
Hacking Techniques and Tools • Chapter 5 187
Trying 208.37.215.233...
Connected to 208.37.215.233.
Escape character is '^]'.
C:\winnt\system32\>
Success! We now have full control over the system and may install the
rootkit at once.After that step is completed, the system is basically ours
and we may modify whatever we want and take files at will. Even the
administrator of the system is no longer our access-level equal at this
time—for we can detect his presence, but he cannot detect ours.We have
effectively become the new (albeit unauthorized) system administrator.
NOTE
Yes, it really is that easy to break into default NT systems. The
example in this section ...