so you can see that I have three
different attacks inside that that is
performing a mass email attack and
performing a file format payload and
creating a social engineering attack if
we're trying to perform a similar tag
make sure that you already have gathered
information by using the harvester I
believe I showed you previously about
the harvester I may check if I have
taught you that yep and my doing is you
will gather information about the
harvester I said now I've stopped it
because my net is a bit down so in this
tutorial we'll be looking at creating a
spear phishing attack and Forester for
those of you who are not familiar with
this technology a spear phishing attack
is an email attack with a broad net in
an attempt to try to pick up a few
random victims the spear phishing
attacks is similar except that when it
targets one or few individuals it will
go and target all of them in other words
it's a targeted social engineering
attack and hence it is called as
spearfishing because it's targeted now
let's go dance elect the second one
that's file format payload and I'll show
you how we can go ahead and do that so
I'll just go ahead and type two and hit
enter so you can see we have different
types of viruses or different types of
Trojans over here that has already been
included if you want you can go and set
up some custom one but you need to go
and select the previous one so that you
can go ahead and create a template for
that first so what we will be starting
over here would be the Microsoft Word
RTF P fragment stack buffer overflow so
this will create a word document that
will overflow a buffer and in able to
put us a listener of rootkit on the
victims machine so we'll just press Phi
and I'll it enter so what this would do
is that the default is the PDF with
embedded Exe and we are not going to use
the PDF because normally Google is
Google scans all the PDF that's why so
we'll be using the Microsoft Word RTF P
fragment so just hit 5ad enter and here
we have different types of payloads that
we want to use note that we have decided
what type of file we want to use in our
attack our next step is to decide what
type of listener
or rootkit or payload that we want to
use we want to leave we would be leaving
this on the listeners tips machine so
that we can listen to it later this may
look a familiar to you if you have used
Metasploit or Metasploit payloads so let
us be ambitious and try to get the
victims meters per meter width repeater
on the victims machine if we are
successful we will completely own that
system so I'll just go ahead and
minimize this and I'll also open my
windows 7 over here side-by-side so just
go ahead and login into that so this
good an open-mic a leanness right now so
if you want to trick the victim into
opening this file you should name it
something that will sound enhancing or
enticing or familiar to the victim so
let's go ahead and start let's use the
windows meterpreter or let's see I will
go ahead and use the reverse TCP shell
to go and send back the attacker so that
you will get a command prompt so I'll
just go ahead and type 1 and I'll hit
enter let's check ok perfect and we need
to go to and set the IP address for the
listener so we would be using my IP
address I'll type ifconfig and this
would be my IP address that is 192 168
236 130 I'll just copy and I'll paste it
over here and I'll hit enter now we need
to go ahead and use a port to connect
back to normally we use 443 because
that's a default one if you want again
supply your own so I would be supplying
my own so I'll just use let's say 2 9 6
0 and Nas it enter so it will go ahead
and create a file format for us over
here I'll close this one just we need to
wait till it's created so it is saved in
root period SAT template dot PDF that's
the name and you can go ahead and use
the file format creator in a city to
create attachments so we could we need
to go ahead and keep the follower
we can go ahead and bring in the file so
I'll just go and rename the file let's
say we'll rename the file to salary slip
I'll just go ahead and rename it to
salary slip so if I send this to the
person he will surely go ahead and click
because let's assume that the person is
working over here and just for the sake
of it and I just got a hit enter so what
do you want to do we want to email the
attack or we want to return so I'll just
go down since I am NOT going to email it
to anyone right now but if you want you
can call them email it to the attacker
right now I won't be because I don't
have the email ID any fake email ids so
I'll just go ahead and end it right now
can I hit enter and I'll just go ahead
and see where it was it was in the route
so I'll just open and file system and
route let's check where is the route and
as you see you cannot see anything with
the nails just wouldn't delete these
things you cannot see anything with the
name of period se T over here which it's
shown over here the reason being that we
P period s ET means a period in the
start means it's hidden so we need to go
down show hidden files perfect we have
period s city over here and then we have
this as the sleepwalking so I'll just
code and copy it over from here and this
our virus so make sure that you don't
infect your own computer so I'll just go
ahead and start it on my windows 7
version so I'll just copy it say famil
to paste it over here ok so Windows 8
has already detected it so I'll go ahead
and try to disable it just for the time
being and perfect now I just try to
paste it over here perfect and I'll go
ahead and cut I'll paste it over here
perfect and I don't need this father
anymore and I will go ahead and enable
this again I don't want any viruses on
my computer I'll serve it perfect turn
on I'll just minimize the till then
perfect so now which file is this let me
check let's see it's a PDF file
okay let me check it father this exactly
okay I cannot name it PDF so I'll just
couldn't claim it as period PDF perfect
now believe I don't have the Adobe
Reader installed so what would happen is
that in case I had Adobe Reader
installed over here I could have easily
gone ahead and run this file and once
I've entered and ran this file I would
straightaway go ahead and get a
connection back over here and I would be
able to run it so this is how we can go
ahead and gather information if you know
if you're not it understood what exactly
it is that we can go on and we want to
trick the victim into opening this file
we should name it something that will
sound familiar to the victim and now
this will depend depending upon the
victim and so since I told you the
dynamics that I named the child asleep
so we will be impersonating the boss of
our employee and we will what we're
doing is that we would normally go ahead
and send this through email because and
the person who is over there normally it
is send by email and not through
whatsapp or Facebook or something so a
city then we'll go ahead and create this
file and I'll name it something else
dear XYZ please find the attached salary
slip for your incoming for your last
month and I'll name it something like
that of course your email will differ
depending upon whom you are trying to
send it we try to make it sound enticing
and legitimate or they are not likely to
open the attached malicious file and our
attack will fail so this is this example
a straw we can go ahead and do that then
that would be it for this tutorial and
in the later tutorial I'll be teaching
you
we can go ahead and actually once the
person runs this file how we can
actually go ahead and gather much detail
information about that so that would be
it for this tutorial let's take a look
at next tutorial