Government Security
Network Security Resources

Jump to content

Photo

Creating Invisible Users

- - - - - windows
  • Please log in to reply
28 replies to this topic

#16 Daxziz

Daxziz

    Private First Class

  • Members
  • 29 posts

Posted 08 November 2003 - 06:42 AM

@ DJVASTVASTY2K - NP;)

To your offtopic question. It sorta depends on what system you are.
The easiest thing would probably be to upload pwdump and extract the info from the SAM. Then uses LC4 to bruteforce the passwords AT YOUR OWN COM.

This will most likely give the accounts you want, of course it does require that your current guest account can upload and execute files.


-Daxziz

#17 Guest_UNDERTAKER_*

Guest_UNDERTAKER_*
  • Guests

Posted 08 November 2003 - 06:52 AM

any1?

#18 Daxziz

Daxziz

    Private First Class

  • Members
  • 29 posts

Posted 08 November 2003 - 07:12 AM

Here ya go, UnderTaker - please be patient.


-Daxziz

Attached Files



#19 tareq

tareq

    Private First Class

  • Members
  • 34 posts

Posted 08 November 2003 - 07:17 AM

great job (batch file) MR. Daxziz

i will try it.

#20 tibbar

tibbar

    First Sergeant

  • Members
  • 1,423 posts

Posted 08 November 2003 - 06:16 PM

one thing you also need to remember, is that windows will automatically create a folder for the new user in document and settings, containing desktop etc.

so this will need to be manually deleted...
If you want to read more about my security research, visit Tibbar.org

#21 flame

flame

    Staff Sergeant

  • Members
  • 272 posts

Posted 09 November 2003 - 08:11 AM

thanks for the tips daxziz ;)
i allways like to learn new bat stuff
that echo into a reg file is cool (how come i didnt think about it, allways going for the hard way) anyway.
me like this phorum!!!

#22 Daxziz

Daxziz

    Private First Class

  • Members
  • 29 posts

Posted 09 November 2003 - 10:18 AM

I've only shown a little of what I think is needed. You should dig into hiding the stuff you do more yourself.

Let me help so much and say: "Policies"


-Daxziz

#23 Guest_UNDERTAKER_*

Guest_UNDERTAKER_*
  • Guests

Posted 09 November 2003 - 12:33 PM

Great job Daxziz... sorry for my short patient...
10x a lot!!!
I also love very much this forum!!!

#24 Guest_NeO``_*

Guest_NeO``_*
  • Guests

Posted 11 November 2003 - 11:31 AM

Very nice post but i think u didn't have to post the bat...thx anyway

#25 Guest_Mr_X_*

Guest_Mr_X_*
  • Guests

Posted 11 November 2003 - 05:49 PM

Here's an exe (I quickly made it myself) that puts an invisible user in administrator group (no matter what's the name of the administrator group). You must be administrator to do that
syntax:
Hideuser.exe username pass
or
Hideuser.exe username
-------> You'll be asked for a pass
or
Hideuser.exe
--------> You'll be asked for an username and a pass

Attached Files



#26 Guest_Mr_X_*

Guest_Mr_X_*
  • Guests

Posted 11 November 2003 - 07:08 PM

I made a little update: if you only type exe name, it asks you if you wish to add a new user.

Attached Files



#27 Daxziz

Daxziz

    Private First Class

  • Members
  • 29 posts

Posted 11 November 2003 - 10:59 PM

@NeO`` - People asked ;)


-Daxziz

#28 Guest_UNDERTAKER_*

Guest_UNDERTAKER_*
  • Guests

Posted 13 November 2003 - 10:06 AM

10x a lot all of you!!!
gr8 job!!!
NeO`` i asked and they answered :D

#29 Guest_DJVASTVASTY2K_*

Guest_DJVASTVASTY2K_*
  • Guests

Posted 22 November 2003 - 07:46 PM

@ DJVASTVASTY2K - NP;)

To your offtopic question. It sorta depends on what system you are.
The easiest thing would probably be to upload pwdump and extract the info from the SAM. Then uses LC4 to bruteforce the passwords AT YOUR OWN COM.

This will most likely give the accounts you want, of course it does require that your current guest account can upload and execute files.


-Daxziz

Hello M8

Sorry 4 The Late Reply CPU Failed Had 2 Buy A New 1

I Had A Feeling It Would Be "pwdump"----->extract from same------->bruteforce LC4.

But I thought maybe there is an easier way like a local loop flaw.

Thanks 4 The Reply's M8 Very Much Appreciated :)

Best Regards

Adam

Vast Gsm Team

Da Sick Crew





Also tagged with one or more of these keywords: windows