Is there a way that I can configure my Windows firewall from a Linux USB? I know you can change alot this way.
Forum Thread: Editing Windows Firewall from Linux
- Hot
- Active
-
Forum Thread:
Complete Guide to Creating and Hosting a Phishing Page for Beginners
40
Replies
41 min ago -
Forum Thread:
Web Design Denver
0
Replies
8 hrs ago -
Forum Thread:
Cracking .Cap File
29
Replies
19 hrs ago -
Forum Thread:
WorldNo#1 TestoRyl Male Enhancement:-Product,Read Review Before Buying.
0
Replies
1 day ago -
Forum Thread:
Parmigiano Reggiano
0
Replies
1 day ago -
Forum Thread:
Different Approaches To Eat Parmigiano Reggiano
0
Replies
1 day ago -
Forum Thread:
Vyessence Cream Reviews, Benefits, Ingredients, Price & Where to Buy?
0
Replies
1 day ago -
Forum Thread:
Hack Telegram Bot
1
Replies
1 day ago -
Forum Thread:
How to Hack My College Website ?
22
Replies
2 days ago -
Forum Thread:
How to Find Those Pesky Sextortionists?
0
Replies
2 days ago -
Forum Thread:
How to Embed an Android Payload in an Image?
7
Replies
2 days ago -
stdapi_fs_stat:
Operation Failed: 1 || Error on Creating Android/Meterpreter/reverse_tcp Session
2
Replies
2 days ago -
Forum Thread:
Chinese Electricity Effluence
0
Replies
3 days ago -
Forum Thread:
WooCommerce Quantity Range Pricing
0
Replies
3 days ago -
Forum Thread:
How to Configure Fluxion,Airgeddon,Lazy Script Etc to Use wlan0 as Monitor Mode
0
Replies
3 days ago -
Forum Thread:
Benefits of {Cannwell Cbd Oil Canada} & Read Reviews Before Buying.
0
Replies
4 days ago -
Forum Thread:
Gain Access to (Data on) Locked Android 9 Phone
0
Replies
4 days ago -
Forum Thread:
How to Hack an Android Device with Only a Ip Adress
41
Replies
4 days ago -
Forum Thread:
How to Change a Mixing Consoles Audio File?
2
Replies
6 days ago -
HOW to:
TAKE DOWN the SITES with HULK DOS
0
Replies
6 days ago
-
How To:
Find Identifying Information from a Phone Number Using OSINT Tools
-
How To:
Use Banner Grabbing to Aid in Reconnaissance & See What Services Are Running on the System
-
How To:
Top 10 Things to Do After Installing Kali Linux
-
How to Hack Wi-Fi:
Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
How To:
Crack Password-Protected ZIP Files, PDFs & More with Zydra
-
Android for Hackers:
How to Turn an Android Phone into a Hacking Device Without Root
-
How To:
Discover Hidden Subdomains on Any Website with Subfinder
-
How to Hack Wi-Fi:
Get Anyone's Wi-Fi Password Without Cracking Using Wifiphisher
-
How To:
Crack SSH Private Key Passwords with John the Ripper
-
Tutorial:
Create Wordlists with Crunch
-
How To:
Hack Android Using Kali (Remotely)
-
How To:
Gain SSH Access to Servers by Brute-Forcing Credentials
-
How To:
Phish for Social Media & Other Account Passwords with BlackEye
-
How to Hack Wi-Fi:
Cracking WPA2-PSK Passwords Using Aircrack-Ng
-
Hack Like a Pro:
How to Crack Passwords, Part 4 (Creating a Custom Wordlist with Crunch)
-
How To:
Crack Password-Protected Microsoft Office Files, Including Word Docs & Excel Spreadsheets
-
How To:
4 Ways to Crack a Facebook Password & How to Protect Yourself from Them
-
How To:
Buy the Best Wireless Network Adapter for Wi-Fi Hacking in 2019
-
How To:
Scan for Vulnerabilities on Any Website Using Nikto
-
How To:
Brute-Force Nearly Any Website Login with Hatch
5 Responses
Most Windows firewall settings are located in the registry so Yes, you can modify the firewall using a live Linux distro. You will need "hivexsh" and the hive located on a read/write mounted filesystem. Here is how you would enable File and printer sharing on the standard profile. There's public and domain profiles too.
for example:
mkdir /mnt/win
mount -o rw /dev/sda1 /mnt/win
hivexsh -w /mnt/win/Windows/System32/Config/SOFTWARE
Using HiveXSH:
cd \Policies\Microsoft\WindowsFirewall\StandardProfile\Services\FileAndPrint
ls
setval 3
@
Enabled
dword:0x01
RemoteAddresses
commit
quit
umount /mnt/win
Summary:
Mount Windows drive.
Load Software hive.
Navigate to Firewall profile path.
Add REG-DWORD named Enabled with a value of 1.
Add REG-SZ named RemoteAddresses with a blank value.
Commit changes.
Exit.
If you navigate to WindowsFirewall and there is no StandardProfile key simply create it like so:
cd \Policies\Microsoft\WindowsFirewall\
add StandardProfile
cd StandardProfile
add Services
cd Services
...
Please note the @ represent the "default" for that key space which is why theres a blank line after it. Default = nothing. Also using setval may delete all existing keys at that path so I suggest you do an "ls" to view before typing in setval....
With the fileandprint under services is that just an example or where the firewall is located?
This is the registry key created when using group policy to set file and printer sharing. The key and path does not exist by default. I was simply giving you a real world example though. The default list of items that you see in the management console are located at HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules. Take note its the system hive which is also located in the config folder with software. Take a poke around there it's quite obvious how it works.
Say you wanted to disable the firewall:
HKLM\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile
and
HKLM\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile
add a REG-DWORD called EnableFirewall with a value of 0x00.
Once again, Group Policy results in this key being set.
Ok thank you for your help! Kudos!
What if I am able to edit the windows firewall from regedit? Where would I find it within that? Are the paths you posted the same?
EDIT: Yes it is, I figured it out
Share Your Thoughts