Damn Vulnerable Windows XP: Lesson 1: How to create a Damn Vulnerable Windows XP Machine
ComputerSecurityStudent (CSS) [Login] [Join Now]




|WINDOWS >> Damn Vulnerable Windows >> WXP-SP2 IE6 >> Current Page |Views: 10655

(Damn Vulnerable Windows XP: Lesson 1)

{ How to create a Damn Vulnerable Windows XP Machine }


Section 0. Background Information
  1. What is Damn Vulnerable Windows XP?
    • This is a Windows XP Virtual Machine that provides a practice environment to conduct ethical penetration testing, vulnerability assessment, exploitation and forensics investigation.
    • The Microsoft Software License Terms for the IE VMs are included in the release notes.
    • By downloading and using this software, you agree to these license terms.

  2. Lab Notes
    • In this lab we will do the following:
      1. Download & Install 7-Zip
      2. Download a Windows VM (IE6)
      3. Disable Standard Security
      4. Create Weak Passwords
      5. Remove all XP3 and XP4 Patches
     
  3. Legal Disclaimer
    • As a condition of your use of this Web site, you warrant to computersecuritystudent.com that you will not use this Web site for any purpose that is unlawful or that is prohibited by these terms, conditions, and notices.
    • In accordance with UCC § 2-316, this product is provided with "no warranties, either express or implied." The information contained is provided "as-is", with "no guarantee of merchantability."
    • In addition, this is a teaching website that does not condone malicious behavior of any kind.
    • You are on notice, that continuing and/or using this lab outside your "own" test environment is considered malicious and is against the law.
    • © 2015 No content replication of any kind is allowed without express written permission.

 

Section 1: Download 7-Zip (Pre-Requisite)
  1. Open a Command Prompt (Host Computer)
    • Instructions:
      1. Click the Start Button
      2. Type cmd in the search box
      3. Click the cmd icon

     

  2. Determine System Type
    • Instructions:
      1. systeminfo | find "System Type:"
    • Note(FYI):
      1. x64 - 64 Bit Operating System
      2. x86 - 32 Bit Operating System

     

  3. Open Firefox
    • Instructions:
      1. Click the Start Button
      2. Type firefox in the search box
      3. Click the firefox icon

     

  4. Save Files Configuration Location
    • Instructions:
      1. Tools --> Options
      2. Click the General Tab
      3. Click the radio button Always ask me where to save files

     

  5. Start 7-Zip Download
    • Instructions:
      1. http://www.7-zip.org
      2. Click Download
      3. Click the Save File Button
    • Note(FYI):
      1. Use Section 1, Step 2 to determine if you should download the 32-bit or 64-bit version.

     

  6. Save 7-Zip
    • Instructions:
      1. Navigate to C:\temp
      2. Click the Save Button

     

  7. Open Executable File
    • Instructions:
      1. Tools --> Download
      2. Double Click on 7z*.msi file
      3. Click the OK Button

     

  8. Open Executable File
    • Instructions:
      1. Click the Run Button

     

  9. 7-Zip Setup Wizard
    • Instructions:
      1. Click the Next Button

     

  10. 7-Zip EULA
    • Instructions:
      1. Check I Accept...
      2. Click the Next Button

     

  11. 7-Zip Custom Setup
    • Instructions:
      1. Click the Next Button

     

  12. 7-Zip Installation
    • Instructions:
      1. Click the Install Button

     

  13. 7-Zip Completion
    • Instructions:
      1. Click the Finish Button

     

Section 2: Download Microsoft XP-IE6 VM
  1. Download Windows XP-IE6
    • Instructions:
      1. Navigate to one of the follow URLs
        • VMware:
          • https://az412801.vo.msecnd.net/vhd/VMBuild_20141027/VMware/IE6/Windows/IE6.XP.For.Windows.VMware.zip
        • Virtual Box:
          • https://az412801.vo.msecnd.net/vhd/VMBuild_20141027/VirtualBox/IE6/Windows/IE6.XP.For.Windows.VirtualBox.zip
        • Parallels:
          • https://az412801.vo.msecnd.net/vhd/VMBuild_20141027/Parallels/IE6/Mac/IE6.XP.For.Mac.Parallels.zip
      2. Click the Save File Radio button
      3. Click the OK Button

     

  2. Download Location
    • Instructions:
      1. Navigate to your preferred download directory
        • In my case, E:\VMs\Damn Vulnerable Windows XP
      2. Click the Save Button

     

  3. Go To Downloads Folder (Part 1)
    • Instructions:
      1. Tools --> Downloads

     

  4. Go To Downloads Folder (Part 2)
    • Instructions:
      1. Right Click on IE6.XP.For.Windows.VMware.zip
      2. Open Containing Folder

     

  5. Extract Files
    • Instructions:
      1. Right Click on IE6.XP.For.Windows.VMware.zip
      2. Select 7-Zip
      3. Extract Here

     

  6. Extract Process
    • Note(FYI):
      1. The Extraction Process will take between 2 to 5 minutes.
      2. Continue to Next Step after the extraction completes.

