Hacking Windows SYSTEM Account

Sunday | Labels: | |

How Many User Accounts Do You say you have??
1?2?
some restricted user accounts, a few administrator accounts and maybe a guest account?

I Bet there is one more!

First, one needs to understand how user accounts are classified. They are categorized on the basis of privileges or powers that user enjoys over the computer.
Lowest in this family is Guest Account. It has the least power (Well, Well.... thats not final! Soon i'll be posting how to use administrator privileges on Guest account, so keep looking!) but for the shake of this article lets going with the Guest account having the Least. Next in family is restricted user or normal user account. above it is Administrator account which has maximum privileges.

But There Is One More!!! That is above all! Yeah, Above administrator! a SUPERUSER! Its SYSTEM account.Which the windows uses for itself. it has no limitations, and complete privilege. It will Never Show up on Logon Prompt.
If we can hack into this account a a number of wonderful things can be done. You can do just ANYTHING In the computer by your will.

This article is all about hacking into the SYSTEM account.

Here is How........




Go to Start->Run, and type cmd to open command prompt

Now we need to see if you have necessary privileges to do so.
Type command
at
If it says " No access" You are out of luck, things r gonna be a little lengthy.
But if it says "no entries in the list", then things are good. go ahead.

Now type command

at HH:MM /interactive "cmd.exe"

Important thing to note here is that HH:MM is the time in 24 hour format a few minutes more than your current time
(for example if your computer clock shows 2:15 PM, write 14:17 in the place of HH:MM)

A new task will be added.
Now WAIT! until the time you specified above comes.And when it does a new command prompt will open up automatically.(notice that this new prompt's name is Svchost.exe not the cmd.exe )

Now you may close the older prompt.Its the Svchost.exe that we need.

Then open the TASK MANAGER by Ctrl+Alt+Del.And go to PROCESS tab and kill the "Explorer.exe"

Your desktop items and taskbar will disappear.


Now in Command Prompt (Svchost.exe) that is already open.type:
explore.exe

You will get your taskbar and desktop back,But it won't be the same as it was earlier.



Now go ahead and check which user account you are in?????
Notice that now Explorer.exe is running under SYSTEM user!!!

YOU ARE IN SYSTEM ACCOUNT!!! with the powers that Windows itself enjoys.






0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)
Not Getting What You Are Looking for?? Try This Google Search To Find Articles From Tech-Hut KnowledgeBase And Whole Internet
 
Glossy Blue by N.Design Studio
Blogger Templates by Blogcrowds