What is Digg?Warning: The Content in this Article May be Inaccurate
Readers have reported that this story contains information that may not be accurate.Sponsored by Sony Pictures
Do you believe the 2012 Mayan Prophecy? view!
whowillsurvive2012.com - The Mayan Calendar predicts the end of time: 2012. See the trailer for 2012, opening November 13.
142 Comments
- heavensblade23, on 10/12/2007, -5/+97How to get administrator access on an XP machine:
1. Use a Linux LiveCD to reset the administrator password.
2. Log in.
Is this really worth talking about? If someone managed to crack XP's implementation of file encryption, that I'd be interested in hearing about. This is nothing. - skifreak107, on 10/12/2007, -1/+42Resetting the administrator password also locks you out of any protected files, as well as alerts the administrator that his machine has been compromised. Good job, hacker.
- WarpFox, on 10/12/2007, -5/+38Easy way to hijack _ANY_ machine you have physical access to, regardless of OS:
1) shutdown machine
2) disconnect power
3) put machine in back of escalade
4) do whatever, its yours now
***** your security settings. :) if you need more information than this, it's probable that there's a wikihow on it. - nathanrobinson, on 10/12/2007, -1/+34it only works if you have admin access to begin with. limited account users cannot modify anything in the system32 dir in any NT5 based OS (post 2kSP2).
just try it... you'll be amazed how wrong the OP is.
and about the domain controllers? only those in the admin group can login to a server.... unless the domain admin ate paint chips as a kid.... - dustyshadow, on 10/12/2007, -2/+30Every operating system is vunerable if you have physical access to the machine. This is not just a Windows problem. Give me a Solaris machine and I will have root in 5 minutes, in fact, Sun even publishes how to do it.
- inactive, on 10/12/2007, -0/+27all this can be prevented with proper administration
- redxii, on 10/12/2007, -1/+26Microsoft Windows XP [Version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.
C:Documents and SettingsJo>cd
C:>cdwindowssystem32
C:WINDOWSsystem32>mkdir temphack
Access is denied.
C:WINDOWSsystem32>
Translation: no digg, marked as innacurate. (BTW my account is a limited account + NTFS)
ALSO: Note that the "SYSTEM" account prompt gained by replacing logon.scr may have very few privileges if any!
Also digg removes all slashes... - ScottJG, on 10/12/2007, -4/+28Google Cache:
http://72.14.203.104/search?q=cache:QZbrSWT1jWwJ:www.it.iitb.ac.in/~sudhir/Hacking/Win_XP_Hack.html+&hl=en&gl=us&ct=clnk&cd=1 - AICkieran, on 10/12/2007, -4/+26Because ofcourse the admin won't notice that his ***** password has changed!
- strangewill, on 10/12/2007, -1/+21Once your comprimise a computers physical security (uh... you're near it), you can get into it no problem, omgnewconcept.
Same can be said about Ubuntu, a commonly used Linux system, so secure that supposedly (I've read step by step guides) about doing similar "get in as the admin" things.
Of course I could just take a hammer to your computer, or just steal the harddrive. Who cares about logging in. Destruction is destruction ;) - AssProphet, on 10/12/2007, -2/+20Yeah I have yet to see [digg users have reported that this article is LAME], but honestly, this IS lame. Make it so.
- nightowl313, on 10/12/2007, -7/+22Uh... so what exactly does that make you? =D
- roominator, on 10/12/2007, -5/+19The tubes are filling up everyone, get the liquid plumber.
- julielacombe, on 10/12/2007, -9/+22the logon.scr trick will also work on ANY windows 2000 boxes, including domain controllers. The only problem is that you need to get access with a limited account, which is not always possible. Access to these account could also be gained via Brute Force / Dictionnary attack with software such as Cain&Abel ( http://geeksaresexy.blogspot.com/2005/12/auditing-your-users-passwords-for.html ) and OphCrack ( http://geeksaresexy.blogspot.com/2006/04/cracking-your-windows-sam-database-in.html ). The only problem with these "password auditing" software is that if the password presentation on the targetted machine was stored using NThash, the password will be A LOT more difficult to discover. 'Nuff said!
- inactive, on 10/12/2007, -0/+13This is fine for a home machine, but most networked machines have the local admin account disabled and only use domain accounts. In which case, you'd have to access the domain controller.
- DiggLurker, on 10/12/2007, -0/+12What part of ...
