Is there a way that I can configure my Windows firewall from a Linux USB? I know you can change alot this way.
Forum Thread: Editing Windows Firewall from Linux
- Hot
- Active
-
Forum Thread:
How to Get Password Using Canary Token and Set a Trap Against Your Victim. Ethical Hacking Course for Freee OnYoutube
0
Replies
1 hr ago -
Forum Thread:
How Do I Switch a Netcat Shell to a Metasploit Meterpreter?
4
Replies
1 hr ago -
Forum Thread:
Hack Windows and Linux Using Ashwatthama Botnet
0
Replies
19 hrs ago -
Forum Thread:
How to Hack an Android Device with Only a Ip Adress
32
Replies
2 days ago -
Forum Thread:
During Cloning Target AP with FLUXION , the Real Wifi Is Working Perfectly??
0
Replies
3 days ago -
Forum Thread:
Crack Password Using AI with PassHemorrhage
0
Replies
3 days ago -
Forum Thread:
Can I modify the content in /wp-content/uploads/ just by browsing it?
0
Replies
4 days ago -
Forum Thread:
I Wan't to Learn Pentesting, and Planning to Learn Both C++ and Python. But I'm Not Sure About What I Should Start With?
0
Replies
4 days ago -
Forum Thread:
How to Encrypt Python Exploit So It Can Be FUD Again? [DOC EXPLOIT]
23
Replies
5 days ago -
Forum Thread:
The Only Authentic Way to Hack Instagram!
44
Replies
6 days ago -
Forum Thread:
can i run kali lenux in windows 10 without reboting my computer
3
Replies
1 wk ago -
Forum Thread:
How to Hack Android Phone Using Same Wifi
26
Replies
1 wk ago -
Forum Thread:
Help Needed Please!
7
Replies
1 wk ago -
Forum Thread:
Complete Guide to Creating and Hosting a Phishing Page for Beginners
36
Replies
1 wk ago -
Forum Thread:
How to Get Social Media Accounts and Real Name from the Footprints Left Behind by a Phone Number
4
Replies
1 wk ago -
Forum Thread:
How to Bind Original Apk into a Payload with Msfvenom
2
Replies
1 wk ago -
Forum Thread:
Suggest Me Some Good Easy to Understand Python Course?
1
Replies
1 wk ago -
Forum Thread:
This Profile Makes Instagram Crush on Android and Doesnt Shows Up on IOS. How?
0
Replies
1 wk ago -
How to:
Crack Instagram Passwords Using Instainsane
25
Replies
1 wk ago -
Forum Thread:
Rescue-ssh.target Is a Disabled or a Static Unit
19
Replies
1 wk ago
-
How To:
Crack SSH Private Key Passwords with John the Ripper
-
How To:
Host Your Own Tor Hidden Service with a Custom Onion Address
-
How To:
Top 10 Things to Do After Installing Kali Linux
-
Android for Hackers:
How to Turn an Android Phone into a Hacking Device Without Root
-
How To:
This Extensive IT Training Bundle Is on Sale for Just $40
-
How To:
Protect Up to 10 Devices with This All-in-One VPN
-
How To:
The Null Byte Guide to 3D Printing for Hackers
-
How To:
Learn About Data Analysis with Excel & Power BI for Only $25
-
How To:
The Top 80+ Websites Available in the Tor Network
-
How To:
Phish for Social Media & Other Account Passwords with BlackEye
-
How To:
Crack Wi-Fi Passwords with Your Android Phone and Get Free Internet!
-
How To:
4 Ways to Crack a Facebook Password & How to Protect Yourself from Them
-
Hack Like a Pro:
How to Hack Facebook (Facebook Password Extractor)
-
Mac for Hackers:
How to Install Kali Linux as a Virtual Machine
-
How To:
Check if Your Wireless Network Adapter Supports Monitor Mode & Packet Injection
-
How to Hack Wi-Fi:
Cracking WPA2-PSK Passwords Using Aircrack-Ng
-
How To:
Gain Complete Control of Any Android Phone with the AhMyth RAT
-
How To:
Dox Anyone
-
How To:
Gain SSH Access to Servers by Brute-Forcing Credentials
-
How To:
Hack Android Using Kali (Remotely)
5 Responses
Most Windows firewall settings are located in the registry so Yes, you can modify the firewall using a live Linux distro. You will need "hivexsh" and the hive located on a read/write mounted filesystem. Here is how you would enable File and printer sharing on the standard profile. There's public and domain profiles too.
for example:
mkdir /mnt/win
mount -o rw /dev/sda1 /mnt/win
hivexsh -w /mnt/win/Windows/System32/Config/SOFTWARE
Using HiveXSH:
cd \Policies\Microsoft\WindowsFirewall\StandardProfile\Services\FileAndPrint
ls
setval 3
@
Enabled
dword:0x01
RemoteAddresses
commit
quit
umount /mnt/win
Summary:
Mount Windows drive.
Load Software hive.
Navigate to Firewall profile path.
Add REG-DWORD named Enabled with a value of 1.
Add REG-SZ named RemoteAddresses with a blank value.
Commit changes.
Exit.
If you navigate to WindowsFirewall and there is no StandardProfile key simply create it like so:
cd \Policies\Microsoft\WindowsFirewall\
add StandardProfile
cd StandardProfile
add Services
cd Services
...
Please note the @ represent the "default" for that key space which is why theres a blank line after it. Default = nothing. Also using setval may delete all existing keys at that path so I suggest you do an "ls" to view before typing in setval....
With the fileandprint under services is that just an example or where the firewall is located?
This is the registry key created when using group policy to set file and printer sharing. The key and path does not exist by default. I was simply giving you a real world example though. The default list of items that you see in the management console are located at HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules. Take note its the system hive which is also located in the config folder with software. Take a poke around there it's quite obvious how it works.
Say you wanted to disable the firewall:
HKLM\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile
and
HKLM\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile
add a REG-DWORD called EnableFirewall with a value of 0x00.
Once again, Group Policy results in this key being set.
Ok thank you for your help! Kudos!
What if I am able to edit the windows firewall from regedit? Where would I find it within that? Are the paths you posted the same?
EDIT: Yes it is, I figured it out
Share Your Thoughts