Electronic Books

Brute Force
325
Lab 56: Overwrite Administrator Password
Change the Administrator Password: CHNTPW
Prerequisites: Local access
Countermeasures: Strong physical security, strong access controls
Description: The Change NT Password (CHNTPW) application will
change the Administrator password regardless of what it is currently
set to. CHNTPW also demonstrates the need for strong access controls
and physical access to servers or any computer.
Procedure: Gain physical access to the computer, boot from the CHNTPW
CD, follow the on-screen instructions, change the password(s), and
reboot.
With the CHNTPW CD in the CD-ROM drive, reboot a virtual Windows
2000 machine. As the machine boots, press the Esc key to enter the Boot
Menu.
326
Practical Hacking Techniques and Countermeasures
The Boot Menu will appear.
With the arrow keys highlight the number 3. CD-ROM Drive and press
the Enter key.
Brute Force
327
The machine will boot from the CHNTPW CD.
Because VMware machines use SCSI hard drives by default, no IDE drives
will be discovered to change the password on.
328
Practical Hacking Techniques and Countermeasures
Press the M key to manually load the SCSI drivers that are included on the
CHNTPW CD.
The SCSI drivers will scroll on the screen. You will need to press the Enter
key once to complete the list.
Press the A key to have CHNTPW try to auto-detect the correct driver by
trying all the drivers.
Brute Force
329
CHNTPW will detect the virtual SCSI drive.


Pages:
112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136