Setting Backdoor in Windows ,CMD On Logon Screen

www.himstar.info

Let's assume that you have just changed victim's windows password or simply got access to his windows for some time. Can you make some changes in windows so that you could access the windows again even if victim changes the password ? or Can you make any changes in your own windows so that you could access it anytime even if anybody sets/changes password ?

Simply Can we set a backdoor in windows ?

 Yes We Can !

Backdoor actually means maintaining hidden access.

In Previous article i teach you how to change windows password without knowing old one, if you missed to read Click Here !

Okay lets move on.
Now press shift key five times and you must have got a dialog box "sticky keys" on screen.

www.himstar.info

Sticky keys is a feature that makes it easy for users who have physical disabilities to press multiple keys at time. This is the only feature which can be used before logging in at logon screen ( as per my knowledge). I repeat this feature can be used at logon screen by pressing shift key five times.

Whenever we start an application like paint, we are actually running mspaint.exe placed in C:\windows\system32. or command prompt, we are running cmd.exe placed in system32 directory, similarly when we press shift key 5 times or use sticky keys feature, system actually starts the executable file sethc.exe placed in system32 directory.

This means if we rename cmd.exe to sethc.exe and press shift 5 times, system would again start sethc.exe but instead of sticky keys the command prompt will be opened.
But you just cant simply rename it or change system32 files. Follow the tutorial for that.

Setting Backdoor in Windows  Tutorial :

Go to C:\windows\system32
Copy cmd.exe on your desktop and rename it to sethc.exe .
Now copy that file and paste again in system32 directory.

For Windows XP Users :

Hopefully existing original sethc.exe must have been replaced and your job is done. Now press shift five times and you would see command prompt on screen.You can access command prompt at windows logon screen and change/clear the password easily using "net user" command as i teach you in previous tutorial.

Note: You can also do these changes while using windows Guest Account. But when you would access command prompt at logon screen, you can change/clear password even of administrator's account. This is exactly how, we can get access into administrator's account through guest account.

Setting Backdoor Permissions For Windows 7 Users :

You must have got a pop up box saying "Access Denied".

www.himstar.info

Actually you can not change system32 directory files until you do not have the permissions. You can not have the permissions until you do not have the ownership. So lets take ownership, change permissions, just follow below steps.

1. Right click on sethc.exe and run as administrator. Again right click on sethc.exe, open properties.
Click on Advanced tab, then on owner and click edit, change the owner from "trusted installer" to "administrator" and click apply.
See below images for clear view :

www.himstar.info
www.himstar.info

2. Then click on 'Edit' in security tab to edit permissions. Click on 'Administrators' , give it full control
and apply changes.

www.himstar.info

( It's easy ...if you faced problem make patience and follow step with cool mind )Okay its done now.

Now try replacing the orignal sethc.exe with our sethc.exe (got by renaming cmd.exe).
Press shift key five times and hopefully you would get command prompt on the screen instead of sticky keys.

Enjoy Command prompt at logon screen.

So do not forget to set this backdoor whenever you would get friend's laptop for a few minutes.

Himanshu is a young engineer living in India. Currently working at Cognizant as a Senior Engineer. He is an ethical hacker & blogger too, doing lots of crazy stuff... If you seem interesting, go through his portfolio: www.himstar.info : "Open Source. Millions of open minds can't be wrong!

2 comments: On Setting Backdoor in Windows ,CMD On Logon Screen

  • All maplestory secrets revealed !!! Including exploits

  • Helpo there! This is my first visit to your blog! We are a team of volunteers andd starting a new initiative in a commnunity in the sae niche.
    Your blog provided us valuable information to work on. You
    have done a extraordinary job!

Leave a reply:

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Site Footer

Sliding Sidebar

We are India’s largest Startup Community


We are team of ' Delhi Startups ' , most active startup community with strict spam policy.
We are making !deas happen..for future, business and jobs without charging anything, with connecting entrepreneurs.. It's a reason to trust on us.
Come and join or subscribe, we will defiantly give a reason to like us.

Our Facebook Page