How to Hack into any Windows Based Operating System Using…Nothing more than an install CD.
Before I get started, I just want to point out the obvious:
- This is not intended to be a tutorial to commit any crime or violate any server other than for the purpose of education and / or ethical hacking WITH written permission to CYA
- This method described below is also not the fastest, or may be even the easiest. Although it’s not difficult at all
- This method does have one advantage over every other methods, which you’ll discover in the article.
- This method also assumes that you are needing physical access to the files on the server or PC rather than the ability to login after being compromised
What you’ll need:
- An original Installation CD
- For Server OS’s an original installation CD of the same version as the target machine.
- For Desktop OS’s an original installation CD of the same version or better of the already installed OS
- Physical Access to the target PC or Server
- Plenty of time at least Install Time + 5% depending on what your mission is
- An Alibi (Just Kidding)
Lets get cracking =):
- Turn the target machine off if not already off
- Restart it and place the installation CD in the CD tray
- F2 or Delete to enter Bios Settings(Hope and Pray the Bios is not Password Protected)
- Change boot sequence to allow the machine to boot from the CD drive
- Save BIOS settings and reboot
- Proceed with normal installation procedure of the chosen OS type
- During installation, you will be asked if you wish to install in addition to, or to repair the existing installation
- Choose to install additional OS.. and you will be request for the name of the target drive and folder name
- Name the new target folder for the installation to temp or temp 2 so that in the primary OS it just appears as a temp folder preventing from being discovered other than at the boot screen menu, which can be fixed by making the delay to 1 second or something to low
- Once installed you will have what we call a parallel install on the target machine
- At this stage you will have access to the physical hard drives and all data contained within
The above method has many uses:
- Data recovery from a drive that does not want to boot
- Fix the main OS and replace missing or corrupt boot files and system files
This method has got me out of a number of sticky situations. The beauty of this method is that the original installation or it’s user and security database are unaltered compared to the other options such as using windows Key reset utilities.
This method like al other methods have their place and best uses and may not server all or specific needs. The point of this method is to leave the original installation of the windows untouched.
If any one knows of where they might have been able to use this method, or have any alternate ways to by pass windows security please comment with reference to the target article.