Would you like to inspect the original subtitles? These are the user uploaded subtitles that are being translated: 1 00:00:01,040 --> 00:00:06,780 Now in this lecture, I'd like to show you another tool that allow us to generate undetectable backdoors. 2 00:00:07,480 --> 00:00:13,460 This tool is called TheFatRat and you can think of it as a tool that's similar to Veil-Evasion. 3 00:00:13,860 --> 00:00:19,120 It doesn't use the same techniques as Veil-Evasion but it allow us to generate backdoors, 4 00:00:19,120 --> 00:00:24,560 that if executed on the target computer, they give us full access to that computer. 5 00:00:25,320 --> 00:00:30,780 Now, you might think why am I teaching you a tool that does exactly the same thing as Veil-Evasion. 6 00:00:31,140 --> 00:00:38,320 Well, the reason is as I said before, when it comes to antivirus 'Evasion', we are going in a loop, 7 00:00:38,520 --> 00:00:45,080 so antivirus programs release an update that render Veil and other programs maybe, detectable. 8 00:00:45,300 --> 00:00:49,780 So you might have to modify the options of the payloads, like I said before 9 00:00:50,140 --> 00:00:52,740 or you could just try to use a different tool. 10 00:00:53,700 --> 00:00:58,540 So I'm showing you a different tool, just in case you're trying to generate a backdoor using 'Veil' 11 00:00:58,540 --> 00:01:02,600 and it's getting detected then you can just come in and try a different tool. 12 00:01:02,600 --> 00:01:05,160 And in this example, we're gonna be trying TheFatRat 13 00:01:05,520 --> 00:01:09,020 and we'll see how that generates undetectable backdoors as well. 14 00:01:09,460 --> 00:01:13,240 The case could be the opposite, you might be generating something using TheFatRat 15 00:01:13,240 --> 00:01:16,850 and it gets detected and in that case you can go and try with Veil-Evasion. 16 00:01:17,800 --> 00:01:22,620 Now, always you need to keep in mind that you want to make sure that these tools are always updated. 17 00:01:22,620 --> 00:01:24,540 So you wanna make sure you have the latest update 18 00:01:25,040 --> 00:01:29,300 and you should be able to bypass most, if not all antivirus programs. 19 00:01:30,260 --> 00:01:34,940 The Fat Rat also has options to generate backdoors for other operating systems 20 00:01:34,940 --> 00:01:40,420 such as Mac OS, Linux and Android and we'll talk about that later on in the course. 21 00:01:41,100 --> 00:01:43,600 For now, we're gonna talk about installing Fat Rat 22 00:01:43,600 --> 00:01:46,220 because it doesn't come pre-installed in Kali. 23 00:01:47,040 --> 00:01:50,040 So the first thing you want to do is go to their website 24 00:01:51,080 --> 00:01:54,020 and I'm gonna put it in the resources of the course 25 00:01:54,580 --> 00:01:59,340 or you can just literally, go to google and search for The Fat Rat. 26 00:02:03,540 --> 00:02:06,600 So to download something from 'Git' you an use the 'Git' command 27 00:02:06,940 --> 00:02:11,740 and the first thing you want to do is click here and 'get the URL for the project. 28 00:02:12,300 --> 00:02:17,560 So I'm going to copy this and that's all I need for now. 29 00:02:17,600 --> 00:02:18,760 So I'm gonna close this window. 30 00:02:22,860 --> 00:02:24,060 I'm going to open my terminal 31 00:02:28,240 --> 00:02:32,260 and I'm going to install the fat rat in OPT, in the OPT path. 32 00:02:32,580 --> 00:02:38,940 So to do that I'm going to use 'cd' to open and then I'm gonna go to '/opt'. 33 00:02:40,140 --> 00:02:45,440 Now I'm gonna download or clone The Fat Rat and I've already copied its URL. 34 00:02:45,900 --> 00:02:53,080 Now, to clone or download something from 'GitHub', all you have to do is just do 'git clone' 35 00:02:54,540 --> 00:02:57,760 and then put the URL of that project that I just copied. 36 00:02:59,640 --> 00:03:04,192 So I'm gonna hit Enter and that's gonna create a new directory for me. 37 00:03:05,340 --> 00:03:10,480 Okay, now that the download is done, I'm gonna do 'Ls' to list the files or directories 38 00:03:10,860 --> 00:03:13,520 and as you can see again, we have The Fat Rat right here. 39 00:03:13,880 --> 00:03:19,300 So I'm gonna navigate into that and I'm going to do 'cd' to navigate into a directory 40 00:03:20,000 --> 00:03:22,940 and then we're going to put the directory name, which is 'TheFatRat'. 