Introduction: How to Gain Access to All Accounts on a School/work Network.

Picture of How to Gain Access to All Accounts on a School/work Network.

Hello everyone

I got a request to make this instructable.
I will explain to you how you get the password of the local admin, network admin, and everyone else on the network.

Disclaimer: This instuctable is for educational purposes only, doing this at your own school may get you expelled or worse.
Only do this when you have permission from the system admin.
Note: GETTING THE NETWORK ADMIN does not work everywhere, you have to be lucky.
Note: the files used do not contain viruses, no matter what the scan says, just press "don't do anything".


Picture of YOUR TOOLS
If the computer you're hacking has an AMP (webserver with apache and php) you need one thing
  • An usb drive with a special PHP file I made. I'll give it to you during this instructable
else, you need two things:
  • A bootable linux distro (I use knoppix, but feel free to use everything else)
  • A usb drive with the programs "Saminside" (check and "Fgdump" (on

and of course you need enough time and nothing to lose.

Step 2: GETTING THE LOCAL ADMIN Part 1 Version 1

Picture of GETTING THE LOCAL ADMIN Part 1 Version 1

Skip this if the target doesn't have a webserver

Boot the computer and insert your usb drive.
Copy the file called pwd.php in the htdocs folder on your webserver
surf with your browser to http://localhost/pwd.php
Don't type anything in the fields and click the submit button.

If the virus scanner gives you a warning try version 2 (you will need the program saminside and the linux distro)

You will be sent to the next page, download the file from the link to your usb drive and for the love of god REMOVE PWD.PHP AND THE JUST CREATED FILE FROM THE HARDDRIVE

you can skip version 2 and go to GETTING THE LOCAL ADMIN part 2

Step 3: GETTING THE LOCAL ADMIN Part 1 Version 2

Picture of GETTING THE LOCAL ADMIN Part 1 Version 2

Skip this if version 1 worked

turn off the computer and boot into linux using your CD
once it's booted get into the harddrive and go to WINDOWS/System32/config/. Then copy the sam and sytem files to your usb drive

boot back into windows, start Saminside and import the sam and system files, then export to pwdump




Now you've got the pwdump file open it in notepad
copy the line which contains the word admin or administrator onto your clipboard and go to
Wait until lm has 0/2 or 1/2, click add hashes, paste what you copied into the messagebox, choose algorytm LM, enter the code and press send.

You will be sent to a list of hashes, yours is probably on top (the first lm)
F5 until the value is cracked, the value will be the password.



Skip this if the computer you're on doesn't have a webserver.

Wait until you see the network admin get behind a computer, find out the name of that computer (it's usualy written on the monitor) and open pwd.php in your browser again.
As user, type the admin username (the one you got with "getting the local admin") and the matching password. As domain you type the name of the targeted computer.
Press cache and press submit, download the cachedump file, open it with notepad and do as GETTING THE LOCAL ADMIN part 2 says.

Pick the one with an @ symbol in it, it's probably a network admin or another network user.
Also, remember the part behind the @, because it's the login domain

note: you may want to turn off the antivirus before doing this, just make a shortcut to taskmgr, run it as the local administrator (ya know the pass) and turn it off.



skip this if version 1 worked

Wait until you see the network admin get behind a computer, find out the name of that computer (it's usualy written on the monitor)
Start CMD as an administrator by creating a shortcut to cmd and running it as the admin (use the username and password gotten at GETTING THE LOCAL ADMIN)
go to the folder where you've put Fgdump and type:
*fgdump -w -h (name of computer) -u (stolen username) -p (stolen pass)
If you're lucky a file will be created with an cachedump extention, open it with notepad and do as GETTING THE LOCAL ADMIN part 2 says.

note: you may want to turn off the antivirus before doing this, just make a shortcut to taskmgr, run it as the local administrator (ya know the pass) and turn off the virus scan from there.



Find out the domain of the login server (it's shown on the login screen and it's in the cachedump).
Start the php file or cmd (depends on if you have used version 1 or 2 until now).
On the php script: as domain type the domain you just found, the username is the network admin's name and pass is his password. Select hash and the rest goes as in getting the local admin.
If you use cmd: go to the right folder and type
*fgdump -c -h (login server) -u (stolen username) -p (stolen pass)
in which the username and pass belong to the network admin.

Open the pwdump files and do as you've done twice before with the names of your choice.


sape2887 made it! (author)2017-10-11

i made it

ElementalW (author)2016-12-05

Ummm one year of ISS.... that would be stupid..... and you're making it up because it is NOWHERE NEAR reasonable.... ty for reading

yu3 (author)2016-11-06

To get access isn't hard but to dodge that "tracking back to your computer" is annoying, ofc ull be found out, the teacher can still see who intruded when from which pc.

