Hack Windows 7 Password from Guest Account using 2015-1701 Exploit (Easy Way)

From Wikipedia

Privilege escalation is the act of exploiting a bug, design flaw or configuration oversight in an operating system or software application to gain elevated access to resources that are normally protected from an application or user.

The result is that an application with more privileges than intended by the application developer or system administrator can perform unauthorized actions.

Now here type net user command to change the admin password but it will show you the error “Access is denied”

Download CVE 2015-1701 from here and unzip in your Pc. Then go to the compiled folder in CVE Master. Here you will find 2 exe files for 32-bit user and 64-bit user(in my case I’m using 64-bit user).

Now run Taihou64.exe, it will open a command prompt with admin priveleges. Now you can change the password using net user command. Example is given below:

Syntax:

net user (username) *   then press enter

Note: This trick works only on Windows7(all versions) not available for Windows8 and Windows10 yet.

6 ways to Find Connected PC in your Network (Beginner Guide)

Fast Resolver

FastResolver is a small utility that resolves multiple host names into IP addresses and vice versa. You can simply type the list of IP addresses or host name that you want to resolve, or alternatively, you can specify IP addresses range that you want to scan. For local network, FastResolver also allows you to get the MAC address of all IP addresses that you scan. FastResolver is a multithreaded application, so it can resolve dozens of addresses within a few seconds.

Download Fastresolver form here and click fastresolver icon and select the IP range and click on ok.

Advanced IP Scanner

Advanced IP Scanner is a fast, robust and easy-to-use free IP scanner for Windows. In a matter of seconds, this utility finds all the computers on your network and provides easy access to their various resources, whether HTTP, HTTPS, FTP or shared folders. With Advanced IP Scanner, you can wake up and shut down remote groups of Windows machines.

Download advanced IP scanner from here. Click on the icon and enter the IP range. Click on scan.

SoftPerfect Network Scanner

 SoftPerfect Network Scanner is a free multi-threaded IPv4/IPv6 scanner with a modern interface and many advanced features. It is intended for both system administrators and general users interested in computer security. The program pings computers, scans for listening TCP/UDP ports and discovers shared folders, including system and hidden ones.

Download SoftPerfect from here. Open the tool and enter the range to scan then click on start scanning.

Angry IPScanner

 Angry IP scanner is a very fast IP address and port scanner. It can scan IP addresses in any range as well as any their ports. It is cross-platform and lightweight. Not requiring any installations, it can be freely copied and used anywhere.

Download Angry IPScanner from here. Open the tool and enter the range and then click on start.

Netdiscover

Netdiscover is an active/passive address reconnaissance tool, mainly developed for those wireless networks without dhcp server, when you are wardriving. It can be also used on hub/switched networks.

Open Kali Linux terminal and write netdiscover. This will show the IPs of the systems in the network.

Nmap    

The software provides a number of features for probing computer networks, including host discovery and service and operating system detection. These features are extensible by scripts that provide more advanced service detection, vulnerability detection, and other features.

Download Nmap from here. Open the tool and then enter the range. then select the type of scan then click on scan.

Author: Aditya Mohan Mishra is a 10th class student. He likes to discover new facts and tools.

Hack Windows Password in Clear Text using Mimikatz and Windows Credentials Editor

Mimikatz

mimikatz is a tool to check Windows security. It’s now well known to extract plaintexts passwords, hash, PIN code and kerberos tickets from memory. mimikatz can also perform pass-the-hash, pass-the-ticket or build Golden tickets.

First Download mimikatz windows version from here. And right click on it & Run it as Administrator.

It will open mimikatz windows.

Type the following command to check  privilege

privilege::debug

Now type the following command to get users passwords in text mode.

sekurlsa::logonPasswords

Windows Credentials Editor

Windows Credentials Editor (WCE) is a security tool that allows to list Windows logon sessions and add, change, list and delete associated credentials (e.g.: LM/NT hashes, Kerberos tickets and clear text passwords).

First Download WCE from here.

Go to WCE directory & execute the following command as Administrator. And run the following command

 wce.exe -w It will show the password in plaintext.

How to use Your Pen drive as a Password in Windows 7

Insert the Pen drive in Your PC
Now Open the Run Dialog box and Type ‘compmgmt.msc ‘ and click OK button.

Select ‘Disk Management’ in left panel of computer management.

Right click your pen drive and select ‘Change Drive Letter and Paths’

Click the change button and Change Drive Letter Select A and click OK button. Now your pen drive act like a Floppy Disk.

Open Run Dialog box type syskey

Click on Update

Select ‘Store Startup Key on Floppy Disk’ and click OK button.

Finally, when you start your PC you need to insert pendrive. Without Pendrive you will not able to access your computer. So keep this Pendrive as PC password Protected safe

Sommay jain is a budding lawyer. He likes to discover new facts and tools. He has performed the role of a trainee, developer, programmer, cyber law expert. His interests are mainly in IT business, and management.

Related Posts Plugin for WordPress, Blogger...