Winnt Hacking

WINNT Hacking
WHAT SYSTEM ADMINISTRATORS FEAR
(By GENERAL NEWBIE)
SEPTEMBER 12 ,2001
Ok lets start With What inspired me to waist my time to write this
1st All the crappy Documentations that dont make sense!
2nd Cause all the other documents are old as shit and say the same BS!
Table Of Contents
I. Getting Started (Tools)
II. Whats Next
III. NTFSDOS GETTING THE GOODS
IV. TAKING THE SAM FILE!
V. Cracking The SAM FILE
VI. RDISK & Musrmgr
First Let Me Explain NTFSDOS
The Reason why you can just go into MS DOS is because The Partition is Not reada
ble with MSDOS
MS DOS ONLY READS FAT32 AND FAT16 PARTITIONS
MOST ALL WINDOWS NT SYSTEM RUN NTFS BECAUSE ITS MORE STABLE
YOU NEED a NTFSDOS TO READ NTFS PARTITION MAKE SENSE!
I. First Tools You Need
A.) Is A Copy Of NTFSDOS PRO or NTFSDOS
The Newest Edition can be found here
http://www.winternals.com/products/.../ntfsdospro.asp
If the link fails start at the mail site
http://www.winternals.com/
B.) 2nd Tool Needed Is A Boot Up Disk This is easy As Pie
IN Windows 95 Go to Control Panel and then To System it should be on the very ri
ght side
IN WINDOWS 98 I Forget Check the Help Files they will tell ya
IN WINDOWS ME I Forget Check the Help Files they will tell ya
IN WINDOWS NT I Forget Check the Help Files they will tell ya
In Windows XP The New OS that i LOVe Go to My Computer Then Right Click on A:/
Drive Then To Format and then make sure to Say Boot Up Disk
c.) Over All You will Need 3 Floppy Disks 1 Boot up Disk, 1 With NTFSDOS, 1 for
SAVEIng SAM file to
II. Whats Next
A.) What you Will Need To Do Boot Up with your BOOK UP DISK
This Disk Will Take you to the Standard MS-DOS COMMAND SCREEN
B.) From There You will Replace the boot up Disk with the NTSFDOS DISK You Have
created
c.) Now Run the NTSFDOS from a:/
The command should be cd a:\
A:\NTFSPRO.EXE
III. NTFSDOS GETTING THE GOODS
A.)Once NTSFDOS IS RUNNING ACCESS THE HD and go to this DIR
c:/winnt/system32/Config
If your a lamer and dont know how to change Dir in DOS then all ya have to do is

cd winnt
c:/winnt/cd system32
c:/winnt/system32/cd config
B.) Now your in the Dir of What is the passwd DIR
The Passwords FOR NT ARE STORED IN THE FILE CALLED SAM
So if ya wanna the pass for Administration or Teachers account
you will be able to get all of them.
NOTE YOU WILL GET ONLY TEACHERS WHO HAVE LOGGED ONTO THAT COMPUTER!!!!!!!!!!
IV. TAKING THE SAM FILE!
A.) OK WHAT YOU HAVE NOW IS THE SAM FILE IN FRONT OF YOU SO You NEED TO GET IT
B.) GET YOUR OTHER FLOPPY DISK OUT!
c.) COPY THE SAM FILE TO A drive
D.) That would be Command c:/winnt/system32/config copy SAM a:
V. Cracking The SAM FILE
A.) You will Need the best NT CRACKER OUT THERE
www.L0pht.com
B.) Now install is program on your pc and then when the wizard starts you will n
eed to open from disk
C.) Now If ya dont know how to crack this is a good time to learn you will need
to set it to strong!!
Most admin set the passwd with numbers and letters
D.) Basically WE ARE DONE!! YEAH! JUST LET LOPHT WORK ITS MAGIC!
VI. RDISK & Musrmgr
Last thing i wanted to
mention is Windows NT has a way to make a recovery disk
its usually only used for backup copys or system files
IF YOU GET GET ACCESS TO A SYSTEM THAT HAS THE ADMINISTRATOR! LOGGED IN
(only works if they are logged in)
Then you can Do 2 things!!!!!!!!!!!
1st is get a restore disk
go to start---> Run---> rdisk /s
or just do a rdisk
Remember only works with the Administrator ACCESS! LOGGED IN
2nd Thing To Do is this
Creat your Own Username and pass for that pc! hehehe
go to Start---> Run -->Musrmgr
Then You May Add a new account to the PC! hehehe! ENJOY!
Thanks to General Newbie for making this tutorial