Ambush! - The Online Geek Community
Computer Related => Security => Topic started by: Boomslang on October 10, 2006, 09:42:30 AM
-
How about this for lack of os security
http://home.eunet.no/~pnordahl/ntpasswd/bootdisk.html
This one is free I found one program they wanted $200
Yes it does work I used it on a server I got for free to get into the system :jawdrop:
[Edited on 10-10-2006 by Boomslang]
-
Why is that an OS vulnerablility? You are not booting the OS, you are booting from a seperate disk. That would be a physical plant security issue. You can do the same thing with *nix or any other OS.
-
You change the passwords with this progam not even the admin could log in
[Edited on 10-11-2006 by Boomslang]
-
You can boot to safe mode dos shell rename a couple files and restart the computer thereby bypassing any security and then setting whatever password you want on the system.
-
I read where passwords are not kept in files they are encrypted in the registry in Win2000 and XP. But I do see what you are saying.
-
Actually, they are not kept in the Registry, but rather in a separate file of their own. Otherwise you would be able to hack it very easily with just RegEdit or Regedt32.
-
winnt/system32/config file?
-
actually, %SYSTEMROOT%\system32\Config\SAM is the filename.