How to create backdoor in windows 7

There is only one service we can use in windows logon screen that is sticky key feature.(By pressing 5 time shift key). So today we will trickily use this feature to set a backdoor on victim’s computer. After this process whenever we want to change password we can, from login windows without any third party tool/resource.

 

We should know that all windows configuration files situated in system32 That means we run any command in run prompt or in command prompt so it will execute

From here (system32).

 

1: -First of all we all need to do is open system32 C:\Windows\System32.

The file for sticky key is sethc.exe (that we have to play with)

 

 

So basically in windows use name recogination for execute any command like if we are pressing 5 time shift key so it will read SETHC from system32 for opening it.

 

So all we have to do is changing its configuration file or set (sethc) a name to any other service that help us to bypassing password from login screen.If you are using XP then skip these process( step 2 to 5) but if you are using vista/windows7 so you can’t go ahead without this because there is no permission to changing in system32 files/folders even for an sper user (administrator). So we have to get access of system32 files.

 

2 : – Simply right click on system32 folder & go with properties.

 

 

3 :- And Click on Advance.

 

 

4 :-Than click on owner, then edit and make yourself the owner of folder then click OK.

 

 

5 :-  select the user & Check mark on all boxes to giving full control………..

 

 

Now we can access all file and folder containing system32.

 

6 :- Now find cmd

 

 

7 :- than copy it on desktop and rename it to “sethc”.

 

 

8 :- And after renaming it paste it in system32 folder. Windows will ask for replacing it so

 

choose “copy and replace it”.

 

 

9 :- Now if we will press 5 time shift key it will always open cmd with administrator privilege even in login windows.

 

Logoff the user and press 5 time shift key…………….

 

We will get luking something like this,,,

 

 

10 :-now use “net user” command for cracking the password whenever you want just press 5 time

 

shift key and enjoy

 

Run “net user” for looking how many users is in the windows

 

 

Than use “net user <user name> *”  for cracking user’s password

 

Just fill password twice (it will not show) and hit enter

 

 

 

Now all has done just fill the password in login screen that you given and hit

 

enter and VOILA we entered in windows enjoy………..

Lokesh

Leave a Reply