Damn Vulnerable Windows XP: Lesson 1: How to create a Damn Vulnerable Windows XP Machine

ComputerSecurityStudent (CSS)

[Login]

[Join Now]

|WINDOWS >> Damn Vulnerable Windows >> WXP-SP2 IE6 >> Current Page

|Views: 45975

(Damn Vulnerable Windows XP: Lesson 1)

{ How to create a Damn Vulnerable Windows XP Machine }

Section 0. Background Information

What is Damn Vulnerable Windows XP?
- This is a Windows XP Virtual Machine that provides a practice environment to conduct ethical penetration testing, vulnerability assessment, exploitation and forensics investigation.
- The Microsoft Software License Terms for the IE VMs are included in the release notes.
- By downloading and using this software, you agree to these license terms.
Lab Notes
- In this lab we will do the following:
  1. Download & Install Z-Zip
  2. Download a Windows VM (IE6)
  3. Disable Standard Security
  4. Create Weak Passwords
  5. Remove all XP3 and XP4 Patches

External Hardrive Recommendation
- It is only a recommendation to purchase an external hard-drive for the following reasons:
  1. Laptops do not always provide you with extra space that Virtual Machines Require
  2. Using an external drive allows you to easily play a Virtual Machine across multiple devices.
  3. In (Section 2, Step 2), I save the Virtual Machine to an External Hardive. Accordingly, you could save it locally if you have space on your system.
  4. Computer Security Student does receive a very small Amazon Affiliate commission from this purchase
Legal Disclaimer
- As a condition of your use of this Web site, you warrant to computersecuritystudent.com that you will not use this Web site for any purpose that is unlawful or that is prohibited by these terms, conditions, and notices.
- In accordance with UCC § 2-316, this product is provided with "no warranties, either express or implied." The information contained is provided "as-is", with "no guarantee of merchantability."
- In addition, this is a teaching website that does not condone malicious behavior of any kind.
- You are on notice, that continuing and/or using this lab outside your "own" test environment is considered malicious and is against the law.
- © 2015 No content replication of any kind is allowed without express written permission.

Section 1: Download 7-Zip (Pre-Requisite)

Open a Command Prompt (Host Computer)
- Instructions:
  1. Click the Start Button
  2. Type cmd in the search box
  3. Click the cmd icon
Determine System Type
- Instructions:
  1. systeminfo | find "System Type:"
- Note(FYI):
  1. x64 - 64 Bit Operating System
  2. x86 - 32 Bit Operating System
Open Firefox
- Instructions:
  1. Click the Start Button
  2. Type firefox in the search box
  3. Click the firefox icon
Save Files Configuration Location
- Instructions:
  1. Tools --> Options
  2. Click the General Tab
  3. Click the radio button Always ask me where to save files
Start 7-Zip Download
- Instructions:
  1. http://www.7-zip.org
  2. Click Download
  3. Click the Save File Button
- Note(FYI):
  1. If you already have 7-Zip installed on your host machine, then you can skip down to (Section 2, Step 1).
  2. Use Section 1, Step 2 to determine if you should download the 32-bit or 64-bit version.
Save 7-Zip
- Instructions:
  1. Navigate to C:\temp
  2. Click the Save Button
Open Executable File
- Instructions:
  1. Tools --> Download
  2. Double Click on 7z*.msi file
  3. Click the OK Button
Open Executable File
- Instructions:
  1. Click the Run Button
7-Zip Setup Wizard
- Instructions:
  1. Click the Next Button
7-Zip EULA
- Instructions:
  1. Check I Accept...
  2. Click the Next Button
7-Zip Custom Setup
- Instructions:
  1. Click the Next Button
7-Zip Installation
- Instructions:
  1. Click the Install Button
7-Zip Completion
- Instructions:
  1. Click the Finish Button

