Home | Log In

Home :: Tips :: General :: Gain SYSTEM User Access in Microsoft Vista

Gain SYSTEM User Access in Microsoft Vista

larger image

Gain SYSTEM User Access in Microsoft Vista

Gaining SYSTEM user access in Microsoft Vista is a simple procedure and allows a forensic investigator higher level access then the administrator. This method of gaining access to a Microsoft Vista system doesn't require the investigator to know any of the usernames or passwords for the system.

Boot the Vista machine with BackTrack or any other Live CD.
Mount the NTFS partition.
Rename C:WindowsSystem32Utilman.exe to anything else such as Utilman.old
Copy C:WIndowsSystem32cmd.exe to C:WindowsSystem32Utilman.exe
Reboot
At the Vista login screen, press the Windows key + U to launch the Utility Manager.
Start cmd.exe
Start explorer.exe

You can view a video showing this procedure here.

Also, once a command prompt is obtained via this method, we can use it to create a new user, add this user to the administrators group via the net command and then use this account to rightfully log in using the following commands:

net user USERNAME /add
net localgroup administrators USERNAME

Product 16/34

Previous

Return to the Product List

Next

Search

Categories

Software (6)
Hardware (2)
Upgrades (2)

Documents

Dealers (10)
Consultants
Manuals-> (28)
Tips-> (103)
  |_ MacForensicsLab (19)
  |_ MacLockPick (4)
  |_ General (34)
  |_ Field Triage (46)
Press (23)
Resources-> (105)
White Papers (5)

Sponsors

Newark, Calif. April 15th 2010 - MacForensicsLab Inc. announces the immediate availability of the latest version of their powerful computer forensic suite, MacForensicLab 3.0. The new version brings many new features along with rock solid stability and big speed improvements.

The latest version of MacForensicsLab features redesigned core functions making it faster to zero in on suspect evidence with an easier and more intuitive interface. The industry standard in Macintosh-based forensics just got better. With over twenty new features, such as hashing and data carving throughout the application along with improved stability and speed, MacForensicsLab 3.0 is the must have tool for Mac forensics.

"MacForensicsLab 3.0 brings many new features to the software suite while building on many of the things it already does best." said Marko Kostyrko, CEO of MacForensicsLab Inc. "We're very happy with the evolution of this product and excited for where it's headed in the future."

Speed improvements make all tasks faster than ever. Some operations were benchmarked to run up to 12 times faster then the previous version. New 64-bit operation helps to maximize speed and take full advantage of newer Mac's Intel processor. MacForensicsLab has redesigned memory allocation algorithms to prevent system freezes due to memory leaks or inefficient memory distribution by the operating system. This ensures that MacForensicsLab is always running at its best.

Evaluation copies of MacForensicsLab 3.0 are available to licensed investigators and media. Please contact Sales@MacForensicsLab.com to obtain an evaluation agreement.

Information

Notifications

Notify me of updates to Gain SYSTEM User Access in Microsoft Vista

New Products [more]

Maintain the Validity of Evidence

Maintain the Validity of Evidence

Have you seen ...

The MacForensicsLab ‘Main’ window is the starting point after accessing a case and provides the investigator with a detailed view of the system, any devices or disk images attached to it and their directory and file structure.

| Home |

Copyright © 2006 - 2010 MacForensicsLab Inc.
Phone +1 (510) 870-7883 - Fax +1 (510) 868 3407
M ac and the Mac logo are trademarks of Apple Computer, Inc., registered in the U.S. and other countries.

Forensics Technologies - designed to perform investigations, for law enforcement and eDiscovery professionals.

MacForensicsLab - The only effective cross-platform weapon in the war on Cyber Crime and Digital Terrorism,
with unique tools designed to combat identity theft and child pornography.