Scribd
Upload
56 views

Method 1: Ads by Google

This document provides 5 methods for gaining unauthorized access to an administrator account on a computer system. The methods include social engineering techniques to trick others into providing their passwords, using password cracking software to obtain hashed passwords and crack them, and directly adding a new administrator account. However, the summary cautions that performing any of these methods without permission would be illegal and unethical.

Uploaded by

Alan Qian
Copyright
© Attribution Non-Commercial (BY-NC)
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
56 views

Method 1: Ads by Google

This document provides 5 methods for gaining unauthorized access to an administrator account on a computer system. The methods include social engineering techniques to trick others into providing their passwords, using password cracking software to obtain hashed passwords and crack them, and directly adding a new administrator account. However, the summary cautions that performing any of these methods without permission would be illegal and unethical.

Uploaded by

Alan Qian
Copyright
© Attribution Non-Commercial (BY-NC)
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 6

Method 1

1. 1

The Trophy. The goal here is that it doesn't work to gain access to an administrator account. Doing anything malicious or damaging is illegal and unethical, so please don't! The ethical thing to do would be to find a way into the system through cunning and intelligence, and only make it obvious that the system has been compromised. If you can access cmd.exe, then change the password of an Admin, and change their personal settings, and be awesome to change the wallpaper to something humorous (if you can't, open Notepad and type in the following to get a something like a copy of it:

@echo off cmd echo on

or type in "start command.com" Save as a batch file and change "Save File as Type" to all files; do not save as txt. Ads by Google

Password Recovery - $9.95


Find your old password instantly with Password Recovery. Save $9.95. www.prosoft3d.com/passwordrecovery/

2. 2

Scope out the battlefield. See if the command prompt or the registry is enabled on student accounts. With these enabled, you'll have quite a bit of power.

3. 3

Procure an administrator password. It depends on who you are dealing with, as does the last instruction: if they're intelligent, you'll never get near one, if they are not so sharp all you have to do is wait, or type in cmd (net users administrator *)

4. 4

Practice reading people's keystrokes with a friend, regularly have "problems" with your account during class requiring the teacher to log in, etc. etc. If an administrator or teacher leaves themselves logged in, see what you can do while they're gone. If it's an admin, find the remote desktop connection to the server and copy it to a place where you can access it on your normal account. This is a file, hopefully with the Admin's password saved on it, that will connect to the server, allowing you unfettered access to the network. Again, tweak a few things, etc., don't destroy anything.

5. 5

Social Engineering is the single best way to access a system, or so say many. It often requires no techy knowledge to instigate, but the more you have, the better. For example, leave a USB stick beside the teacher's computer in the computer-room/library/classroom, with an autoexec file that compromises the account in some way, similarly you can doctor a USB mouse to contain a USB drive with a similar autoexec file. Write a program that looks like the login screen, or some login screen that your Admin might use, and ask him to enter their password. The possibilities are endless.

Social Engineering can be really handy, the more you know about someone, the better it is. Just get to know every little detail about them, personal details (telephone number/email-address etc), hobbies, likes/dislikes; just everything! And you will be able to guess the password eventually, or get the person to say theirs because they trust you enough;bingo!

Method 2

1. 1

If you want to crack the Administrator account using software, follow these steps. It might be easy, but it isn't fun.

2. 2

Download pwdump to the computer that you are using. If the site is blocked then you should download it to a thumb drive and put it in the computer.

3. 3

Right click in a any folder and then New>Text Document.

4. 4

Open it and type "command.com"

5. 5

File>Save As and save is as something.bat.

6. 6

Double click on something.bat.

7. 7

Navigate to the pwdump folder using CD the location of pwdump.

8. 8

Type -o hashes.txt localhost email hashes.txt to yourself or put it on your thumb drive.

9. 9

On your own computer Google-install ophcrack and follow one of the guides.

10.

10

Click load pwdump file and locate the text file to load the hashes.

11.

11

And you cracked the administrator.

Method 3

1. 1

If you are unable to get the admin password with windows ophcrack then try these steps.

2. 2

Download the ophcrack live cd iso.

3. 3

Burn it to a cd.

4. 4

Place it in the computer you want to hack and set up the computer to boot from cd. You can set this up in the bios set up.

5. 5

Boot from cd in graphical mode and ophcrack will attempt to crack the passwords automatically.

6. 6

Note: if the cd is unable to find the password, this is because the admin password contains a special character. This means that to crack it you must first download the rainbow tables named xp special or vista special. The only way I know how to do this is through a torrent. Then you must put them on an eternal hard drive and use them with the live cd.

7. 7

Enjoy the password but DO NOT do anything against your schools wishes with it.

Method 4

1. 1
o
Open Run and enter {cmd} then open it. Once you open it, type {net user /add } and type a username, put a space and type your easy-to-remember password. Enter it into the prompt and log off. Now you can log onto that file without anyone knowing that you are now an administrator.

Have fun with your restrictionless account! It's literally restrictionless because you're an admin!

Method 5

1. 1
o
Another method which does not grant you server access is to make your self an admin. However this may mean you can modify permissions on anything. Please be careful with this - you could stop the computer from accessing the school network, or you could corrupt the operating system.

This works on Macs only. Don't bother trying this on a PC.

2. 2

Boot the computer into single user mode (hold command + s while booting)

3. 3

Let it scroll through the lines of text

4. 4

Type

sbin/mount -wu sbin/SystemStarter OR launchctl load /System/Library/LaunchDaemons/com .apple.DirectoryServices.plist (this is faster) passwd root

5. 5

Now type what ever password you want/ can remember and hit enter.

6. 6

Type

reboot

7. 7
It will auto reboot the system when you get to the login screen use root as the lgoin in and your new password and viola.

You might also like