Hi Guys
Found this the other day while browsing...Don't remember correctly where I got it.....Check out...I don't know whether it works on XP or not...I'll try it out.
Printable View
Hi Guys
Found this the other day while browsing...Don't remember correctly where I got it.....Check out...I don't know whether it works on XP or not...I'll try it out.
This is a security site. If you want to talk about cracking then you should join a board where that type of stuff is welcome. And besides.... this "EXPLOIT" doesn't involve much thinking.
This is the truth, take to heart what is being told to you here. Out of kindness and the attempt to educate people, no one has negged you for this post so far.Quote:
Originally posted here by |The|Specialist
This is a security site. If you want to talk about cracking then you should join a board where that type of stuff is welcome. And besides.... this "EXPLOIT" doesn't involve much thinking.
I might recommend reading The Ultimate Newbie FAQ for some good do's and don'ts. It will make your experience at AO better and more enjoyable.
Ok buddy, accepted that I posted it by mistake...but don't you think you are forgetting something....the spirit of AO,Quote:
Originally posted here by |The|Specialist
This is a security site. If you want to talk about cracking then you should join a board where that type of stuff is welcome. And besides.... this "EXPLOIT" doesn't involve much thinking.
HACKERS KNOW THE WEAKNESS IN YOUR SYSTEM.SHOULDN'T YOU?
I only posted it with a hope that someone may also post on how to avoid it working......
****************
So you got administrator privileges on a NT box and now want to take over the
entire Network...
****************
and you think people whos job it is to protect networks appreciate this...really BUDDY, this IS a security site. we've given you ever opportunity, now you want to play word games. do you wanna be a part of this or don't you?
What is it with people and taking this "hackers know the weaknesses in your system. Shouldnt you?" out of context
is it not just a rhetorical question !
and please people read the NEWBIE FAQ and stop asking these types of question ! there are ways of reaching the result by phrasing your questions in the correct manner !
Ok he screwed up but this is so well known I hardly think it did any harm. I have nothing against people posting about exploits but I would like to suggest a few tips.Quote:
This is a security site. If you want to talk about cracking then you should join a board where that type of stuff is welcome. And besides.... this "EXPLOIT" doesn't involve much thinking.
1. Write your own stuff. NO CUT AND PASTE.
2. Write from the perspective of preventing this kind of exploit. If there’s no fix don't spread the word.
3. Since you writing from a preventative perspective don't include details about how the exploit works unless it’s necessary.
lol ok ok before we start flaming at the person.. lets consider some stuff ok..
ok first.. i did write a smiliar tutorial for this topic..
second... i tried it and as far as u can get, all you get are local passwords and logins.
third... only a half-wit administrator would use the local login and password as his official login and password.
so u do get login and passwords but it is highly unlikely u will get to take over the network.
improbable? yes.. impossible? no.
anyway, u would have to boot from floppy to get hold of the SAM file.. which would take about 5-10 minutes (depending on the box) coz NT uses 3 floppies as a boot disk.
that 5-10 minutes would buy the administrator enough time to find out whats goin on.
OK soninc i get your point but you could boot to a dos disk and use ntfsdos to get the sam file ! you dont have to use the nt boot floppies !
lol u do have a point there geepod and u are right, but same thing happens, all u get are local logins and passwords and it will still give the admin a good 5-10 mins to find out whats goin on, (considering the box just "mysteriously" droped out from the network for more than 5 mins).
i agree i just wanted to point out the use of a dfos disk that was all ! :D
live well and love life
OK GUYS,FIRST OF ALL...REALLY SORRY FOR SUCH A FOOLISH POST.....I THANK ALL OF YOU FOR YOUR SINCERE ADVISES AND I PROMISE I'LL NEVER POST SUCH THINGS. SINCE THE EXPLOIT MAY SPREAD...LOCK THE THREAD....ONCE AGAIN...THANKS TO ALL YOU EXPERTS OUT THERE FOR HELPING OUT A NEWBIE.
nah, its ok Indra. I made a tutorial quite simmilar to your post. and no one really complained back then.. heheeh that was a loooonngg time ago too.. a year ago to be exact. anyway, this xpolit is no longer working since the SAM encryption is always updated by microsoft during security breaches. but yeah, i do understand u are very curious and also a newbie in the Computer Security comminity. just keep up the good work.