Section 2: Download Microsoft XP-IE6 VM

Download Windows XP-IE6
- Instructions:
  1. Navigate to one of the follow URLs
    - VMware:
      - https://drive.google.com/open?id=1ufSg6tG_QJX3Ssihn_eB35FEOFm4GQSq
    - Virtual Box:
      - https://drive.google.com/open?id=1BMonDTESIB9MMAeDKmtoNEAMq9hjOns7
  2. Click the Save File Radio button
  3. Click the OK Button
Download Location
- Instructions:
  1. Navigate to your preferred download directory
    - In my case, E:\VMs\Damn Vulnerable Windows XP
  2. Click the Save Button
Go To Downloads Folder (Part 1)
- Instructions:
  1. Tools --> Downloads
Go To Downloads Folder (Part 2)
- Instructions:
  1. Right Click on IE6.XP.For.Windows.VMware.zip
  2. Open Containing Folder
Extract Files
- Instructions:
  1. Right Click on IE6.XP.For.Windows.VMware.zip
  2. Select 7-Zip
  3. Extract Here
Extract Process
- Note(FYI):
  1. The Extraction Process will take between 2 to 5 minutes.
  2. Continue to Next Step after the extraction completes.

Section 3: Create a New Virtual Machine

Open VMware Player on your windows machine.
- Instructions:
  1. Click the Start Button
  2. Type "vmware player" in the search box
  3. Click on VMware Player
Create a New Virtual Machine. (See Below)
- Instructions:
  1. Click on Open a Virtual Machine
Open Virtual Machine
- Instructions:
  1. Navigate To Extracted Virtual Machine Location
    - In my case, the directory was E:\VMs\Damn Vulnerable Windows XP
  2. Click IE6 - WinXP
  3. Click the Open Button
Import Virtual Machine
- Instructions:
  1. Name: Damn Vulnerable WXP-SP2
  2. Storage Path: Browse to your desired storage location
    - In my case, the storage directory is E:\VMs\Damn Vulnerable Windows XP
  3. Click the Import Button
    - Don't be alarmed, an error message will be displayed.
    - Continue to the next step.
Virtual Machine OVF Failure
- Instructions:
  1. Click the Retry Button
- Note(FYI):
  1. The import will take between 10 and 15 minutes.
Edit Virtual Machine
- Instructions:
  1. Click on Damn Vulnerable WXP-SP2
  2. Click on Edit virtual machine settings
Configure Memory Setting
- Instructions:
  1. Click on Memory
  2. Select 512 MB
- Note(FYI):
  1. Do NOT Click the OK Button, we still have more to configure.
Add Network Adapter
- Instructions:
  1. Click the Add... Button
  2. Click on Network Adapter
  3. Click the Next Button
Add Network Adapter
- Instructions:
  1. Network connection: Click on the Bridged radio button
  2. Device Status: Check Connect at power on
  3. Click the Finish Button
Configure the Network Adapter
- Instructions:
  1. Click on Network Adapter
  2. Selected the Bridged radio button.
  3. Now, you can click the Close button.
- Note(FYI):
  1. If you are not behind your own personal home router or private network, select Host-only.
  2. Note: If you do choose Host-only, you will not be able to connect to the Internet on this Virtual Machine, Install Firefox and Complete this Lesson.
Configure CD/DVD Settings
- Instructions:
  1. Click on CD/DVD(IDE)
  2. Click the Use physical drive radio button
  3. Select Auto detect
  4. Click the OK Button

Section 4: Play Damn Vulnerable WXP-SP2

Start the Damn Vulnerable WXP-SP2
- Instructions:
  1. Click on Damn Vulnerable WXP-SP2
  2. Click on Play virtual machine

