Follow us on Twitter!
You cannot teach a man anything; you can only help him find it within himself. - Galileo
Wednesday, April 23, 2014
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
Learn
Communicate
Submit
Shop
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Other
Members Online
Total Online: 18
Guests Online: 16
Members Online: 2

Registered Members: 82886
Newest Member: The Slummy
Latest Articles

SYSTEM rights

Arrow Image Gain SYSTEM rights and be able to end any process.



1. open Command Prompt
2. type: at (the next minute, in military time) /interactive \"cmd.exe\"
3. when it comes up, press CTRL + ALT + DEL,
go to Processes and kill EXPLORER.EXE
4. close the original command prompt
5. in the new prompt, type: cd ..
6. then type: explorer.exe
7. wait until taskbar/desktop returns
8. close command prompt

I have found that this only works from an Administrator desktop, so it is not necessarily a good \"hacking\" tool.

The reason this works is because the second prompt open by the first is not directly opened by the user, it is opened by a user-assigned system process. Thus, it is opened by SYSTEM. So a prompt opened by SYSTEM should be able to open more stuff by SYSTEM, right? After all, if your name is John, and you open something in the Command Prompt, it\'s opened by John. So we kill YOUR explorer.exe and then ask SYSTEM to open up its explorer.exe. When this happens for the first time, Windows actually needs to set up a desktop for SYSTEM, so it may take awhile. When it has finished making the desktop, you can enjoy Windows in its own shoes!

P.S. SYSTEM is the equivalent of root on a *nix box.

Comments

Mr_Cheeseon July 15 2006 - 12:20:58
neat trick i surpose. good short article.
chislamon July 16 2006 - 00:06:01
wow never even thought about that Grin
Ven0mon July 16 2006 - 23:21:42
ive seen this here. http://undergr0un. . .php?t=1880 and the video is here http://passivemod. . .
fishhead565on July 17 2006 - 01:52:13
great article
cyb3rl0rd1867on July 17 2006 - 17:16:35
cool trick just not very useful as it can only be used in administrator account. Can someone explain to me what is better about "SYSTEM" than "Administrator"?
system_meltdownon July 18 2006 - 19:49:22
There is an easier way of doing this... Say the time is 19:00. Open Command Prompt, type 'at 19:01 /interactive "c:\windows\explorer.exe" then ctrl+alt+del and kill explorer and it will run the new explorer from SYSTEM Smile
chuckstudioson July 18 2006 - 21:33:43
cyb3rl0rd1887, in SYSTEM you can kill any process. That's the only thing I've noticed, anyway.
Elitest_00on July 21 2006 - 04:18:15
Sweet, even though it doesn't do anything its more information to your mind.
raywaveron March 30 2007 - 00:35:03
I am following your instructions exactly but when I kill my explorer it automatically starts a new one under my name. Do you have any ideas?
Post Comment

Sorry.

You must have completed the challenge Basic 1 and have 100 points or more, to be able to post.