Is there any way to find out the password of an account already logged on. A program or something.
Printable View
Is there any way to find out the password of an account already logged on. A program or something.
um, what are you trying to do there buddy?
I am trying to find out the password of a windows XP account that is already logged in. The password is enccrypted i believe.
You have to hijack their session, install a reverse lookup keystroke logger, find the area in which the passwords get loaded into memory, force the machine to dump core in that area, grab the core file before it automatically gets deleted (approx 2 seconds in XP I believe), open the core file in vi (yes, you can get vi for XP), find the users name someplace in that file, delete everything before the users name, count 127 characters after the users name (including spaces), delete everything after that character, save the file as a text file, import it into word, create 2 columns (1 with user name, 1 with everything else), save it as a word template file, then import it into access. If done properly, you wil have a plain text version of the password.
EEH?!Quote:
souleman You have to hijack their session, install a reverse lookup keystroke logger, find the area in which the passwords get loaded into memory, force the machine to dump core in that area, grab the core file before it automatically gets deleted (approx 2 seconds in XP I believe), open the core file in vi (yes, you can get vi for XP), find the users name someplace in that file, delete everything before the users name, count 127 characters after the users name (including spaces), delete everything after that character, save the file as a text file, import it into word, create 2 columns (1 with user name, 1 with everything else), save it as a word template file, then import it into access. If done properly, you wil have a plain text version of the password.
KEEEWL!
well i believe souleman said it all. have fun man.
Soul, precisely! Microsoft office has those devilish formatting problems, where plain text will be pasted in and become horribly misaligned, and where it doesn't let you easily tell it NOT to make that address a blue-and-underlined hyperlink...
Isn't there a drop down menu somewhere
that says "steal user password"?
:cool:
If what soulman says works that's just crazy, insane. Souns kewl, tho.
rcgreen
""Isn't there a drop down menu somewhere
that says "steal user password"? ""
I was trying the ol
Password = mine trick
but it would not work for some reason so i had to get funky...
hehe
(reminds me)
-goes to post about sniffers and such-
hmm souleman made some sense there....
though you could always do a sweep on the cache registry to double check...
but then you have do do everything really quick.. before the memory gets overwritten..
my suggeston is.. try to do mimimum tasks so u wont be using the whole cache and do it fast.
If it was Win2K i could have showed u how to pull out login names and passwords in 60 seconds.
Actually it's a right click, you'll see it in the drop down menu. :pQuote:
Originally posted here by rcgreen
Isn't there a drop down menu somewhere
that says "steal user password"?
:cool:
I had a program act like a scene out of a movie the other day, fresh install of some crappy tax software and you had to register to use it. Problem was it wouldn't accept the reg code. In a moment of frusteration I hit escape and got past the little road block and my client was inputting taxes happily in a matter of minutes. gah...
LOL@TechieChick, its none of those.... Its an upgrade to Windows, HOTFIX Q6662000... It puts a convinient button on your desktop, that when pressed crashed windows and sends your password to be put on the Microsoft.Com Server, it works so you dont have to :D
good call souleman, and do you really want to be known as a script kiddie? Try to do things your way, you'll have a lot of pride! And you won't get flamed! If you didn't already realize that souleman did that.
Souleman, I forgot to mention, you want to make sure that Access is running in protected mode, because in real-mode an off-by-one error causes the output to first go through the crshcmp library. For most Microsoft programs, that would be the norm, but the way Access handles inodes makes it garble the output.
does anybody know where cai get a reverse lookup keystroke logger?
have you tried the ever so l33t Google?
No, where should I download the Google?
Terr> Good point. I forgot that he probably isn't still running Access 97 like I am. Never felt the need to upgrade. 97 doesn't have to be in protected mode, but there is some wierd crap that I had to do with the way its table lookup function works when you do cross table lookups using an ODBC driver for a Java bassed DBMS. I can't remember exactly what it was, but I know that it was on a website somewhere. You could find it by searching google.
g00rkha> Search www.google.com
just pull the sams database and crack it, 2k/xp are so easy it ain't funny, or just run a tcpdump type application and pull it off the network.
