Hey guys, it’s been a long time I wrote an article here. I’m sorry for such a huge gap, I had exams 😦 … Anyway, this won’t be repeated again. Today I am going to teach you planting backdoors on windows operating system. Well, first I will mention what a backdoor is. A backdoor is a path through which an access made with out the authority’s permission or his knowledge. So today after reading this article you could plant a backdoor on a windows system, but you need a complete access once into his system for that. Once you access the victim’s system you will have to follow the below steps.
Finding Sticky Key
Press five times Shift key and see what happens! This works on both Windows XP and Windows 7
Here, a message pops up and asks you whether to turn ON StickyKeys or NO. Click YES and let the program RUN.
Finding Location of StickyKey Program
It’s very simple to find the location of a running program as you all know! Well, most of you don’t know it. I will tell you how.
Open Task Manager (Ctrl+Shift+Esc) and right click on the program which is running.
Note: Close all the programs before you start planting backdoors, otherwise you will confuse locating which program belongs to StickyKey program in Task Manager.
After you get the running program in Task Manager, right click on the program and Open the directory containing the file. The program would been named as sethc.exe
You can skip this step and directly go to the next step but I am mentioning this so that this will be helpful for you in future to find the file location of the running program!
Changing the location of the file and replacing the executable file
Go to the directory containing the file, i.e., C:/Windows/System32/
Now move the file sethc.exe from that folder to some other folder. And now locate the file cmd.exe in the same folder, i.e., C:/Windows/System32/
So now rename the file cmd.exe to sethc.exe
Note: In Windows 7 you will have to change the permissions to Full Control to change the file location. Or else you will have to use Administrator account.
Now time for the action!
Restart your computer and wait till login screen is displayed. Now you don’t have to type password and access the file but rather you can do it by just pressing Shift key 5 times. That is, when you press shift key 5 time you will get command prompt. As you all know that any changes could be done by using command prompt.
Here are few command which will help you performing necessary actions:
net user username new_password
This will allow you to change the password of the system. Just type username of the windows guest/Admin account and new password that you want to set then hit Enter.
Just replace ‘…’ by the file location you want to reach and this will give you the complete access to those files
This command will connect to the system whose IP address is provided
So that’s it for today… In my next article I will describe how to secure this backdoor.