Wednesday, 7 August 2013

Hack Windows7 password using Ubuntu and chntpw



“chntpw is a utility to view some information and change user passwords in a Windows NT/2000 SAM userdatabase file, usually located at \WINDOWS\system32\config\SAM on the Windows file system. In addition it also contains a simple registry editor (same size data writes) and an hex-editor which enables you to fiddle around with bits and bytes in the file as you wish.”

What u need is a USB bootable UBUNTU or Backtrack
for That Click Here  


Now you have your USB bootable UBUNTU or Backtrack
Plug in you pendrive and boot from it 
Before we proceed, let’s make a few assumptions:
1. You are using Windows 7/Vista
2. Your windows partition is located at /dev/sda1
3. We’ll mount it at /media/mnt/
4. We’ll reset the Administrator account.


The latest version of chntpw is the 0.99.6-2 but it has been reported to not quite working with some Windows 7 computers. The precedent version 0.99.5-0 does however work perfectly. here are the links to download both versions:
Version 0.99.6-2: To Downlaod Click Here
Version 0.99.5-0: TO Downlaod Click Here
      To install Go to Download folder and run this command in terminal.

      sudo apt-get install chntpw
      Mount the windows partition like so:


      sudo ntfs-3g /dev/sda1 /media/mnt ; cd /media/mnt/Windows/System32/config

      Adjust the device names and folder paths to suit your setup. If you don’t know your username, chntpw can list all users like so:

      chntpw -l SAM

      Reset the Administrator password like so:

      chntpw -u Administrator SAM
        chntpw -l SAM

        Reset the Administrator password like so:

        chntpw -u Administrator SAM

        You should get a prompt similar to this:

        - - - - User Edit Menu:
        1 - Clear (blank) user password
        2 - Edit (set new) user password (careful with this on XP or Vista)
        3 - Promote user (make user an administrator)
        4 - Unlock and enable user account [probably locked now]
        q - Quit editing user, back to user select
        Select: [q] >

        Type 1 to clear the password. This option has the best chance of success and comes with the least complications. You should get another prompt similar to this if you choose option 1:

        Hives that have changed:
        # Name
        0
        Write hive files? (y/n) [n] :

        Type y and you should get this:

        0 - OK

        Reboot the into Microsoft Windows like so:

        sudo reboot

        and create a new password for the Administrator account.
        FIND ME 


    Posted by at

    No comments:

    Post a Comment

    Subscribe to: Post Comments (Atom)