วีดีโอ

do what you love bro.. =)

@32:20 How in the heck do you get the Meterpreter prompt when running the exploit command? I get the Windows command prompt, which makes sense since it's a reverse shell exploit. Please explain, I can't sleep until I understand

Dude, you look 10 years older since your first video upload. Might wanna get checked out by the doctor.

Good video and great help for beginners, but there is also some confusion on your part, regarding webshell, reverse shell and what should be executed on the attacker's or victim's machine. Task 13 Q1: Instead of uploading a reverse shell, the task asks to download a webshell and execute an RCE with "cmd=" in the URL which allows to send a reverse shell to the attacker. Task 13 Q4: It is up to the attacker to access the victim and not the other way around Task 13 Q7: This does not work, because you are using the reverse shell of the previous task and this file contains a command not known to Windows. Instead, you must upload a webshell, which you will find in the "webshell" page and which allows to execute an RCE with "cmd="

I am totally confused because the resultes clearly seem to to says "nologin www-data:x:33:33:www-data:/var/www:/usr/sbin/nologin " so how are you able to tell that this user is logged in? Also, you lost me when you used a Unix command, & then switched to a Windows command and then finally use Linux commannd for this one. whomain should work but doesn't & you should explain why not because that is the command given for user identification. Determination only helps if you are making EDUCATION guesses, not random ones.

It wasn't clicking in my head, thank you for putting this together! I got through it, now to reset it, and do it again until I know it.

Are you on LinkedIn? Would like to tag you....

followed the explotation section verbatim. "host does not appear vulnerable". no matter what i do.

The question is about how many routers are between the source and the destination, not just the total number of hops. In a traceroute, the last hop usually represents the destination host itself, not an additional router. So if there are 26 hops, that would typically mean 25 routers.

I honestly tried to watch all this but half of your video is filled with terrible audio quality it sounds like you're rubbing the microphone between your hands or sitting on it or something.

Hey Brock... looking forward to your "I'll Be Back" moment. Thank you for your videos on Jr Pentesting, you showed the path and made it understandable step by step. You filled in the gaps for me mate! I wish you the very best in all your future endeavors.

Thanks man I was stuck on the telnet part this helped me a ton

whenver i try this it tells me the target is not vulnrable any ideas?

You are a great instructor, you give it simple and give plenty of reminders for us newbies....much appreciated

very smooth vid!

keep getting Exploit Completed but no session

Not made just for that u also can take control over hole networks with this

On the third question, you should set the RPORT to 8000 not just the RHOSTs to your IP target, because the default on the http_version module is port 80 and we want port 8000

"Len-node" Linode. Smfh

The raccoon edits had me dying, especially the raccoon climbing up the mountain... Great work, brotha!

Your videos are genuinely so fun to watch. You've got a great personality and bring a positive and calming light to the security world. Thanks for everything! <3

~Thanks for the video! I am still trying to figure out why I cannot replicate the results when connecting through VPN instead of attack box

Thank you for this, so clear and concise. Your teaching style is beautiful and to the point - great educational tips and notes throughout the video, your editing was so well done... I appreciate you so much, thank you brotha! <3

This is by far the best tryhackme walk through video I have ever seen.

In the last question where it says What user is this application running as ? you coudlve just used whoami but thanks anyways ur good man keep up

Only 9k views??? Wow... This is a great video

Ya let me get one 1yr later🙃

I liked and subscribed just off the simple fact of the dance break

This was a seriously difficult room, I wanted to say thank you so much for making this 200% amazing video helping all of us to complete it! And thank you for taking the time to provide beginner friendly step by steps and examples, your method of explaining is wonderful & I appreciated it greatly & all the humor as well 🙏😁🙌👍

super confused on task 13 question 7, seems like there is a cut there?

Quack quack😊

🏴‍☠️🙌😁👏

very helpful & /thankyou

In the second last and last tasks we need to set the the same payload we used in msfvenom to make the payload in the multi/handler. I think that is the reason for the unstable shell you are getting...

why did you choose port 8081?

I just wanted to say thank you, I have used your videos quite a bit as I am starting my journey on getting into Pentesting /red hat. your videos are the first I look for to get clear explinations

Thank you times a million, this helped so much!! 🙏

Thank you for this guide, appreciate it 🙏 There were some very tricky parts, thanks to following along step by step, I was able to complete the room 😁

Hey man , great video , just wanted to zsk u,how did u manage to apply a dark theme on the tryhackme platform

as previous people have stated your videos are the best online. Thank you so much for helping!

the synchronized humming took me out

Aside from the great content, loved your energy man! Keep on trucking and thanks!

The pineapple nano was released in 2016, is no longer maintained or supported by Hak5 and can only scan 2.4ghz BUT I am curious as to how you got dark mode 😂 probably in themes?

I don’t know why you stopped creating content, but I wish you the best in your life. You have helped me a lot as a beginner to keep learning and reach a good level. There are many people who explain the courses you taught, but your way of explaining was much better because you considered the beginners' level who were watching the course. Thank you again, and I wish you all the best.

Hi Brock Rosen. can u explaine me please about Bind shell on 1:16:00 fwd. I think u made a reverse shell not a bind shell as the second example should be for Bind shell? Victim Machine: Start the listener: socat TCP-L:443 EXEC:"bash -li" This means the victim is waiting for an incoming connection on port 443 and will provide a Bash shell when connected. Attacker Machine: You connect to the victim: socat TCP:10.10.164.3:443 - This connects your terminal to the victim's Bash shell, allowing you to control the victim. 😉 nice work Brock and hope to see more videos like this!!! You are doing really good work 🙌 Thank you.

why are u typing a ip address on victims phone?

BIG LOVE MAN

28:06 why did you do 5 ../? How do you know how many to use?

dude you are so wholesome. thanks a lot for the help! you earned yourself a golden sub.

wrong it shouldn't show a error message it should redirect them to a working Wi-Fi point and no trace is left... if i want to hack do it right.