open notepad.exe and type
Windows Registry Editor Version 5.00
[HKEY_CLASSES_ROOT\*\shell\runas]
@="Take Ownership"
"NoWorkingDirectory"=""
[HKEY_CLASSES_ROOT\*\shell\runas\command]
@="cmd.exe /c takeown /f \"%1\" && icacls \"%1\" /grant administrators:F"
"IsolatedCommand"="cmd.exe /c takeown /f \"%1\" && icacls \"%1\" /grant administrators:F"
[HKEY_CLASSES_ROOT\Directory\shell\runas]
@="Take Ownership"
"NoWorkingDirectory"=""
[HKEY_CLASSES_ROOT\Directory\shell\runas\command]
@="cmd.exe /c takeown /f \"%1\" /r /d y && icacls \"%1\" /grant administrators:F /t"
"IsolatedCommand"="cmd.exe /c takeown /f \"%1\" /r /d y && icacls \"%1\" /grant administrators:F /t"
save as *(any name).reg
invoke the file , this will patch windows registry . so their will be "take ownership" option in the context menu (appear on right click).
2. windows 7 system files can be easily modified .
So here is a list of various system files in Windows 7 which can be easily hacked using Resource Hacker:
Approx. all Windows 7 system icons
Login Screen Background -> %windir%\System32\imageres.dll
Login Screen image resources -> %windir%\System32\authui.dll
Startup Sound -> %windir%\System32\imageres.dll
Start ORB images -> %windir%\Explorer.exe -> Bitmap -> 6801 - 681
2 -> %windir%\System32\imageres.dll
Windows Version Image in "About Windows" dialog box -> %windir%\Branding\Basebrd\basebrd.dll
Windows Version Image in bottom of Login Screen -> %windir%\Branding\Basebrd\basebrd.dll
Control Panel Left Sidebar Image -> %windir%\System32\Shell32.dll -> Bitmap -> 632 & 633
Getting Started (aka Welcome Center) Images -> %windir%\System32\oobefldr.dll
Laptop Battery Meter image resources -> %windir%\System32\batmeter.dll
Internet Explorer 8 (IE8) Resources -> %windir%\System32\ieframe.dll
Windows Media Player 12 (WMP12) Resources -> %windir%\System32\wmploc.dll
Above mentioned system files/locations are new to Windows 7 and were not present in earlier Windows versions, like XP. If you want to change look of other menus, dialog boxes like RUN, Progress, System Properties, Start menu, Taskbar Properties, etc, you'll have to edit some other system files which you needed to edit in Windows XP But there is a little difference, now those files don't contain the resources but their .MUI files do.Login Screen Background -> %windir%\System32\imageres.dll
Login Screen image resources -> %windir%\System32\authui.dll
Startup Sound -> %windir%\System32\imageres.dll
Start ORB images -> %windir%\Explorer.exe -> Bitmap -> 6801 - 681
2 -> %windir%\System32\imageres.dll
Windows Version Image in "About Windows" dialog box -> %windir%\Branding\Basebrd\basebrd.dll
Windows Version Image in bottom of Login Screen -> %windir%\Branding\Basebrd\basebrd.dll
Control Panel Left Sidebar Image -> %windir%\System32\Shell32.dll -> Bitmap -> 632 & 633
Getting Started (aka Welcome Center) Images -> %windir%\System32\oobefldr.dll
Laptop Battery Meter image resources -> %windir%\System32\batmeter.dll
Internet Explorer 8 (IE8) Resources -> %windir%\System32\ieframe.dll
Windows Media Player 12 (WMP12) Resources -> %windir%\System32\wmploc.dll
For example in Windows XP, RUN dialog box resources were present in "%windir%\System32\Shell32.dll" file but in Windows 7, the resources are present in "%windir%\System32\en-US\Shell32.dll.mui" file.
All these .MUI files are present in any of following 2 locations:
%windir%\en-US\
%windir%\System32\en-US\
3. windows 7 administrator passwords can be easily hacked
a. by utilities like KONBOOT
Rather than cracking a Windows password, KON-BOOT bypasses it and lets you into the computer without typing one in. Then, when you restart, everything is back to normal.
b. by deleting system files
boot your system with any live CD
Go to location windows->system32->config
. And delete SAM.exe and SAM.log
done.
c. by the command prompt method
be a Linux user , enjoy the security
n the Command Prompt you can monitor all the user of the computer by typing some commands.
1: Press Win Key+R and type cmd in the Run command box and hit enter to open command prompt. And then type net user in the command prompt and hit Enter. The Command Prompt will show you all accounts on the Windows 7 PC.
2: Type net user xyz (xyz is the locked admin account's name and 123 is the new password) and press Enter. Now you have successfully created a new password on the locked admin account.
3: Type shutdown -r -t 00 and press Enter.
Your Windows 7 PC should be rebooted automatically and then you can log in Windows 7 with the new password. It is a simple and easy way to change the password of any users from the Command Prompt.
But the drawback of this technique is that you can’t solve Windows 7 password recovery issues if you do not have the Administrator Privilege. So it is quite hard to change the Windows password of the users without logging in as the administrator.
there are a lot more ways to loot your data in windows. windows is not secure for multiple users , they are only for home computing or personal use.
so BE A LINUX USER and ENJOY THE SECURITY,ENJOY THE FREEDOM
No comments:
Post a Comment