41 00:03:24,040 --> 00:03:30,720 If we do 'Ls' to list again, you can see all the files have been downloaded. 42 00:03:31,520 --> 00:03:34,960 Now we need to set up the tool before we can use it. 43 00:03:34,980 --> 00:03:37,140 So we have to run this setup script. 44 00:03:37,720 --> 00:03:41,760 To do that we have to first change its permissions to executable. 45 00:03:42,440 --> 00:03:48,180 You can do that using the 'chmod' command and then we're going to do '+x' 46 00:03:50,060 --> 00:03:54,440 and put the filename that we want to change its permission and it's 'setup.sh'. 47 00:03:56,540 --> 00:04:00,700 So the reason why we're doing this is because we want to execute that file, 48 00:04:00,760 --> 00:04:06,020 we want to execute 'setup.sh' and right now, it's not executable. 49 00:04:06,600 --> 00:04:09,220 So we're using the 'chmod' command to change its permission 50 00:04:09,220 --> 00:04:13,100 and this is the permission that we want to use, which is the executable permission. 51 00:04:13,100 --> 00:04:15,020 And we're doing it to this file. 52 00:04:15,560 --> 00:04:23,140 Now, if I hit Enter and do 'Ls', you'll see that the file color has changed to green, 53 00:04:23,140 --> 00:04:25,600 which means that it's an executable now. 54 00:04:26,360 --> 00:04:32,360 So to run this file I'm just gonna do './' and I'm gonna put the file name. 55 00:04:33,900 --> 00:04:37,440 So now, if I hit Enter that's gonna run the installer for me 56 00:04:38,000 --> 00:04:42,100 and the Installer is first checking if I have, if there is anything missing 57 00:04:42,100 --> 00:04:45,580 and as you can see so far, everything is installed by default. 58 00:04:46,140 --> 00:04:51,140 And if there was anything missing, it will tell us that this is missing and I'm gonna install it for you. 59 00:04:51,780 --> 00:04:55,660 Again, just like Veil-Evasion, it's checking for libraries and packages 60 00:04:55,660 --> 00:04:59,260 that it's gonna need to use when generating the backdoors 61 00:04:59,260 --> 00:05:04,000 and you can see, it just discovered that there is a dependency in Ruby, that's not met. 62 00:05:04,160 --> 00:05:06,980 And it's downloading it and installing it automatically. 63 00:05:09,380 --> 00:05:15,838 Okay, now it's finished everything and it's asking me if I want to create a shortcut for FatRat. 64 00:05:16,360 --> 00:05:21,840 Basically, what this does is, it'll allow us to run TheFatRat command from anywhere within the system. 65 00:05:21,840 --> 00:05:24,900 So we don't have to navigate into its directory. 66 00:05:24,900 --> 00:05:28,274 We won't have to do 'cd/opt/TheFatRat' and then run The Fat Rat. 67 00:05:28,280 --> 00:05:30,100 We'll be able to run this from anywhere. 68 00:05:30,660 --> 00:05:36,840 So I'm just gonna say, 'Yes' and that's telling me that it's done and we can use it now from anywhere. 69 00:05:38,560 --> 00:05:39,360 And that's it. 70 00:05:39,360 --> 00:05:40,440 The installation is complete. 71 00:05:40,960 --> 00:05:48,820 Now, if we run TheFatRat and hit Enter, you'll see the program starting up 72 00:05:50,800 --> 00:05:55,380 and it's just giving us a note, not to upload the viruses or the backdoors 73 00:05:55,380 --> 00:05:58,820 that we create to 'VirusTotal', upload them to 'NoDistribute'. 74 00:05:59,120 --> 00:06:00,140 We're already doing that. 75 00:06:00,380 --> 00:06:03,640 So we're gonna say yes, no problem and that's it. 76 00:06:03,840 --> 00:06:09,340 Now the tool is ready to be used and we're going to talk about it in future videos. 77 00:06:09,680 --> 00:06:12,500 For now we're just, we just had a look on how to install it 78 00:06:12,720 --> 00:06:15,760 and as we did that, we actually learned a few Linux commands, 79 00:06:15,760 --> 00:06:17,820 that's gonna come in handy on the long run. 8121