Create a Linux boot floppy - NT password/registry
05/12/2000

Whether you're a hacker or an administrator, there inevitably comes a time when you must try to get in to a local NT box that you've been locked out of. This could be because of a password problem or a registry error. If you KNOW what the problem is, then this could be an easy way to get in to the machine.

I always thought this was a well known tactic for obtaining console access to a local NT box, but I've run into some folks lately who hadn't heard of this. So it's worth repeating. I'm also attaching the actual setup files so you can create your own disk. As of the date of this writing, the files are up-to-date.

The object is to create a boot floppy that contains the Linux OS. In addition, we need this floppy to have the capability to mount the NTFS file system and allow access to the sam file and the registry file. With all of this flexibility, we should be able to put the boot floppy into the floppy drive and boot AROUND the hard disk. Once inside Linux, we can edit the sam file to change the Administrator password or edit a NT hive that might have bugs.

You'll need the following files:

• bd000607.zip    This is the actual binary image of Linux
• rawrite2.zip    This is the Windows executable to copy the image to a floppy disk
• sc000219.zip    You only need this file if you have a SCSI hard drive

1. Unzip the files into your TEMP directory.
2. Format a floppy disk and insert into the A: drive
3. Open a command prompt and change into the TEMP directory
4. Type rawrite2
5. When prompted for the binary image, enter bd000401.bin

It should be fairly easy from this point. If you NEED the SCSI drivers, then copy the appropriate scsi driver file (.gz) to the scsi directory on the floppy. When you're ready to test the floppy, just boot to the floppy disk, instead of your hard drive.

You should be aware that you have multiple command windows available once the Linux disk is booted. Just press ALT-F1 through ALT-F4 to access those windows.