I am goin to teach you how to gain administrator privelages on any computer you can log into, even with a guest account. You don't need to be Admin!
What you are going to need:
1.) A computer to burn disks
2.) A Windows XP or Vista victim computer with a disk drive.
3.) An account on the victim computer.
4.) Blank disk, preferably cd because of the faster write speeds. I use 700mb disks.
Optional: Flash drive (If you can’t download on the victim’s computer.)
Step 1.) Preparing what is necessary…
A.) Download Hiren’s Boot CD from
http://www.hirensbootcd.org/download/ and extract it.
B.) Download Ophcrack portable from
http://www.mediafire.com/?3xb2umdfjoh and extract it.
C.)Download a free table and extract it to a folder of choice.
http://ophcrack.sourceforge.net/tables.php. The bigger the table, the higher chance it will crack the password.
-If you want to, torrent XP Special table for a better chance to crack an XP password.
http://thepiratebay.org/torrent/4467...Special_Tables
D.) While these are downloading, put your blank disk into your computer’s drive.
E.) When you are done downloading, burn the Hiren’s boot cd .iso file onto the cd disk at 32x speed (4x for dvd disks.) If you don’t know how to burn .iso files go search it up.
Step 2.) Moving the password hashes to your directory
With a guest account, you won’t be able to access the password hashes.
That is why we use Hiren’s Boot CD.
A.) Put the disk into the victim computer’s drive.
B.) Restart the computer and let the disk load.
C.) Once the disk is loaded, use the arrow keys and select the option called “Parted Magic Linux Rescue” or something like that. Let it load up.
D.) Once it is loaded, the option at the very top should say “Start” or something like that. Press enter.
E.) This may take a while, let the Solaris operating system load.
F.) Once it is done loading, look at the desktop and select the “File Manager” icon or something like that.
G.) For Windows XP and Vista, go to C:\Windows\system32. Copy the folder called “config” and paste it into your account’s documents. For example: C:\Documents and Settings\USERNAME\Documents.
H.) Now shut down the computer and remove the disk!
Step 3.) Cracking the Password.
By now, you should have Ophcrack Portable and a Table.
A.) Ophcrack.exe is located in the “win32” folder, win32 folder being the folder you extracted from the mediafire link.
B.)In the top left, click “Load”. Select “Load Encrypted SAM” and select the “config” folder you moved into your documents. The account names should load up.
C.) Press the “Tables” button then click the folder button in the top right. Select the folder where you extracted the table. For example: C:\x\x\MyDocuments\xp_free_small.
D.) Click Crack and wait. You might need some time for it to crack. The password will appear to the right of the account, e.g. under LM PWD or NT PWD.
E.) You should have the password to the account desired by now.
Step 4.) Have fun!
Yeah, you have admin privelages now. Mess the computer up, install games, anything you want, you can probably do by now. So… have fun!
Get into the Administrator account in computers! For Windows XP and Vista.
Re: Get into the Administrator account in computers! For Windows XP and Vista.
Re: Get into the Administrator account in computers! For Windows XP and Vista.