>cacls c:\windows\system32
c:windowssystem32 BUILTINAdministrators:(OI)(CI)F
NT AUTHORITYSYSTEM:(OI)(CI)F
BUILTINAdministrators:F
CREATOR OWNER:(OI)(CI)(IO)F
BUILTINUsers:(OI)(CI)R
...does this guy not understand? - inactive, on 10/12/2007, -0/+11I'm pretty sure you can't create a folder or alter files in C:windowsSystem32 as a limited user. Reported as inaccurate.
- duhblow7, on 10/12/2007, -0/+10You can use the the linux live cd ophcrack and crack the pw. This way the admin won't notice a pw change because it won't change.
- strangewill, on 10/12/2007, -1/+11Such as... don't give users access to edit files where they shouldn't be editing it... duh!
Don't you have to have a power user account (on a domain at least) to edit these files? - Ssullivan, on 10/12/2007, -5/+13Agreed this "guide" is lame. Nothing to see here...
- inactive, on 10/12/2007, -0/+7At my school, it just says "Access to cmd.exe is restricted by your systems administrator".
- UNL1M1T3D, on 10/12/2007, -1/+8"WHAT!!??!! What kind of computer has no password for the Admin. account?"
A lot of computers that I work on don't.
"Windows XP creates a password for the account by default."
No, it doesn't. - UNL1M1T3D, on 10/12/2007, -2/+8A douchebag obviously.
- JonForTheWin, on 10/12/2007, -1/+7"boots the screensaver" ?
The hell . . - EvilDoer, on 10/12/2007, -0/+6Automatic Administrator Login:
Well here's the trick which you can use to prove that Windows XP is not at all secure as multi-user operating system. Hacking the system registry from any account having access to system registry puts you in to the administrator account.
REGEDIT 4
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogon]
"AutoAdminLogon"="1"
------------------------------------------------------------------------------------------------------------------------------
Wrong:
1st: You have to have admins rights to edit the registry
2nd: All this key does is let a user account automatically logon, it does not automatically logon the admin account. Plus for this to work you need to edit the DefaultUsername and DefaultPassword variable for the account you want automatically logon with. - nickerbocker, on 10/12/2007, -3/+9Marked as inaccurate....mainly because "Access Denied." I got as far as the mkdir temphack command and got an access denied on a limited account.
- cubbieco, on 10/12/2007, -0/+6Any company with a hint of security knowledge knows that step 1 to securing your server access is preventing physical access to the server. Otherwise any server on any system can be compromised.
Show me an unpatched remote hack and you'll get my digg.
Lame - nickerbocker, on 10/12/2007, -3/+8Should also point out that all the other "hacks" are not necessary. To remove Windows Media Player you select "Add/Remove Windows Components." To display a "legal notice" you go the Local Security settings in Administrative Tools. All the other "hacks" can be done without accedently ***** up a registry.
- johnvm, on 10/12/2007, -1/+6Want to know a much better way?
http://www.idefense.com/intelligence/vulnerabilities/display.php?id=340
basically if you got mcafee viruscan or itunes or anything they al got a bug when launching services improperly - make a .cmd file named c:program.cmd with the contents:
net user iamcool yepyep /add
net localgroup Administrators iamcool /add
and itll add you as an administrator when the service restarts (just reboot the PC if you want). - ranger45, on 10/12/2007, -2/+7Lets assume you have enough privileges to modify system files, or your sys admin didn't, for whatever reason, lock the BIOS to keep you from booting from a linux CD or USB drive. (There are of course ways to get around a BIOS password, too). Go ahead and hax0r your way through Windows and access what you want, where ever you can on the machine or the network. Even just run your updates for firefox, open office or thunderbird. Install a Bittorrent client.
It's called "computer trespassing" and is a felony in most states, and could be (in extreme cases, or cases of extremely paranoid prosecutors) charged using some of the new anti-terrorism laws.
That can mean Federal "pound-me-in-the-goat-ass" Prison.
It's not your machine if you don't have access, at school, at work, in the library, whatever. It belongs to someone else, and they will want to have your ass fired, expelled, charged. Same as if someone hot-wired your car and drove it into a wall, you would want the punks busted, with the whole shelf of books thrown at them.
So go ahead 1337 h4x0r pwnage d00d woot.