 

Section 3: Create a New Virtual Machine
  1. Open VMware Player on your windows machine.
    • Instructions:
      1. Click the Start Button
      2. Type "vmware player" in the search box
      3. Click on VMware Player

     

  2. Create a New Virtual Machine. (See Below)
    • Instructions:
      1. Click on Open a Virtual Machine

     

  3. Open Virtual Machine
    • Instructions:
      1. Navigate To Extracted Virtual Machine Location
        • In my case, the directory was E:\VMs\Damn Vulnerable Windows XP
      2. Click IE6 - WinXP
      3. Click the Open Button

     

  4. Import Virtual Machine
    • Instructions:
      1. Name:  Damn Vulnerable WXP-SP2
      2. Storage Path: Browse to your desired storage location
        • In my case, the storage directory is E:\VMs\Damn Vulnerable Windows XP
      3. Click the Import Button
        • Don't be alarmed, an error message will be displayed.
        • Continue to the next step.

     

  5. Virtual Machine OVF Failure
    • Instructions:
      1. Click the Retry Button
    • Note(FYI):
      1. The import will take between 10 and 15 minutes.

     

  6. Edit Virtual Machine
    • Instructions:
      1. Click on Damn Vulnerable WXP-SP2
      2. Click on Edit virtual machine settings

     

  7. Configure Memory Setting
    • Instructions:
      1. Click on Memory
      2. Select 512 MB
    • Note(FYI):
      1. Do NOT Click the OK Button, we still have more to configure.

     

  8. Add Network Adapter
    • Instructions:
      1. Click the Add... Button
      2. Click on Network Adapter
      3. Click the Next Button

     

  9. Add Network Adapter
    • Instructions:
      1. Network connection: Click on the Bridged radio button
      2. Device Status: Check Connect at power on
      3. Click the Finish Button

     

  10. Configure the Network Adapter
    • Instructions:
      1. Click on Network Adapter
      2. Selected the Bridged radio button.
      3. Now, you can click the Close button.
    • Note(FYI):
      1. If you are not behind your own personal home router or private network, select Host-only.
      2. Note: If you do choose Host-only, you will not be able to connect to the Internet on this Virtual Machine, Install Firefox and Complete this Lesson.

     

  11. Configure CD/DVD Settings
    • Instructions:
      1. Click on CD/DVD(IDE)
      2. Click the Use physical drive radio button
      3. Select Auto detect
      4. Click the OK Button

     

Section 4: Play Damn Vulnerable WXP-SP2
  1. Start the Damn Vulnerable WXP-SP2
    • Instructions:
      1. Click on Damn Vulnerable WXP-SP2
      2. Click on Play virtual machine

     

Section 5: Make Vulnerable
  1. Open Control Panel
    • Instructions:
      1. Click the Start Button
      2. Click on Control Panel

     

  2. Open Windows Firewall
    • Instructions:
      1. Double Click on Windows Firewall

     

  3. Turn Off Windows Firewall
    • Instructions:
      1. Click the Off (not recommended) radio button
    • Note(FYI):
      1. Obviously, it is never a good idea to turn off a host firewall.  Accordingly, this VM will later be used to illustrate that point.

     

  4. Open Automatic Updates
    • Instructions:
      1. Double Click on Automatic Updates

     

  5. Turn Automatic Updates Off
    • Instructions:
      1. Click the Turn off Automatic Updates radio button
      2. Click the OK button
    • Note(FYI):
      1. Obviously, it is never a good idea to turn off Automatic Updates.  Accordingly, this VM will later be used to illustrate that point.

     

  6. Open Internet Options
    • Instructions:
      1. Double Click on Internet Options

     

  7. Default Home Page Configuration
    • Instructions:
      1. Click the General Tab
      2. Click the Use Blank Button

     

  8. Name the server
    • Instructions:
      1. Click the Privacy Tab
      2. Select the lowest privacy level
      3. Click the OK Button.