Also isnt there an other way to get access? I mean when I could put usb/live boot smth just like that where ever I am i wouldnt be hard.

thank you anyway

rathernot (author)2016-10-19

Okay, I've been looking for a mentor, and this looks like a good place to start. If you are willing to teach or know of anyone willing to, shoot an email to this adress;

DarkGhls (author)rathernot2016-10-24

Yes me tho .? my email :

lets get 5 mill subsf (author)2016-09-28

uut0834opyg24gg35ogp ouuy6 v2otutuhyi6yiiyiyhh2lqgo2ituiigtygtu5t245utyy4rgurutgi2tutrtytytughhyn youutbeho4guggu4g2ogo2ouhhtpghpjhhjniithoyhohohihgugugywiu2uoo8tuh24gjm45uy5tu42ggb5tutu4ytuutyu2iueyreyeyrr

rolanfreeman (author)2016-06-16

Get into any record through this amazing guy. my name is Rolan, i actually had a problem with my school when i was in 9th grade, i was unable to write some papers because i had got arrested for neighborhood domestic violence where i had to appear in court and therefore i missed my papers. but thanks to this wonderful guy actually he got introduced to me by a friend in russia and he was able to help me work on my school record and i was able to graduate successfully. call me a criminal but you dont know what i have been through surviving on my own but here i am today i own my business and i am making a decent living and enjoying a clean clear life. is wonderful when it comes to public and other kinds of records as he as helped my friends work on their DMV and other stuffs like that. he didnt ask me to make any sort of adverts for him i was just browsing through and i saw all the commnets so i thought i should just share him incase there is someone who is troubled by one thing or the other, we arent any saints after all.

DrunkenA (author)rolanfreeman2016-09-22

Rolen, when did you create your gmail account as it can verey if it works or not.. im actually an expert at this.

Ddawg747 (author)2016-09-13

you should say how to prevent it as well otherwise there could be legal issues.

Miaz2000 (author)2016-06-15

i tried this and never got caught, one reason is probably because I'm not doing anything that make the account i hacked a bad person i just revealed all their secrets and used it against them you may think I'm a horrible person but if you want to survive school you gotta have something to protect you like in the hunger games you can try to allies or kill them all and i decided allies is the only way to go so thanks

Cw11 (author)2016-06-09

Based on the comments I'm just gonna slow step away from this habit of trying to crack the admin password, just so I can add more virtual memory. Pretty ridiculous.

GameP1 (author)2016-05-30

Yeah don't do this guys, I did it in school and got passwords to just about every student in the school, I used a proxy a VPN everything, but they caught me, my computer privileges were revoked, I was given rest of the year OSS and 3 months ISS, DO NOT DO THIS, and chances are, if you're having to look this up on instructables, you shouldn't be doing this much of a risk.

1617325 (author)2016-05-17

hi guys theres some amzing things ive hacked unblocked text for the info

AmyW89 (author)2016-04-06

RSN saved my life, i was in a custody battle situation with my three year old daughter and my alcoholic ex-husband. He continues to defy safety restrictions and court orders, and I never able to catch him in the act. I was referred to She totally understand my situation and guided me every step of the way to put a tracker on my ex-husband phone where i could track him from his phone, knew exaxtly what he was up to directly from my phone. Tell her from amy, she can hack anything

chrisn861 (author)2016-03-14

Well, thats one way, another would be to actually study some code, or if you are already on a computer on the local network.. find a vulnerability and make back-doors on multiple PC's (especially if you are assigned a PC). Have patience and wait to actually use a port that is open from a PC not on the local networks (if possible, the network has to be connected to the internet to do this). If you can get through to the modem, port forwarding would make it a breeze. "hacking" should be planned, but there should always be a moral code when you do it... changing grades hardly seems worth it, unless you have a teacher that doesn't grade fairly. (which can be dealt with in multiple ways)

Mdeva to go (author)2014-06-05

hi guys, im a beginner in hacking and cracking, can you kindly assist on how to hack a database and which software can assist in fullfilling that. pls. is it possible to hack into ones system and clear ones itc?

theslickhacker (author)2013-04-13

hey messmaker ya out there come on back just prankin bro do you have a minute.i am beginner/intermedate hacker and do you know how to bypass and delete avg family safety from my ACCOUNT and not my moms ACCOUNTit alerts her on her phone
and i want to manipulate the cumputer to look like its there on her account thats what i cant figure out????help please i also have a windows 7 ultimate with added xion microprosser i built from scraht sorry mispelled and 10 trillabites on the cumputer with radio addition from motherboard of a radio and a few other things too much to say!

