Once the CyberShaolin Learning environment has been launched, you should see a terminal where you can type in commands.

First navigate to the home folder by typing cd home. and then type ls
You should see the name reuben. This is a user account.

Generally the first thing we will do is to generate the passwords file, but for this learning activity, the password file (called etc_passwords.db) is provided for you. You can directly use that. To crack (find out) the password, we will use the tool John The Ripper (JTR) or simply john. In the terminal window, type john etc_passwords.db. It may take a minute to crack, but the credentials should be displayed on the screen. If you missed or just want to see the credentials you can type john etc_passwords.db --show.

The way ssh (secure shell) works is it encrypts data (we will be encrypting with the RSA algorithim) using a encryption key. This encryption key has two parts the public key and the the private key. You can think about it this way half of the key is the public key and the other half is the private key to form the whole key you need both so you can unlock the door.

If not already there cd to the cd home/reuben and ls you should see a folder named ssh_keys navigate into that folder by typing cd ssh_keys, then ls again.

JTR acctually has a program called ssh2john that will combine the public and private key making the hash file that we can crack, but we already did that for you so you should a hash file called reuben_rsa.hash.

The last step is to crack the password we are going to use JTR, but this time we are going to input our own wordlist, by default JTR uses another wordlist. It is important to know how to use you own wordlists in case you need to crack a password around a specific subject you can search for wordlists about that subject and crack the password. An example is you know that the user Reuben likes to travel a lot so his password maybe a US city you can find a us cities wordlist and crack the password using that. So type in john --wordlist=/usr/local/share/john/wordlists/us_cities.txt reuben_rsa.hash.

What is Steganography?
Steganography comes from the greek words steganos which means 'covered' or 'concealed' and graphine which means writing. Hence, Steganography means concealed writing.

Steganography is the technique of hiding secretive data in ordinary non-secret messages most commonly in images or audio files. The secret data is then extracted using steganography extraction methods.

Stegenography is a very common technique used by spies they use this to communicate stealthily.

steghide

We are going to be using a tool called steghide that can hide data in images or extract data that are hidden in images.

First navigate into the stego folder in the is in nested under the folder called reuben in the home directory.

Type cd /home/reuben/stego and press enter.
Then type ls and type enter to list the contents of that directory.

The hacker bros - More than what meets the eye
You should see a image named hacker_bros.png. In order to see the image, there are a few things you can do. Click on the Tab that says HackerBros Website. This should open up your default browser and display a web page with the image in it.

The web page will give you a description about the image and then inform you that there is more to this than what meets the eye and that there is a hidden message that you must try to uncover.

This informs you that using Steganography, some information is hidden in the image. To find out what the hidden message is, we need to extract the message from the image itself.

An enigma
Usually a secret steganography message would require a password to extract the data/message. In this case the password is enigma.

To extract the message, we need to specify the steganography file (-sf), a password (-p) and the file to extract the message/data to i.e., the extracted file (-xf).

Type steghide extract -sf hacker_bros.png -p enigma -xf message.txt and press enter.

Now type ls. You should see a file called message.txt.

Try reading the contents of the message.txt file using the cat command.

Type cat message.txt and press enter.

You should see some garbled text that looks like this.
CkFsd2F5cyB1c2UgeW91ciBjeWJlciBza2lsbHMgZm9yIHRoZSBnb29kIG9mIGh1bWFuaXR5LiAKClJldWJlbiBSQVBzdDRyIFBhdWwgYWthIFRoZSBDeWJlciBOaW5qYQoK

Something Basic - An encoded secret
The content of the message.txt look garbled and is not humanly intelligible because it is either encrypted or encoded. In this case, the message is encoded.

So to read the message, we will use the base64 -d command which will decode the encoded text.

Type base64 -d message.txt and press enter. The dash d (-d) stands for decode.

If the command runs successfully, you should see a quote that says.
`Always use your cyber skills for the good of humanity.

Reuben RAPst4r Paul aka The Cyber Ninja`.

In this course, you have learned techniques that hackers use to hack secrets such as password cracking and phishing.

In the end result of this training kwoon you should have the credentials harvested in the /var/www/html folder.

Hope you had fun learning! :-)