1
00:00:01,080 --> 00:00:08,340
‫User interface commands and webcam commands are grouped under two different headers, capturing keystrokes,

2
00:00:08,340 --> 00:00:14,520
‫grabbing screenshots, taking a snapshot from the webcam are only some of the functions of the commands

3
00:00:14,520 --> 00:00:15,030
‫of this group.

4
00:00:17,150 --> 00:00:24,110
‫Idle time returns the idle time of the victor machine if you want to connect remotely and do something

5
00:00:24,110 --> 00:00:27,830
‫on the machine, for example, disable the host based antivirus.

6
00:00:29,470 --> 00:00:31,360
‫It would be best to do it in the idle time.

7
00:00:32,910 --> 00:00:39,420
‫So screenshot guess what that does grabs a screenshot of the current desktop interface.

8
00:00:40,750 --> 00:00:47,080
‫He can start, he can stop, he scanned dump used to capture keystrokes.

9
00:00:48,060 --> 00:00:51,750
‫Record my records audio from the mike of the victim.

10
00:00:52,720 --> 00:01:00,640
‫Webcam list lists the webcams of the victim machine webcam snap takes a snapshot from the specified

11
00:01:00,640 --> 00:01:01,270
‫webcam.

12
00:01:02,180 --> 00:01:04,550
‫So let's see some of these system commands in action.

13
00:01:05,870 --> 00:01:12,530
‫As you can tell, I now have an interpreter session in Colly Idle time shows the idle duration of the

14
00:01:12,530 --> 00:01:13,550
‫victim in seconds.

15
00:01:14,700 --> 00:01:18,660
‫Screenshot takes a screenshot and saves it to our host.

16
00:01:19,580 --> 00:01:23,820
‫So here it saved in the folder RWD with a strange name.

17
00:01:24,300 --> 00:01:26,820
‫So let's look at the folder with the file explorer.

18
00:01:28,130 --> 00:01:35,060
‫We're already in the home folder of the current user, which is the folder route, and here is the screenshot

19
00:01:35,060 --> 00:01:36,240
‫in JPEG format.

20
00:01:36,980 --> 00:01:40,670
‫It's exactly the same with a current look of the machine.

21
00:01:42,140 --> 00:01:43,700
‫So now let's start a case can.

22
00:01:45,380 --> 00:01:51,290
‫Now I am in the vector machine, open a notepad and write something down.

23
00:01:57,810 --> 00:02:02,430
‫He scanned dump to look at what is dumped, absolutely nothing.

24
00:02:03,370 --> 00:02:05,100
‫I think I know the reason.

25
00:02:05,340 --> 00:02:07,500
‫So I'll stop the CAT scan for now.

26
00:02:08,190 --> 00:02:12,570
‫Now get uid ID to see who we are at the moment.

27
00:02:12,780 --> 00:02:16,290
‫And we are the system user at the victim machine.

28
00:02:16,620 --> 00:02:20,100
‫But the user who opened the notepad and wrote something is.

29
00:02:20,950 --> 00:02:27,310
‫The administrator, USERRA, so do you remember how we can change the user, we're going to migrate

30
00:02:27,310 --> 00:02:33,010
‫a process which is run by the administrator user, for example, three to four.

31
00:02:37,410 --> 00:02:42,880
‫How lucky are we migrated to the very first attempt to get started again?

32
00:02:42,900 --> 00:02:48,090
‫And yes, we are the administrator now, so start the question again.

33
00:02:49,470 --> 00:02:52,710
‫And go to the Victor machine and write something down.

34
00:02:54,370 --> 00:02:56,620
‫Back in Akali and look at the key dump.

35
00:02:58,120 --> 00:03:04,930
‫And here it is, all the key strokes, including backspace and enter, also known as carriage return,

36
00:03:05,350 --> 00:03:06,340
‫are all logged.

37
00:03:07,790 --> 00:03:09,410
‫So we can stop the question now.

38
00:03:12,000 --> 00:03:12,690
‫So what else?

39
00:03:14,250 --> 00:03:21,450
‫Let's list the API extensions command using help SDD API.

40
00:03:22,940 --> 00:03:28,370
‫The webcam commands are here, and let's list the webcams of the victim.

41
00:03:29,430 --> 00:03:30,790
‫No webcams were found.

42
00:03:31,560 --> 00:03:38,250
‫Now, normally we can share the webcam of the host machine with a VM, so go to VM settings, click

43
00:03:38,370 --> 00:03:42,060
‫add device, select camera and click add.

44
00:03:43,070 --> 00:03:50,510
‫So we're supposed to have a webcam in the VM now, but it is a known issue that VMware cannot share

45
00:03:50,660 --> 00:03:53,930
‫the MacBook FaceTime HD camera with VMS.

46
00:03:54,500 --> 00:03:57,040
‫This is why nothing happens when we try to add a camera.

47
00:03:57,590 --> 00:04:04,970
‫I cannot show the webcam commands now, but I'll try to find an external webcam, capture a new lecture

48
00:04:04,970 --> 00:04:07,940
‫with it and add that lecture to the course.