You need to learn the difference between a hacker and a cracker.

geeklord (author)2008-09-24

what do you mean by "or worse"?

TheRegalian (author)geeklord2012-02-24

Not to mention, you'll get shouted at by the local police... -.- ... but yeah; court, fines, possibly juvey if it's bad enough.... you have powerful information bro, just be careful how u use it

damasta (author)geeklord2008-09-25

you can get expelled or worse for example they can sue you for breaking into their network

cowen (author)damasta2010-04-04

You have the right to use the computer and the network but so much that you are not thwarting the security of the network.

That can be seen as a Felony.

7 kids at Plano ISD were arrested by Secret Service and prosecuted for Hacking.  They are not allowed to be anywhere near any Technology driven device.  No Cell Phone, no Game system, No Computers, if you can use it to hack then they are banned from it and if they are caught in vicinity of such a device it is a breach of probation and subject to incarceration.

I was part of the group that collected the evidence.  Do you think you can survive with out Tech gear?

messmaker (author)cowen2010-08-23

we can get tech everywhere bro, its the 21st century. i could walk up to a internet cafe, use fake registration and get back where i left off.

cowen (author)messmaker2010-08-24

You did not get the point! FELONY.... The point is it is not your network, and not your computer both belong to the School, Library, Cafe' shop, ect. You say you can just use a hacked (fake) account which is not yours. That is the classification of Computer Crime and Identity Theft both of which can be charged as Felonies to minors who commit Adult crimes. As stated above SEVEN (7) students were arrested and charged by Secret Service for the Joke (Crime) and the School also levied charges for the mis-use and abuse of School property. Sentencing ALL 7 may not have any 21st century equipment, No Game boy, No Cell phone, No computer, Nothing that may allow the student to get online and nothing with more power then a basic manual Adding machine. Yes you may line 21st Century but you can be thrown into the 17th century once caught . There is a Legitimate use and a illegal use which you use makes the case against or for your Sentence. All I ever ask is that youth of today use their gifts to be a member of society that is the ones I want to hire to help with my Computer Security Company. We hack networks only after the signature dries on the (school term here) Permission Slip is signed and verified. One to get paid and Two to back ourselves in court if there is a problem with the hack. Please Hack legally

messmaker (author)cowen2010-08-24

yes, but they cannot monitor you 24/7. and where there is urban property there is the technology. All i'm doing when i do such things, even a simple DoS attack, is making my mark in society. if ANYONE gave me the chance to do so in a legal manner e.g. testing security software, i would do so. But no one believes people can do such things with computers until ive wiped there network and corrupted their files. So until everyone wakes up to the power of computer manipulation, im going to stay on the same track im on now.

cyberhacker (author)messmaker2012-01-08

hey messmaker plz i am just the beginer and i want to know how to gain access on the admin account on the other computer plzzzzzzzzz just guide me to do such thing i will be very thankful to you..................

cowen (author)messmaker2010-08-24

PISD uses a logger that sends all information to a server that uses a program that looks for certain criteria of hacking. Its pretty neat. We can then look at the log and other activity that is done on the Schools property. We do not have to screw up a system to show it is unsecured.

messmaker (author)cowen2010-08-26

no, but its better to have a hacker try and get in that isnt going to do any harm, to test it then have a hacker get in and start screwing up the system.

cowen (author)messmaker2010-08-28

And that is where I get contracts and make money for me the hacker and what ever other equipment vendors I need. Why do it for free.....

messmaker (author)cowen2010-08-30

because they didnt give me the chance to do it for money,

cowen (author)messmaker2010-08-31

That is where people like me are important. I have customers and they all want that to make sure they are safe. I usually have 2 or more guys hack each others work to make sure nothing was missed. The customer must sign a contract and I get paid up front half before the work is started and right after the work is completed. You just have to know how to sell your self and services you can provide.

messmaker (author)cowen2010-09-05

trust me, i've tried. but they dont believe someone my age could cause any damage on even a unprotected system. so i show them what i can do, on their systems. that gives them a good picture. and i make sure they know it was me, but they cant prove it.

cowen (author)messmaker2010-09-06

What you need is someone to do as an agent or broker would work. Be the middle person that is respectable and responsible to get things done legally and then let you have your time to hack, then report your findings and then let the agent go back with those reports and even can bring you in with them to show them how vulnerable they are to a kid and explain if a kid can do "this" then "what could a full blown hacker do"? Some still think it a hoax but at least you have papers so that if they hit again you can show that you tried to warn them and if the attach used the ports that you used to show them the problem and that are still not closed or secured there is a history there and if this time there was a loss the company would look pretty open if right after a security Audit there was still a breach "Because they did not take action to the Audit" the next questions are the worst and depending on what type of business they are are not always good. I am working with a Judge who has a lot of influence with companies on ID Theft and getting compliant with federal laws.

