Backtrack is the most popular Linux live CD distribution focussed on penetration testing.It
comes loaded with all the top security tools so that you can immediately startup with your
work without the need for downloading and installing any of the tools.
One of the uses of Backtrack is to fix windows problems such as fixing the registry,
resetting the user passwords etc. Here I am going to explain how we can use Backtrack to
fix the windows registry.
It has little but powerful tool called chntpw which not only allows resetting the user
passwords but also comes with full fledged registry editor.
chntpw is a Windows NT 2K XP user password tool to delete passwords and restrictions
from SAM database on installed system .They do not crack like brute force passwords, but
only delete passwords and restrictions for Administrators and simple user in SAM
database .
To erase password use a script that a make almost for you like search NTFS drivers from
your XP to mount your partition with your drivers if doesn't find ask you to download all
needed data from internet .
Note: Deleting the password will enable you to login to the system without a password, but it will not give
you access to any encrypted data on the system. All it lets you do is log in.
Steps:
1. Burn Backtrack 4 iso in DVD and boot from DVD and after start backtrack with
username: root and password: toor and open backtrack Privilege Escalation
Password Attacks Chntpw
2. Shell Prompt will be open, First see Hard disk Partions with help of following
command: # fdisk –l
3. note down windows partion name (like SDA1, HDA1)
4. After type following command:
5. chntpw –I /mnt/hda1/windows/system32/config/SAM
6. After type 1 and type username: administrator select 1 option to clear password.
To Watch This Steps Video Click Here
comes loaded with all the top security tools so that you can immediately startup with your
work without the need for downloading and installing any of the tools.
One of the uses of Backtrack is to fix windows problems such as fixing the registry,
resetting the user passwords etc. Here I am going to explain how we can use Backtrack to
fix the windows registry.
It has little but powerful tool called chntpw which not only allows resetting the user
passwords but also comes with full fledged registry editor.
chntpw is a Windows NT 2K XP user password tool to delete passwords and restrictions
from SAM database on installed system .They do not crack like brute force passwords, but
only delete passwords and restrictions for Administrators and simple user in SAM
database .
To erase password use a script that a make almost for you like search NTFS drivers from
your XP to mount your partition with your drivers if doesn't find ask you to download all
needed data from internet .
Note: Deleting the password will enable you to login to the system without a password, but it will not give
you access to any encrypted data on the system. All it lets you do is log in.
Steps:
1. Burn Backtrack 4 iso in DVD and boot from DVD and after start backtrack with
username: root and password: toor and open backtrack Privilege Escalation
Password Attacks Chntpw
2. Shell Prompt will be open, First see Hard disk Partions with help of following
command: # fdisk –l
3. note down windows partion name (like SDA1, HDA1)
4. After type following command:
5. chntpw –I /mnt/hda1/windows/system32/config/SAM
6. After type 1 and type username: administrator select 1 option to clear password.
To Watch This Steps Video Click Here
0 comments:
Post a Comment
Yes