     

  9. Open Display
    • Instructions:
      1. Double click on Display

     

  10. Configure Desktop Background
    • Instructions:
      1. Click on the Desktop Tab
      2. Background: Bliss
      3. Click the Apply Button

     

  11. Configure Power Options Properties
    • Instructions:
      1. Click on the Screen Saver Tab
      2. Click on the Power... Button
      3. Click on the Power Schemes Tab
      4. Power schemes: Home/Office Desk
      5. Click the OK Button (Power Options Properties Screen)
      6. Click the OK Button (Display Properties Screen)

     

  12. Open System Properties
    • Instructions:
      1. Double click on System

     

  13. Remote Desktop
    • Instructions:
      1. Click on the Remote Tab
      2. Check the Allow users to connect remotely to this computer checkbox

     

  14. Change Computer Name
    • Instructions:
      1. Click on the Computer Name Tab
      2. Computer description: Damn Vulnerable WXP-SP2
      3. Click the Change Button
      4. Computer name: WXPSP2
      5. Click the OK Button
      6. Click the OK Button after the restart message appears.

 

Section 6: Set Weak Password
  1. Open Control Panel
    • Instructions:
      1. Click the Start Button
      2. Click on Control Panel

     

  2. Open User Accounts
    • Instructions:
      1. Double Click on User Accounts

     

  3. Select Account
    • Instructions:
      1. Double Click on the IEUser Account

     

  4. Change my name (Part 1)
    • Instructions:
      1. Click Change my name

     

  5. Change Username (Part 2)
    • Instructions:
      1. Replace IEUser with student
      2. Click the Change Name Button

     

  6. Change Password (Part 1)
    • Instructions:
      1. Click on Create a password

     

  7. Change Password (Part 2)
    • Instructions:
      1. Type a new password: abc123
      2. Type the new password again to confirm: abc123
      3. Click the Create Password Button
    • Note(FYI):
      1. Obviously, it is never a good idea to use an extremely weak password.  Accordingly, this VM will later be used to illustrate that point.

     

  8. Make Files Private
    • Instructions:
      1. Click the No Button
    • Note(FYI):
      1. Obviously, it is never a good idea to allow others to view your documents.  Accordingly, this VM will later be used to illustrate that point.

 

Section 7: Enable Administrator Account
  1. Open Regedit
    • Instructions:
      1. Click the Start Button
      2. Click Run
      3. Type regedit
      4. Click the OK Button

     

  2. Registry Editor
    • Instructions:
      1. Edit --> Find...
      2. Find what: UserList
      3. Click the Find Next Button

     

  3. Create Administrator DWORD (Part 1)
    • Instructions:
      1. Click on UserList
      2. Edit --> New --> DWORD Value

     

  4. Create Administrator DWORD (Part 2)
    • Instructions:
      1. Type Administrator

     

  5. Set Administrator DWORD Value
    • Instructions:
      1. Right Click on Administrator
      2. Click Modify
      3. Value data: 1
      4. Click the OK Button

     

  6. Open the Command Prompt
    • Instructions:
      1. Click the Start Button
      2. All Programs --> Accessories --> Command Prompt

     

  7. Set Administrator Password
    • Instructions:
      1. net user
      2. net user Administrator abc123
    • Note(FYI):
      1. Show All Users
      2. Obviously, it is never a good idea to use an extremely weak password.  Accordingly, this VM will later be used to illustrate that point.

 

Section 8: Remove All Windows XP Patches
  1. Open Notepad
    • Instructions:
      1. Click the Start Button
      2. All Programs --> Accessories --> Notepad

     

  2. Copy and Paste Patch Removal Script
    • Instructions:
      1. Copy the below text.
        • @ECHO OFF
          Setlocal EnableDelayedExpansion
          for /f "tokens=*" %%G in ('dir /b /s /a:d "C:\WINDOWS\$NTUninstallKB*"') do (

          set MYVAR=%%G\spuninst\spuninst.exe
          echo "!MYVAR! /quiet /norestart"
          !MYVAR! /quiet /norestart
          )
      2. Paste Text in the Notepad Screen: Edit --> Paste

     

  3. Save patch_remover.bat file
    • Instructions:
      1. File --> Save As...
      2. Save in: Local Disk (C:)
      3. File name: patch_remover.bat
      4. Save as type: All Files
      5. Click the Save Button

     

  4. Open the Command Prompt
    • Instructions:
      1. Click the Start Button
      2. All Programs --> Accessories --> Command Prompt

     

  5. Remove Patches
    • Instructions:
      1. cd ../../
      2. wmic qfe get /format:csv > before_removal.csv
      3. dir
      4. patch_remover.bat
    • Note(FYI):
      1. Obviously, it is never a good idea to remove all the patches.  Accordingly, this VM will later be used to illustrate various issues, such as MS08-067 and may others.
      2. The patch_remover.bat script will take around 5 minutes to execute.