~deprave~
Glasuan, I would go to the sys admin and ask them to give the password to me. The actual owner of that profile might also want to tell their password to you themself, you never know.
As to Terr's message, I believe in Access 2000 that bug was fixed. At least some service pack did the trick - too bad there's none for WinXP, yet.
And souleman, you can do that more easily by after saving it into text file in vi, open it into hex editor and check the hexes between #FF00CC:A3A0FF and #FF00CD:A3B0FF. Or this might work only in Windowses based on 9x -technology... Yes... Sorry.
ZeroOne> Thanks, I gave that a try. It works great on Win 2k Server, but not on Win 2k pro. Not sure why though. I haven't gotten a chance to try it on the XP machine, because I am still trying to get the program right so it only adds 3.5 scoops of coffee into my machine, not 4. Damn coffee has been to strong for the last 2 weeks when I get here, and I am getting really pissed off at the bot. It keeps giving me a floating point error. I might have to go back to running it on linux. Then again, thats a programming question, so.....sorry.
OK, S0NiC, i have W2000Pro(w/SvcPack-2) ready to load on an old machine before I load it onto wife's desktop (sure, I'm chicken, wanna know any idiosyncracies before I disturb her desktop...) Anyway, if you'd share your secret I'd appreciate it so I could test it. Or, alternately, how do you keep someone from harvesting the login names and pwds in W2000Pro?Quote:
Originally posted here by s0nIc
hmm souleman made some sense there....
If it was Win2K i could have showed u how to pull out login names and passwords in 60 seconds.
ON ANOTHER NOTE (please 'scuse the shout) I have dozens of programs and OS's on my shelf, every one of which came in a nice colorful box, fairly decent manual, lots of advertising and other mostly untinteresting stuff, and "lastly but not leastly", a hard card to send in and register your life history with the software company if you don't want to do it online. Today I received an OS (W2000PRo w/Svce Pack2) that had been on order for a couple weeks with my ISP, I was in a hurry so didn't really look at it until an hour ago. It's sealed in what appears to be a factory plastic baggie-thing, has all the proper holograph validation on the disks, a sticker to put on the outside of the PC... but says "for distribution only with a new pc", and another note saying "don't call us for problems, call somebody else" (or something like that). Well, I've always been careful to patronize legit sources for software and get the proper licenses, etc... sure, I'm square, but then that's how most of us old guys grew up... and I'm sitting here wondering about this thing, whether it's a full OS, whether I should have tried harder to find it downtown, or whether there's really no big difference, just didn't get a manual and colorful box??? About all I've ever worried about before was making sure the product was packaged and labeled legit, so the people who sat bleary-eyed late into the night, drinking gallons of bad coffee just to put out a product, could get their payday and keep on making more neat things for us to spend our money on. Probably shouldn't bother you with this, but I never saw this label before so was wondering about it. Oh, I've also bought harddrives, floppy drives, ram, processors, power supplies, RWRom, CDRom, wiring etc etc from this same ISP, so maybe if you put it all together he figured I was building a new desktop. Maybe that's it. But I still wonder what the difference is between this plastic package and the boxed version, if there is a boxed version.... :confused:
Arrrrgh, why can't I do any of this stuff, I must be l4m3, u guys r so kewl, i keep tryin all the stuff you say, but. . . . uh huh, heh heh. . .
Key logger is good at your case
The Old Man
Fookin hell man you blew my head off with that post, just whack it in a test that puppy....*but thats my arrogant side speaking* ring em and nag em, ask em again, be sure....then try....
i think thats what ya meant......
if its no go have you got just the one box ?
I only had 2000pro for a few weeks so i cant help ya...soz.....i'l ask a mate eh....
Good work soul, didn't know that myself.