BACKDOOR ATTACK.

BACKDOOR ATTACK :

Getting cmd in the login screen..

The backdoor attack is simply behind the concept of stick keys.. The advantages of this attack is such that..
1.Can explore all files from the login screen itself.
2.Remove the administrator password in login screen.
3.Change the password for other accounts in login screen itself.

Go to,

My computer-> C drive -> Windows -> system32 ,copy the cmd file and paste it in some folder, and rename that cmd to sethc. Now replace this renamed file in system32. It will ask for confirmation for replacing the file. Give yes. Now log off.press shift 5 time and see what you get on screen. This is just the concept behind the stick keys.when shift keys are pressed continuously the sethc is called.. since we have replaced that sethc with cmd, now the cmd is called.So from now you access all the file by opening the explorer.exe in cmd in the login page itself.The files can be opened by explorer.exe and then opening notepad using the run command.We can acces the data via notepad, Notepad-> file ->open, browse for files and copy it.

To change the password without knowing the old password:
C:\>net user
press enter

To create a new password for administrator:
C:\>net user administrator
press enter.

For creating a new user account:
C:\>net user /add
press enter.

To delete an user acct replace the add with del.

NOTE : TO DO THIS AT LEAST ONCE YOU MUST HAVE LOGGED INTO ADMIN ACCT AND MUST HAVE REPLACED CMD WITH SETHC.Then whatever may the password, the system is yours.
We can even crack the admin password without doing these stuffs by using LIVE OS and deploying an OPC(Offline Password cracker).