Pages

Saturday, 19 December 2015

How to Change a Windows User Password Using Backtrack 4

How to Change a Windows User Password Using Backtrack 4


Locked out of your computer? Wanna hack one of your friends? Can't access an old Windows user account? Then this is the article for you!

Step 1 :

Boot Backtrack 4 in your computer.


Step 2 :

Once Backtrack is done loading and the select menu is visible, pick "Start Backtrack Frame Buffer (1024X768)".


Step 3 :

Once you're allowed to type in commands, type in "startx".


Step 4 :

Once the GUI is visible, go to start(Lower-left corner) Backtrack >> Privilege Escalation >> PasswordAttacks >> Chntpw, opening the Chntpw terminal.
(If it shows error "No such files or directory" check correct path to Chntpw executable in File manager).


Step 5 :

Now inside backtrack, you need to find the file path to a file called SAM, usually under 'Windows/System32/config/SAM'.
We will first mount the windows partition first, so that we can access windows directory.


Step 6 :

Type in the following commands in shell console
"mkdir /mnt/sda1" and press Enter
Type again "mount -t ntfs /dev/sda1 /mnt/sda1" and press Enter.


Step 7 :

Now in the shell console type in "/pentest/passwords//chntpw/chntpw -i <SAMFILEPATH>"
Example in this case:
"/pentest/passwords//chntpw/chntpw -i /Windows/System32/config/SAM".
(Note: Windows path should be case sensitive). This will load SAM in chntpw.


Step 8 :

Type in 1. "Edit user data and passwords". It will display all username of Windows partition.


Step 9 :

Type in the username of the Windows account you want to change the password in.


Step 10 :

Type in 1 to clear the password and press Enter.
You can also type in 2 to edit it.


Step 11 :

Once done, type in the username of the Windows account you changed or cleared the password on and Type in 4.
"To unlock account" and press Enter. This will unlock the account and enable it for using.


Step 12 :

Type in "!" and press Enter to return to main menu of chntpw.


Step 13 :

Type in"q" and press Enter to quit chntpw.


Step 14 :

Chntpw will confirm about the changes you made to SAM.
Type "y" and press Enter to Write hive files.


Step 15 :

Done!
Logout and Close Backtrack 4 and restart Windows!



Warning
  • Do NOT use this method on anyone else computer but your own.
  • Please notice that Backtrack is not very stable and can mess up your computer. Do this at your own risk!
Thanks For Visiting My Blogg.
___________________________________________
Posted by at
Labels: ,
Location: Beawar, Rajasthan, India

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)