Section 5: Make Vulnerable

Open Control Panel
- Instructions:
  1. Click the Start Button
  2. Click on Control Panel
Open Windows Firewall
- Instructions:
  1. Double Click on Windows Firewall
Turn Off Windows Firewall
- Instructions:
  1. Click the Off (not recommended) radio button
- Note(FYI):
  1. Obviously, it is never a good idea to turn off a host firewall. Accordingly, this VM will later be used to illustrate that point.
Open Automatic Updates
- Instructions:
  1. Double Click on Automatic Updates
Turn Automatic Updates Off
- Instructions:
  1. Click the Turn off Automatic Updates radio button
  2. Click the OK button
- Note(FYI):
  1. Obviously, it is never a good idea to turn off Automatic Updates. Accordingly, this VM will later be used to illustrate that point.
Open Internet Options
- Instructions:
  1. Double Click on Internet Options
Default Home Page Configuration
- Instructions:
  1. Click the General Tab
  2. Click the Use Blank Button
Name the server
- Instructions:
  1. Click the Privacy Tab
  2. Select the lowest privacy level
  3. Click the OK Button.
Open Display
- Instructions:
  1. Double click on Display
Configure Desktop Background
- Instructions:
  1. Click on the Desktop Tab
  2. Background: Bliss
  3. Click the Apply Button
Configure Power Options Properties
- Instructions:
  1. Click on the Screen Saver Tab
  2. Click on the Power... Button
  3. Click on the Power Schemes Tab
  4. Power schemes: Home/Office Desk
  5. Click the OK Button (Power Options Properties Screen)
  6. Click the OK Button (Display Properties Screen)
Open System Properties
- Instructions:
  1. Double click on System
Remote Desktop
- Instructions:
  1. Click on the Remote Tab
  2. Check the Allow users to connect remotely to this computer checkbox
Change Computer Name
- Instructions:
  1. Click on the Computer Name Tab
  2. Computer description: Damn Vulnerable WXP-SP2
  3. Click the Change Button
  4. Computer name: WXPSP2
  5. Click the OK Button
  6. Click the OK Button after the restart message appears.

Section 6: Set Weak Password

Open Control Panel
- Instructions:
  1. Click the Start Button
  2. Click on Control Panel
Open User Accounts
- Instructions:
  1. Double Click on User Accounts
Select Account
- Instructions:
  1. Double Click on the IEUser Account
Change my name (Part 1)
- Instructions:
  1. Click Change my name
Change Username (Part 2)
- Instructions:
  1. Replace IEUser with student
  2. Click the Change Name Button
Change Password (Part 1)
- Instructions:
  1. Click on Create a password
Change Password (Part 2)
- Instructions:
  1. Type a new password: abc123
  2. Type the new password again to confirm: abc123
  3. Click the Create Password Button
- Note(FYI):
  1. Obviously, it is never a good idea to use an extremely weak password. Accordingly, this VM will later be used to illustrate that point.
Make Files Private
- Instructions:
  1. Click the No Button
- Note(FYI):
  1. Obviously, it is never a good idea to allow others to view your documents. Accordingly, this VM will later be used to illustrate that point.

Section 7: Enable Administrator Account

Open Regedit
- Instructions:
  1. Click the Start Button
  2. Click Run
  3. Type regedit
  4. Click the OK Button
Registry Editor
- Instructions:
  1. Edit --> Find...
  2. Find what: UserList
  3. Click the Find Next Button
Create Administrator DWORD (Part 1)
- Instructions:
  1. Click on UserList
  2. Edit --> New --> DWORD Value
Create Administrator DWORD (Part 2)
- Instructions:
  1. Type Administrator
Set Administrator DWORD Value
- Instructions:
  1. Right Click on Administrator
  2. Click Modify
  3. Value data: 1
  4. Click the OK Button
Open the Command Prompt
- Instructions:
  1. Click the Start Button
  2. All Programs --> Accessories --> Command Prompt
Set Administrator Password
- Instructions:
  1. net user
  2. net user Administrator abc123
- Note(FYI):
  1. Show All Users
  2. Obviously, it is never a good idea to use an extremely weak password. Accordingly, this VM will later be used to illustrate that point.

Section 8: Remove All Windows XP Patches

Open Notepad
- Instructions:
  1. Click the Start Button
  2. All Programs --> Accessories --> Notepad
Copy and Paste Patch Removal Script
- Instructions:
  1. Copy the below text.
    - @ECHO OFF
      Setlocal EnableDelayedExpansion
      for /f "tokens=*" %%G in ('dir /b /s /a:d "C:\WINDOWS\$NTUninstallKB*"') do (
      
