How to hack Windows Xp Administrator Password?-(Part -I)

The title of this post may appear a noob but today we will try to do it in a different way.One can find many command prompt usage for it in web and many softwares for cracking it.The software i would recommend for doing it are....

1.Ophcrack:It is a windows password cracker implemented on rainbow tables.It is available as a freeware.(DOWNLOAD HERE)

2.Backtrack:It is one of my fav,it is a multi-functionality tool that is used for software cracking,wireless hacking,penetration testing,password cracking..etc.When it boots in one can see a linux based interface and it is typically a GNU/Linux based.It is also a freeware(DOWNLOAD HERE).

Quoting Kevin Mitnik-"I wish i had Backtrack-3 many years ago.It would have saved me lot of time."
 Well,after reading the above quote by the great Kevin you must  have imagined the functionality of backtrack.So,before going into the article  i want you all to go through the Disclaimer.
WE CAN USE THIS METHOD FOR WIN VISTA ALSO
Finally we should start......i should mention that we will hack using Backtrack3......though version 4 is  available and you can use it.

1.I hope you all have downloaded the .iso  file of  Backtrack from the above link(Always use official link).

2.You can  burn it to a  DVD/CD(make bootable) or boot it from USB,i would prefer using USB.

3.For booting it from USB you need to make your USB a booting one,for that you will need  UseNetbootin(DOWNLOAD).....and use the instructions given here.

4.Now i hope you have come up with a bootable  USB with Backtrack loaded in it,now restart your system with USB plugged and then go to the boot menu and select boot from USB....and leave it....you will be guided to the backtrack desktop screen as shown below.

5.Some times you may need Root ...Username:root & Password:toor.

6.Now open up chntpw by clicking on the start button as shown in the image below.

7.Then you all can see a command window will open up....now inorder to proceed you need to know the different partitions in your  harddisk,so for that type "df"(with out quotes)hit enter and it will show different partitions as shown in the image below.

8.Select the partition where the system files are loaded....here in my system it is in "sda1" so i will be using it in my further steps.

9.Now type in  this  chntpw -i /mnt/sda1/WINDOWS/system32/config/SAM  and hit enter.
Note:All the characters in the above command are case sensitive.
 Why we used this command?
Because all the passwords in Windows Xp are stored in SAM file which is located in the above specified location and the SAM file is encrypted  with LM hashes and sometimes a key is provided.

10.In the above image  you can see a question is asked "what to do?"by default it will take "1" if you hit enter...as it denotes "edit user data and password" as you can see in the above list (in image) so,hit enter and the below screen comes up.....

As it has taken "Administrator " as default value as you can see in the above image so again hit enter.

11.Here you can see there are many  options you can choose any one from the list by  typing that and hitting enter.I have chosen  option "1" which says "clear (blank) user password".
Now as you can see the "password cleared !" message has come up so,lets check again.

12.Hit enter again to get  the confirmation message as shown below.
So,the hack is successful!!! as you must have felt that hack using backtrack is purely command based....so remember few commands  and it can work wonders for you.
If  you liked this hack then do drop your comments and  give your suggestions on it they will be appreciated!!!
Suggest Article

Subscribe to Posts....

Enter your Email-ID and get "Security Tips and Hacking Tutorials"alert in your inbox,we promise to keep your email private and safe.

comment 20 comments:

Priyanka Bhowmick on July 6, 2010 at 10:37 PM said...

good post.. u mite not have poetry writing skills but i like the way u put down ur articles and ur knowledge on Tech :) :)
well done!

Satyajit Das(Admins) on July 6, 2010 at 11:09 PM said...

thnks priyanka for those inspiring wrds....keep visitng.... :)

Shabnam Sultan on July 7, 2010 at 11:36 AM said...

Hey thanks for this tutorial :) keep up the good work. Enjoy visiting your blog.

Satyajit Das(Admins) on July 7, 2010 at 1:08 PM said...

@Shabnam thnks for visitin again.....

TechGopal on July 9, 2010 at 11:09 AM said...

nice well explained artical ........

Anonymous said...

nice pictorial tut love it..... :)

Satyajit Das(Admins) on July 9, 2010 at 12:23 PM said...

@Gopal thnks for visiting.... :)

Bibhu on July 10, 2010 at 6:31 PM said...

nice post yarr....everything is here......no need to go to any othere website....great work....keep it up..

Satyajit Das(Admins) on July 10, 2010 at 10:37 PM said...

Thnks buddy....for these nice wrds....keep visiting... :)

susil on August 11, 2010 at 9:21 PM said...

tanks buddy you are really a nice guy first time i have visit on your site. can u please tell me is it possible to hack windows xp without using any software.

Satyajit (Admins,a.k.a Satosys) said...

@Susil Welcome to "Compufreaks"...:) yeah as i mentioned in the first line of this post there are few command prompt usage but it may not work from limited user account....it may sometimes create a new user...actually you cannot say these as hacking they are indeed tricks...Look out for the Part-II of this post on how to view the password without reseting it... :)

Anup @ HackTutors on September 19, 2010 at 8:19 AM said...

Wow! This is going to be very helpful to me! Thanks for sharing a lot :)

Anonymous said...

commond such as df does not show ur partion
use blkid -L to show ur system partion

Satyajit (Admins,a.k.a Satosys) said...

yeah I agree with you partly...it is not that we cannot find partitions using "df"...yes we can you need to have mounted your system drive..... but i agree that "blkid -L" can be used but i felt "df" will be easy to remember and use for noobs.The main function of "df" to to find the free spaces in files but I found it very handy you can also use "fdisk -l"

nyways thanks for commenting.... :)keep visiting :)

Anonymous said...

nice one..yaaaaaaaaaaaaa

Vikram said...

Does this work on Windows XP PCs connected on the college network?

Anonymous said...

i worked as you told but unable to change the password instead all logins are invalidated. can you tell me about SYSKEY .

mail: hackmubutt@gmail.com

ajay said...

Nice instruction dear,keep it up

Biswajit Nayak on February 21, 2012 at 8:09 PM said...

could you please mail me the commands of backtrack.
i will memorize those those commands that may help me in future. thanks :)

robert said...

thanks Satyajit For his Valuable guide...keep wrting. al da best

Post a Comment

This blog is "DoFollow",Use a "Real Name" rather than using "Keywords" otherwise comment will be rejected.

Delete this element to display blogger navbar

 
© 2013 SecurityHunk All Rights Reserved and Template by Fresh Blogger Templates