Hi,
Ok I'm new ... and I don't wanna step on no toes ...but
You seem to forget that there's also something called linux (I'm sure you don't ;) )
You just need 1 bootdisk with a small image from a special bootdisk borrowed from linux and about 3 minutes to boot and change the administrator (or any other password in the sam file)
...(this is after a littlebit of training offcourse)...
I'm not gonna tell you offcourse what's it called or where to get it ...that would be dumb :D
Anyway,
Thought I'd say this ... no harm intented;
Gr33tz
Cemetric
Thanx Mr.s0nIc.....though I was lost :)Quote:
Originally posted here by s0nIc
nah, its ok Indra. I made a tutorial quite simmilar to your post. and no one really complained back then.. heheeh that was a loooonngg time ago too.. a year ago to be exact. anyway, this xpolit is no longer working since the SAM encryption is always updated by microsoft during security breaches. but yeah, i do understand u are very curious and also a newbie in the Computer Security comminity. just keep up the good work.
hmm im trying to make sense with your post Cemetric.. but the thing is.. as far as i know, Linux's file system is very different from MS Windows and an image would have to be decompressed by something before u can use it.. and u dont edit the SAM file.. u simply decrypt it. well u can edit the SAM file but i dont see a reason how it would help u take over a network. Care to explain your post?Quote:
Hi,
Ok I'm new ... and I don't wanna step on no toes ...but
You seem to forget that there's also something called linux (I'm sure you don't )
You just need 1 bootdisk with a small image from a special bootdisk borrowed from linux and about 3 minutes to boot and change the administrator (or any other password in the sam file)
...(this is after a littlebit of training offcourse)...
I'm not gonna tell you offcourse what's it called or where to get it ...that would be dumb
Anyway,
Thought I'd say this ... no harm intented;
Gr33tz
Cemetric
i mean.. NT uses NTFS... Linux on the other hand is a different thing.. so i really dont see your point.
Hi,
Yeah sure I'd like to explain ...I know it sounded a bit strange (my explenation) but I was afraid to give to much information...
I'll try to be more clear...here it goes
At my job we were looking for a way to change administrator passwords on NT or windows 2000 systems because there were a lot of people who lost there administrator pw (go figure , yes I love my job :D ) ... Now you think "why would we even give these people a NT system or even win2000" ... You've got me...
Anyway to get back on track:
This disk I "found" is based on linux os (because it was free :D )
Then the person who made it put some program on it who (as you said) decrypts the sam (fast) and lets you change the pw then writes it back to the disk ( as I didn't make this disk myself I cannot tell you completely what's it all about and I didn't have the time yet to figure it all out)...also possible with this disk is to access the registry and change things ...very helpfull with systems that don't start up anymore... though this disk is not ment to be a hacking tool but a tool to help administrators I'm not telling here were to find it :rolleyes: .
I have to cut short now cuzz I got to go and help out someone...if you need more information I'll try to be more clear at a later time...when I get more time to get into detail...
Gr33tz,
Cemetric.
oooh i see. never heard of that proggy but it does sound handy incase of emergencies. thanks for explainin it.
Surely if you are have administrator privileges you already own the network???Quote:
So you got administrator privileges on a NT box and now want to take over the
entire Network
lol thats what i was trying to point out.. just coz u get the local password and login for the admin it doesnt mean you OWN or can OWN the network.Quote:
So you got administrator privileges on a NT box and now want to take over the
entire Network
local passwords and logins are usually the default passwords and logins.