Try and post to Digg how you explained to your cellmate the rapist/murderer how 1337 you be. I'm stoked to read it! - Gryffydd, on 10/12/2007, -1/+6I like this section:
"Create a Shortcut to Lock Your Computer"
Can someone please explain to me how it is faster to hunt for an icon on your desktop and double click it rather than the near-instantaneous CTRL-ALT-DEL, Enter--which works no matter what program you're in or whether you can see your desktop or not?
And that's in addtion to the rest of his stupidity. - cameron074, on 10/12/2007, -2/+7wow, please drop dead at once.
- UNL1M1T3D, on 10/12/2007, -1/+6"WHAT!!??!! What kind of computer has no password for the Admin. account?"
I repair a lot of computers and you would be quite surprised. - IbnDigg, on 10/12/2007, -0/+4double slashes give single slash
\ - neouser99, on 10/12/2007, -0/+4@redxii
only bill gates can have a god account, didn't you know that?!? - SirHaakon, on 10/12/2007, -0/+3"Ever wanted to gain Administrator access, on a XP machine with ease. Assuming you have the brains to use either the Command Prompt, or the registry."
If you're going to insult people's brains, you might want to start by looking at your own grammar first. Neither of your commas are appropriate and you're missing a question mark at the end of the first sentence. Gotta love the geeks! - jpyun, on 10/12/2007, -0/+3Lame, Inaccurate *****. Most of this stuff doesn't work anymore, and all the dumbasses saying "oh just put in a LiveCD", that only works if you have the option of booting from a CD/USB. Any sysadmin who would make that kind of amateur mistake would probably just give you Admin rights anyways.
- Quakes, on 10/12/2007, -0/+3Not to mention the Winkey-L hotkey.
- IbnDigg, on 10/12/2007, -0/+3yeah, this was actually quite misleading.
and not a very smart name for the tag either - takeda, on 10/12/2007, -0/+3another digg.com bug
and html tags are also stripped instead of being escaped. - UNL1M1T3D, on 10/12/2007, -0/+3A lot can actually be learned by hacking and cracking.
- UNL1M1T3D, on 10/12/2007, -1/+4If it is configured from factory you can just restart it and press CTRL ALT DEL and log in as the adminstrator.
- pcronin, on 10/12/2007, -0/+3If you're not a privileged user, you have to do a priv elevation hack to be able to do the steps in the article.
lame, inaccurate - takeda, on 10/12/2007, -0/+2"FYI, all that talk about dic bashing at the Administrator account doesn't do a lot of good when the account isn't even called Administrator (which again is Admin 101 stuff). Even a Windows XP home computer can have the Administrator account changed to "not_the_admin_acct" and that right there is going to stop any little script kiddie that comes along."
LOL I worked in IT department as an intern. There was four computers for general use (anyone could walk in and use google etc). I once needed to changed something, and I needed admin access. The main IT guy didn't want to gave the password, he preferred to do it himself (those computers weren't important he just wanted to anger me :))
So I managed to get the password hashes, cracked them at home, and when I told him the password he was a little bit surprised. He actually changed the password but now he was confident that I won't be able to do anything anymore :)
It turned out that he changed the admin account name and created a fake one. He only forgot that windows tells even restricted users what accounts are available.
Next day he also learned the new password :) After that he leaved it as it is, in fact he gave me access to other computers :) - takeda, on 10/12/2007, -0/+2Lame :)
Live CD = sam + system files
sam + system + l0pht crack + rainbow tables + 1 minute = admin password :)
(and the advantage is that you don't need to change any password) - Gryffydd, on 10/12/2007, -0/+2I take it you mean any PC that is using FAT for the file system...
- khimming, on 10/12/2007, -0/+2To lock your computer, instead of creating a shortcut as described in the article, you can also simply click window key + L.
- Teridon, on 10/12/2007, -0/+2@IbnDigg:
Sorry, but being a comp sci grad (or an electrical engineer, or a PhD, or a best programmer in the world... ) doesn't automatically make you a good system administrator. - takeda, on 10/12/2007, -0/+2You are wrong, hacking was much easier earlier, just not many people cared about security at that time.
How easy was to hack to windows 98, how easy was to hack to Win 3.11 how easy was to hack into a dos? :)))
(actually it's even hard to call that hacking :) -
Show 51 - 100 of 144 discussions
The Digg Toolbar for Firefox lets you Digg, submit content, and keep track of Digg even when you're not on the Digg site. Download the official 
© Digg Inc. 2009
— Content created and posted by Digg users is