     

  6. Reboot Machine
    • Instructions:
      1. shutdown -r -t 3

     

  7. Login to Windows
    • Instructions:
      1. Click on Administrator
      2. Type your password: abc123

     

  8. EULA Agreement
    • Instructions:
      1. Click the Agree button

     

  9. Open Control Panel
    • Instructions:
      1. Click the Start Button
      2. Click on Control Panel

     

  10. Change Desktop
    • Instructions:
      1. Click the Display Icon
      2. Click on the Desktop Tab
      3. Click on the Bliss Background
      4. Click the OK Button

     

  11. Open the Command Prompt
    • Instructions:
      1. Click the Start Button
      2. All Programs --> Accessories --> Command Prompt

     

  12. Remove Bginfo Background
    • Instructions:
      1. cd C:\Wallpaper
      2. del Bginfo.exe
    • Note(FYI):
      • This is not necessary, unless you prefer the default background.
      • Basically, it's up to you.

 

Section 9: Install Firefox
  1. Open Internet Explorer
    • Instructions:
      1. Click the Start Button
      2. All Programs --> Internet Explorer

     

  2. Firefox Download URL
    • Instructions:
      1. Navigate to the following URL
        • https://download.mozilla.org/?product=firefox-stub&os=win&lang=en-US
      2.  Click the OK Button

     

  3. File Download - Security Warning
    • Instructions:
      1. Click the Run Button

     

  4. Internet Explorer - Security Warning
    • Instructions:
      1. Click the Run Button

     

  5. Firefox Setup (Part 1)
    • Instructions:
      1. Click the Install Button

     

  6. Firefox Setup (Part 2)
    • Note(FYI):
      1. The Firefox download will take around 15 minutes.
      2. Once the installation finishes it will automatically open a Firefox browser.

     

  7. Firefox Options (Part 1)
    • Instructions:
      1. Tools --> Options

     

  8. Firefox Options (Part 2)
    • Instructions:
      1. Click the General Tab
      2. Click the Always ask me where to save files radio button
      3. Click the X to close Firefox

 

Section 10: Install 7-zip
  1. Open Firefox
    • Instructions:
      1. Click the Start Button
      2. All Programs --> Mozilla Firefox
     
  2. Start 7-Zip Download
    • Instructions:
      1. http://www.7-zip.org
      2. Click Download
      3. Click the Save File Button

     

  3. Save to Destination Folder
    • Instructions:
      1. Navigate to Desktop --> My Documents --> Downloads
      2. Click the Save Button

     

  4. Open Executable File
    • Instructions:
      1. Tools --> Download
      2. Double Click on 7z*.exe file
      3. Click the OK Button

     

  5. Open Executable File
    • Instructions:
      1. Click the Run Button

     

  6. Install 7-Zip
    • Instructions:
      1. Click the Install Button

     

  7. 7-Zip Completion
    • Instructions:
      1. Click the Finish Button

     

  8. Start 7-Zip
    • Instructions:
      1. Click the Start Button
      2. All Programs --> 7-Zip --> 7-Zip File Manager

     

  9. 7-Zip File Manager
    • Note(FYI):
      1. The 7-Zip File Manager should have successfully started.

 

Section 11: Proof of Lab
  1. Proof of Lab
    • Instructions:
      1. cd ../../
      2. wmic qfe get /format:csv > after_removal.csv
      3. dir *removal.csv
      4. date /t
      5. echo "Your Name"
        • Put in your actual name in place of "Your Name"
        • e.g., echo "John Gray"
    • Proof of Lab Instructions
      1. Press the <Ctrl> and <Alt> key at the same time.
      2. Press the <PrtScn> key.
      3. Paste into a word document
      4. Upload to Moodle


Help ComputerSecurityStudent
pay for continued research,
resources & bandwidth