Skip to content

Urban Security Research

  • Home
  • About
  • Contact

Tag: account name

Dont call the admin account “admin”

by howdoisecurityOctober 17, 2016October 9, 2016Leave a comment

Getting access to the admin account of a system would normally give a hacker total and unrestricted access to anything they wanted to view.

As well as keeping the password private its also possible in most situations to try and keep the username itself private. A lot of systems use a generic firstname.surname or firstinitial.surname naming system for their users and then make a hackers job much easier by naming the admin account “admin” or “administrator”.

If someone saw this list of accounts they now know which account name to try and break into:

account-names
Windows account names

By keeping the naming convention the same for all accounts an attacker needs to do more homework before they can figure out which account to try and break into. Anything that results in an attacker needing to spend more resources/time on your systems increases the chance of them giving up and leaving.

Names to avoid:

  • Admin
  • Administrator
  • Default
  • Root
  • [blank]
  • Anything that looks different compared to other usernames on the system

Can I create a non-admin account and call it admin?

Yes, you sneaky dog! Most people wouldn’t suspect an admin account of being fake and is likely to waste the time of anyone trying to break into your system.

How to change the username in Windows 7:

Each OS will have its own instructions for changing username, heres an example using Windows 7:

  1. Log into Windows using the admin account you wish to change the name of.
  2. Start >> Control panel >> user accounts.

    User accounts windows 7
    User accounts windows 7
  3. Click on “change your account name”.
  4. Choose a less obvious name for the account and press “change name”.
Change account name in Windows 7
Change account name in Windows 7
Uncategorized account name, admin, admin secret, administrator, enumeration, private account, security

Recent Posts

  • Regex and Grep cheat sheet
  • Hacker Halted 2020 – Day 5
  • Hacker Halted 2020 – Day 4
  • Hacker Halted 2020 – Day 3
  • Hacker Halted 2020 – Day 2

Recent Comments

howdoisecurity on Hacker Halted 2020 event game…
howdoisecurity on Hacker Halted 2020 event game…
random on Hacker Halted 2020 event game…
howdoisecurity on Hacker Halted 2020 event game…
Kare on Hacker Halted 2020 event game…

Archives

  • February 2021
  • October 2020
  • January 2020
  • December 2019
  • November 2019
  • October 2019
  • September 2019
  • August 2019
  • July 2019
  • October 2016

Categories

  • CTF
  • hack the box
  • Linux
  • Metasploit
  • OSINT
  • Python
  • Social Media
  • Uncategorized
2021 Urban Security Research
Blog at WordPress.com.
Cancel

 
Loading Comments...
Comment
    ×