      set MYVAR=%%G\spuninst\spuninst.exe
      echo "!MYVAR! /quiet /norestart"
      !MYVAR! /quiet /norestart
      )
  2. Paste Text in the Notepad Screen: Edit --> Paste
Save patch_remover.bat file
- Instructions:
  1. File --> Save As...
  2. Save in: Local Disk (C:)
  3. File name: patch_remover.bat
  4. Save as type: All Files
  5. Click the Save Button
Open the Command Prompt
- Instructions:
  1. Click the Start Button
  2. All Programs --> Accessories --> Command Prompt
Remove Patches
- Instructions:
  1. cd ../../
  2. wmic qfe get /format:csv > before_removal.csv
  3. dir
  4. patch_remover.bat
- Note(FYI):
  1. Obviously, it is never a good idea to remove all the patches. Accordingly, this VM will later be used to illustrate various issues, such as MS08-067 and may others.
  2. The patch_remover.bat script will take around 5 minutes to execute.
Reboot Machine
- Instructions:
  1. shutdown -r -t 3
Login to Windows
- Instructions:
  1. Click on Administrator
  2. Type your password: abc123
EULA Agreement
- Instructions:
  1. Click the Agree button
Open Control Panel
- Instructions:
  1. Click the Start Button
  2. Click on Control Panel
Change Desktop
- Instructions:
  1. Click the Display Icon
  2. Click on the Desktop Tab
  3. Click on the Bliss Background
  4. Click the OK Button
Open the Command Prompt
- Instructions:
  1. Click the Start Button
  2. All Programs --> Accessories --> Command Prompt
Remove Bginfo Background
- Instructions:
  1. cd C:\Wallpaper
  2. del Bginfo.exe
- Note(FYI):
  - This is not necessary, unless you prefer the default background.
  - Basically, it's up to you.

Section 9: Install Firefox

Open Internet Explorer
- Instructions:
  1. Click the Start Button
  2. All Programs --> Internet Explorer
Firefox Download URL
- Instructions:
  1. Navigate to the following URL
    - http://www.computersecuritystudent.com/WINDOWS/DVW/WXP_IE6/lesson1/Firefox_Setup_52.9.0esr.exe
  2. Press <Enter>
- Note(FYI):
  1. Based on research, Version 18.0.2 is the most stable version of Firefox to Run on Windows XP.
File Download - Security Warning
- Instructions:
  1. Click the Run Button
Internet Explorer - Security Warning
- Instructions:
  1. Click the Run Button
FireFox Setup (Part 1)
- Instructions:
  1. Click the Next Button
FireFox Setup (Part 2)
- Instructions:
  1. Select the Standard Radio Button
  2. Click the Next Button
FireFox Setup (Part 3)
- Instructions:
  1. Check the Use Firefox as my default web browser Checkbox
  2. Click the Install Button
FireFox Setup (Part 4)
- Note(FYI):
  1. This process might take 1 minute
FireFox Setup (Part 5)
- Instructions:
  1. Check the Launch Firefox now Checkbox
  2. Click the Finish Button
FireFox Setup (Part 6)
- Instructions:
  1. Click the Don't import anything Radio Button
  2. Click the Next Button
Firefox Options (Part 1)
- Instructions:
  1. Tools --> Options
Firefox Options (Part 2)
- Instructions:
  1. Click the General Tab
  2. Click the Always ask me where to save files radio button
  3. Click the X to close Options
  4. Click the X to close Firefox

Section 10: Install 7-zip

Open Firefox
- Instructions:
  1. Click the Start Button
  2. All Programs --> Mozilla Firefox
Start 7-Zip Download
- Instructions:
  1. http://www.7-zip.org
  2. Click Download
  3. Click the Save File Button
Save to Destination Folder
- Instructions:
  1. Navigate to Desktop --> My Documents --> Downloads
  2. Click the Save Button
Open Executable File
- Instructions:
  1. Tools --> Download
  2. Double Click on 7z*.msi file
  3. Click the OK Button
Open Executable File
- Instructions:
  1. Click the Run Button
Install 7-Zip
- Instructions:
  1. Click the Install Button
7-Zip Completion
- Instructions:
  1. Click the Finish Button
Start 7-Zip
- Instructions:
  1. Click the Start Button
  2. All Programs --> 7-Zip --> 7-Zip File Manager
7-Zip File Manager
- Note(FYI):
  1. The 7-Zip File Manager should have successfully started.

Section 11: Proof of Lab

Proof of Lab
- Instructions:
  1. cd ../../
  2. wmic qfe get /format:csv > after_removal.csv
  3. dir *removal.csv
  4. date /
  5. echo "Your Name"
    - Put in your actual name in place of "Your Name"
    - e.g., echo "John Gray"
- Proof of Lab Instructions
  1. Press the <Ctrl> and <Alt> key at the same time.
  2. Press the <PrtScn> key.
  3. Paste into a word document
  4. Upload to Moodle