How To Setup BackDoor In Windows

Setting up Backdoor In Windows

Lets assume that you have just cracked victim's windows password.  or simply got access to his windows for some time.Can you make some changes in windows so that you could access the windows again even if victim changes the password ?? or Can you make any changes in your own windows so that you could access it anytime even if     anybody sets/changes password ?

Simply Can we set a backdoor in windows ?

Yes we can :-) :-)

Backdoor actually means maintaining access.
okay lets do one thing first. Open your command prompt (run as administrator in win 7/vista).

Lets Try :-)

Type the following command :

Syntax : net user account.name *

Example: net user administrator *
and hit enter. Set any password for that account.

Hopefully your new password must have been set.

Did you notice one thing ????

It didn't ask you to confirm old password. Now suppose if anyhow we manage to access command prompt at logon screen (without logging in), we can easily change/clear password.

Okay lets move on.

Now press shift key five times and you must have got a dialog box "sticky keys" on screen.

What Are Sticky Keys ?????

Sticky Keys is an accessibility feature to help computer users who have physical disabilities, but it is also used by others as a means to reduce repetitive strain injury (or a syndrome called the Emacs Pinky). It essentially serializes keystrokes instead of pressing multiple keys at a time.

StickyKeys allows the user to press and release a modifier key, such as Shift, Ctrl, Alt, or the Windows key, and have it remain active until any other key is pressed.

Tutorial..

* Go to C:\windows\system32
* Copy cmd.exe on your desktop and rename it to sethc.exe .
*Now copy that file and paste again in system32 directory.

Windows XP Users

Hopefully existing orignal sethc.exe must have been replaced and your job is done. Now press shift five times and you would see command prompt on screen.You can access command prompt at windows logon screen and change/clear the password easily using "net user" command.

Note: You can also do these changes while using windows Guest Account. But when you would access command prompt at logon screen, you can change/clear password even of administrator's account. This is exactly how , we can hack into administrator's account through guest account.

Windows vista/7 Users

While copy pasting the cmd.exe & sethc.exe file.
You must have got a pop up box saying "Access Denied".

Actually you can not change system32 directory files until you do not have the permissions. You can not have the permissions until you do not have the ownership. So lets take ownership, change permissions, just follow the steps.

1. Right click on sethc.exe and run as administrator.  Again right click on sethc.exe, open properties.

Click on Advanced tab , then on owner and click edit, change the owner from "trusted installer" to "administrator" and click apply.

2. Then click on 'Edit' in security tab to edit permissions. Click on 'Administrators' , give it full control and apply changes.

Okay its done now.

Now try replacing the orignal sethc.exe with our sethc.exe (got by renaming cmd.exe).
Press shift key five times and hopefully you would get command prompt on the screen instead of sticky keys.
Enjoy Command prompt at logon screen...

So do not forget to set this backdoor whenever you would get friend's laptop for a few minutes... :-)