need to hack a laptop

[degoba]

So in our unix lab at school we have these old ass laptops running windows xp. Our instructor said that he will give a 20 percent increase to the grade of anyone who can get access to the filesystem of the laptop, or get admin access, and boot up windows..

Ok here is the trick though. We need to use a bootable floppy to do this. These computers do not have cdrom drives on them.. any suggestions?

[melodic]

get some password reset disc and your done

[metatron]

Ophcrack 2 http://ophcrack.sourceforge.net/ "The fastest Windows password cracker" it's a live CD and works very well.

[stingwray]

If it has USB see if it will boot of a USB drive, that way option are practically limitless.

Other than that just boot DOS on the laptop, copy the SAM file and then take it home to your computer and brute-force it.

[VaKo]

I'd just nick a few choice items from Hirens Boot CD, there are a few apps that are small enough to fit on a floppy and will waltz all over XP's out-the-box sercuirty.

[Sparda]

Have you tried this? http://www.hak5.org/wiki/index.php?title=A...strator_Control

[CaveMan]

format :D

nahh

USB 2.0 external cd drive

and that will fix the lack of cd

or you can split a bookdisk into a few floppy's

[Guest]

You only need a Linux floppy, vi and the C:WindowsSystem32ConfigSAM file. Overwrite the Adminhash and save everything (Make a backup of the SAM). Then boot Windows and change the password.

[Sparda]

Network boot it? Setting up a 'rouge' DHCP server is not hard.

[cooper]

Yeah, just paint it red. :D

(the word is 'rogue'. Didn't you see X-Men?)

[Sparda]

Yeah, just paint it red. :D

(the word is 'rogue'. Didn't you see X-Men?)

Be quiet, you know what I mean :P

[Technologique]

Sorry, this may seem a dumb, very dumb comment, but if all you need to do is to access the file system, then why don't you try the obvious and see if the lappy'd load a DOS boot disc from the floppy drive? Surely this would get you into DOS, and thus give you access to the filesystem, if not the files themselves...

[Sparda]

degoba is realy holding out on us, he hasn't given us any feed back, wake up degoba!

[degoba]

lol sorry. USB is out as well. The class is a computer forensics class. Using a usb jumpdrive would be almost no different from using a cd. The idea of the exercise is to use a bootable floppy. The point behind it is that yes it is easy to gain access to windows xp with any number of bootable cdroms. It is much harder when you are limited to a few megabytes.

Anyways what the instructor said was get administrator access. Some other people i the class have said that we only need to get access to the filesystem. I am going to try to do both. I should also mention that these laptops are connected to the school network so you login via novell netware. We need to get local admin acccess to the machine. Thanks for the feedback guys. I will be sorting through all of these options and writing some floppies.

[Guest]

*nnnnnnn* so easy, want a laptop, too :(

i had a programm for floppy whick cracked the admin hash automaticly. There are more of this progys as you think ( for floppy ).

[Sparda]

Do these laptops boot form LAN befor any thing else? Can you access the BIOS to tell them to boot from LAN?

[degoba]

The bios is not passswork protected. So yes i assume so.

[Duelus]

could you do a network boot running nubuntu or auditor and from there crack the pass? you may want to check out irongeek.com

[Sparda]

So, lets go though what you need (prefrably), another computer, prefrably an ultra porable laptop, a switch (battary powered if you can hack it to do that, it only has to be working for a short time, probably an hour at most). Have the laptop pre configured wiht your DHCP server and connected to the switch. Plug the target computer directly into your switch, turn it on, boot from your server... I think you can probably work the rest out, may be.

[VaKo]

What about social enginering? Or some NLP? The forgotten exploits...

[Sparda]

Social enginering usualy works whne the people your are trying to manipulte don't know you are wanting to get hack there computer(s).

[VaKo]

True, but they might let some information you didn't have that would be useful.

[armadaender]

VaKo may be on to something if the situation were somewhat different. With the simplicity and circumstances of this hack, I don't believe there would be anthing more that degoba could get out of the professor.

Also, has anyone considered the fact that because this is a computer forensics class and the EC at stake here is 20%, that obviously there must be something about this these laptops that will create hell for the students in attempting to get in, copy the hash, and decrypt? My only suggestion who be to hack the LAN as booting from linux and trying to copy the has would be quite difficult as you may not have enough space on the disk in the first place.

Here are a few articles that may or may not be of some use. I havn't tried any them step by step though as I'm a college student - and I don't want to risk being expelled - and I had enough fun does this stuff back in high school. And these involve hacking the network if I remember correctly, so I'm not responsible for anything you do. Good luck.

http://www.informationleak.net/school.txt

http://www.totse.com/en/hack/hacking_lans_...hool168941.html

[Technologique]

Torture could work.

Just a thought, though you could probably get all the information you need, with a chair, some rope, an abandoned warehouse, some gasoline, a cut-throat razorblade, a tuxedo, and a radio playing K-billy's Super Sounds of the Seventies.

As I said. Just a thought.

[VaKo]

How does the Novell login change things? Our university uses a similar setup on there libary system, and I always wondered if the XP logon/account wasn't used in the same way as a out-the-box setup.