Re: Windows Administrator access

[intel96 <intel96 () bellsouth net>]

Dillama,

Have your tired using the following at the command-line to see account
privileges of the login user:

net user %username%


Intel96

> -----Original Message-----
> From: Dillama [mailto:dillama () gmail com] 
> Sent: Saturday, February 25, 2006 11:17 AM
> To: pen-test () securityfocus com
> Subject: Windows Administrator access
>
> After gaining shell access to a Windows box, is there any way to show
> administrator privilege without changing the config or uploading new
> files?
>
> I have to demo the ability to gain administrator access to a Win 2000
> box, the catch is no changes on the box so adding a user or loading
> whoami.exe from resource kit would not be options. Any suggestion here
> would be appreciated.
>
> Thanks
>
> ---
> Dillama
>
>
>   


------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 

Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------