degoba Posted April 15, 2006 Share Posted April 15, 2006 So in our unix lab at school we have these old ass laptops running windows xp. Our instructor said that he will give a 20 percent increase to the grade of anyone who can get access to the filesystem of the laptop, or get admin access, and boot up windows.. Ok here is the trick though. We need to use a bootable floppy to do this. These computers do not have cdrom drives on them.. any suggestions? Quote Link to comment Share on other sites More sharing options...
melodic Posted April 15, 2006 Share Posted April 15, 2006 get some password reset disc and your done Quote Link to comment Share on other sites More sharing options...
metatron Posted April 15, 2006 Share Posted April 15, 2006 Ophcrack 2 http://ophcrack.sourceforge.net/ "The fastest Windows password cracker" it's a live CD and works very well. Quote Link to comment Share on other sites More sharing options...
stingwray Posted April 15, 2006 Share Posted April 15, 2006 If it has USB see if it will boot of a USB drive, that way option are practically limitless. Other than that just boot DOS on the laptop, copy the SAM file and then take it home to your computer and brute-force it. Quote Link to comment Share on other sites More sharing options...
VaKo Posted April 15, 2006 Share Posted April 15, 2006 I'd just nick a few choice items from Hirens Boot CD, there are a few apps that are small enough to fit on a floppy and will waltz all over XP's out-the-box sercuirty. Quote Link to comment Share on other sites More sharing options...
Sparda Posted April 15, 2006 Share Posted April 15, 2006 Have you tried this? http://www.hak5.org/wiki/index.php?title=A...strator_Control Quote Link to comment Share on other sites More sharing options...
CaveMan Posted April 16, 2006 Share Posted April 16, 2006 format :D nahh USB 2.0 external cd drive and that will fix the lack of cd or you can split a bookdisk into a few floppy's Quote Link to comment Share on other sites More sharing options...
Guest Posted April 16, 2006 Share Posted April 16, 2006 You only need a Linux floppy, vi and the C:WindowsSystem32ConfigSAM file. Overwrite the Adminhash and save everything (Make a backup of the SAM). Then boot Windows and change the password. Quote Link to comment Share on other sites More sharing options...
Sparda Posted April 16, 2006 Share Posted April 16, 2006 Network boot it? Setting up a 'rouge' DHCP server is not hard. Quote Link to comment Share on other sites More sharing options...
cooper Posted April 16, 2006 Share Posted April 16, 2006 Yeah, just paint it red. :D (the word is 'rogue'. Didn't you see X-Men?) Quote Link to comment Share on other sites More sharing options...
Sparda Posted April 16, 2006 Share Posted April 16, 2006 Yeah, just paint it red. :D(the word is 'rogue'. Didn't you see X-Men?) Be quiet, you know what I mean :P Quote Link to comment Share on other sites More sharing options...
Technologique Posted April 16, 2006 Share Posted April 16, 2006 Sorry, this may seem a dumb, very dumb comment, but if all you need to do is to access the file system, then why don't you try the obvious and see if the lappy'd load a DOS boot disc from the floppy drive? Surely this would get you into DOS, and thus give you access to the filesystem, if not the files themselves... Quote Link to comment Share on other sites More sharing options...
Sparda Posted April 16, 2006 Share Posted April 16, 2006 degoba is realy holding out on us, he hasn't given us any feed back, wake up degoba! Quote Link to comment Share on other sites More sharing options...
degoba Posted April 16, 2006 Author Share Posted April 16, 2006 lol sorry. USB is out as well. The class is a computer forensics class. Using a usb jumpdrive would be almost no different from using a cd. The idea of the exercise is to use a bootable floppy. The point behind it is that yes it is easy to gain access to windows xp with any number of bootable cdroms. It is much harder when you are limited to a few megabytes. Anyways what the instructor said was get administrator access. Some other people i the class have said that we only need to get access to the filesystem. I am going to try to do both. I should also mention that these laptops are connected to the school network so you login via novell netware. We need to get local admin acccess to the machine. Thanks for the feedback guys. I will be sorting through all of these options and writing some floppies. Quote Link to comment Share on other sites More sharing options...
Guest Posted April 16, 2006 Share Posted April 16, 2006 *nnnnnnn* so easy, want a laptop, too :( i had a programm for floppy whick cracked the admin hash automaticly. There are more of this progys as you think ( for floppy ). Quote Link to comment Share on other sites More sharing options...
Sparda Posted April 16, 2006 Share Posted April 16, 2006 Do these laptops boot form LAN befor any thing else? Can you access the BIOS to tell them to boot from LAN? Quote Link to comment Share on other sites More sharing options...
degoba Posted April 16, 2006 Author Share Posted April 16, 2006 The bios is not passswork protected. So yes i assume so. Quote Link to comment Share on other sites More sharing options...
Duelus Posted April 16, 2006 Share Posted April 16, 2006 could you do a network boot running nubuntu or auditor and from there crack the pass? you may want to check out irongeek.com Quote Link to comment Share on other sites More sharing options...
Sparda Posted April 16, 2006 Share Posted April 16, 2006 So, lets go though what you need (prefrably), another computer, prefrably an ultra porable laptop, a switch (battary powered if you can hack it to do that, it only has to be working for a short time, probably an hour at most). Have the laptop pre configured wiht your DHCP server and connected to the switch. Plug the target computer directly into your switch, turn it on, boot from your server... I think you can probably work the rest out, may be. Quote Link to comment Share on other sites More sharing options...
VaKo Posted April 16, 2006 Share Posted April 16, 2006 What about social enginering? Or some NLP? The forgotten exploits... Quote Link to comment Share on other sites More sharing options...
Sparda Posted April 16, 2006 Share Posted April 16, 2006 Social enginering usualy works whne the people your are trying to manipulte don't know you are wanting to get hack there computer(s). Quote Link to comment Share on other sites More sharing options...
VaKo Posted April 16, 2006 Share Posted April 16, 2006 True, but they might let some information you didn't have that would be useful. Quote Link to comment Share on other sites More sharing options...
armadaender Posted April 16, 2006 Share Posted April 16, 2006 VaKo may be on to something if the situation were somewhat different. With the simplicity and circumstances of this hack, I don't believe there would be anthing more that degoba could get out of the professor. Also, has anyone considered the fact that because this is a computer forensics class and the EC at stake here is 20%, that obviously there must be something about this these laptops that will create hell for the students in attempting to get in, copy the hash, and decrypt? My only suggestion who be to hack the LAN as booting from linux and trying to copy the has would be quite difficult as you may not have enough space on the disk in the first place. Here are a few articles that may or may not be of some use. I havn't tried any them step by step though as I'm a college student - and I don't want to risk being expelled - and I had enough fun does this stuff back in high school. And these involve hacking the network if I remember correctly, so I'm not responsible for anything you do. Good luck. http://www.informationleak.net/school.txt http://www.totse.com/en/hack/hacking_lans_...hool168941.html Quote Link to comment Share on other sites More sharing options...
Technologique Posted April 16, 2006 Share Posted April 16, 2006 Torture could work. Just a thought, though you could probably get all the information you need, with a chair, some rope, an abandoned warehouse, some gasoline, a cut-throat razorblade, a tuxedo, and a radio playing K-billy's Super Sounds of the Seventies. As I said. Just a thought. Quote Link to comment Share on other sites More sharing options...
VaKo Posted April 16, 2006 Share Posted April 16, 2006 How does the Novell login change things? Our university uses a similar setup on there libary system, and I always wondered if the XP logon/account wasn't used in the same way as a out-the-box setup. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.