messmaker (author)cowen2010-09-13

Trust me, no one believes I have any skill in this area.
Not even my own family think I can do anymore than open a webpage.
My dad believes me, because he actually sat down with me and asked me to hack his facebook page to prove what i could do.

but no one gives me that sort of time, because of my age.
my dad's gone to people around the world through the internet trying to show people my worth in tech. but they all judge me based on my age.
Sometimes I get angry with the rejection and infect the company or individuals computers as, well, an act of revenge. I would be more than happy to show them how i got into their systems as a remote administrator, before I had to do such things to show my worth.

cowen (author)messmaker2010-09-16

Well I am always looking for talent. What all things can you do besides just hack in?
I am looking for someone that can not only get in but also setup security to prevent the breach.

I have a nice firewall setup and would like to start building and configuring these.

Age is not really a problem as talent is the thing i want.

1099 employment.

I have not really taken advantage of the breach market but once I have a reliable person to do the work.

The main thing is contracts so that everything is covered.

messmaker (author)cowen2010-09-20

m0n0wall is ok,
ever tested smoothwall?

ive found that m0n0wall is quite susceptible to a DOS attack.
this can be patched manually, but it should of been built into the untouched
main frame of the firewall :l

im not a big fan of m0n0wall sorry.

i can find exploits for websites, programs or systems (which i have been doing for a while and posting on the internet for other hackers).

im constantly looking for something else to learn about, or someone to learn from.

cowen (author)messmaker2010-09-21

Ill look into smoothwall, I liked the hardware requirements of mono.

I have it running on a 486 with 16 ram and a 64 meg CF card Intel 4 port NIC.

Very nice simple system.

messmaker (author)cowen2010-09-24

that is very very nice i must say (:

whats your mb/sec transfer rate on such a system?

STR (Sustained Transfer Rate)

cowen (author)messmaker2010-10-03

I do not use a very high DSL connection here mostly a connection to email my off sites use of web servers where there are fatter pipes.

I have heard reports of 100meg in and out bound. I am only using half the resources in the 586 however. 66mhz pc

50% cpu
48% memory out of 16meg
16 meg of the 64mg CF Flash.

I had an extra pc that I wanted to use, There was no reason to build a power house system for this.

Advanced WAN Statistics

Connection Rate (Down/Up): 3360 Kbps / 832 Kbps
Connection Status
In Packets 1420020 Out Packets 1010583

IP Address
Routed IP
Primary DNS
Secondary DNS

Ethernet Status
In Packets 1424286
Out Packets 2940902

messmaker (author)cowen2010-10-22

you should better utilize ur system setup by just getting FASTER INTERNET.

thats not so bad though,
what do you use it for?

you could probably squeeze a bit more performance out of your system or even your connection speed.

jason the red (author)cowen2010-08-05

yeah getting caught hacking is serious and can have so very harsh repercussions

messmaker (author)jason the red2010-08-24

but you have to get caught in the first place. you can always cover your tracks, you just have to be fussy about backtracking.

jason the red (author)messmaker2010-08-28

very true cover your tracks well and stay under the radar and youre good to go just dont go trying to hack into a government system they dont really appreciate that

messmaker (author)jason the red2010-08-30

hahaha ive noticed.

aamiralikhan (author)messmaker2011-03-28

hey hi ..... may i have a min plz....

i am just a begginer, so plz some one tell me about this...

messmaker (author)aamiralikhan2011-04-09

what would you like to know?

co'grady2 (author)2011-08-29

or just use ophcrack and itll be done in under 10mins

arpoky (author)2011-08-05

When you say "Just don't do anything", about the files/programs involved, it makes me (and probably the majority of everyone else who has viewed this Instructable) even more suspicious.

arabha (author)2011-05-24

Hey! Nice theme you got! :)

x-treme (author)2011-03-30

Hm, on my computer, when I opened SamInside, my antivirus went mad. At school the computer will probably explode. :|

Maybe it's best to run Windows XP Live from a USB or CD, and then run SamInside. :)
I'll try it today at school. *evilface*

About This Instructable




Bio: Yo, d4m4$74 in da house!!! Sorry, I just had to say that. I'm d4m4$74 (or damasta, your choice) but you can call ... More »
More by damasta:How to fake an incredibly fast rubik's cube solvemaking a wood penHow to gain access to all accounts on a school/work network.
Add instructable to: