You might need to access an account on windows which's password you might have forgotten. Well the easiest way is to hack the account without creating any backups and all that system recovery etc.
Remember in case of windows 8 the account has to be local, if you are logging in with your microsoft password it cannot be cracked by it.
Well, to do this you have to have a basic idea of how passwords are stored. First, when you type it in, it is encrypted into something long and unrecognizable. Then it is stored in a file called the SAM.
Now, where can you find this SAM file? Well, to be blunt, it is here: Windows/system32/config/SAM. But, don't go for it just yet! It is locked to all accounts while Windows is running. It can also be found in the registry under HKEY_LOCAL_MACHINE -> SAM.
"If it is locked, how do I get it?" Well, the easiest way to do this is to get an alternate OS like Linux, and copy the file. That simple. You have to get ubunto, kaali or any version of windows which can be booted on USB.
Just boot the OS from USB by changing boot sequence from BIOS.
Go to the SAM directory.
Copy it to another folder or partition.
Now you can follow two ways to get the password.
Firstly,
"Now I have it, but the password is encrypted!" Now you get to the fun part, cracking the password. There are numerous programs available, but one of the best ones is called Cain, and can be downloaded from www.oxid.it/cain.html.
It outputs password, and you are done!
Also, another awesome trick is injecting passwords into the SAM.
Secondly,
You can change the SAM file of another Windows, with the same version, which's password you know.
After you replace the SAM file you can open the account using your own password.
Well then its hacked.....
Remember in case of windows 8 the account has to be local, if you are logging in with your microsoft password it cannot be cracked by it.
Well, to do this you have to have a basic idea of how passwords are stored. First, when you type it in, it is encrypted into something long and unrecognizable. Then it is stored in a file called the SAM.
Now, where can you find this SAM file? Well, to be blunt, it is here: Windows/system32/config/SAM. But, don't go for it just yet! It is locked to all accounts while Windows is running. It can also be found in the registry under HKEY_LOCAL_MACHINE -> SAM.
"If it is locked, how do I get it?" Well, the easiest way to do this is to get an alternate OS like Linux, and copy the file. That simple. You have to get ubunto, kaali or any version of windows which can be booted on USB.
Just boot the OS from USB by changing boot sequence from BIOS.
Go to the SAM directory.
Copy it to another folder or partition.
Now you can follow two ways to get the password.
Firstly,
"Now I have it, but the password is encrypted!" Now you get to the fun part, cracking the password. There are numerous programs available, but one of the best ones is called Cain, and can be downloaded from www.oxid.it/cain.html.
It outputs password, and you are done!
Also, another awesome trick is injecting passwords into the SAM.
Secondly,
You can change the SAM file of another Windows, with the same version, which's password you know.
After you replace the SAM file you can open the account using your own password.
Well then its hacked.....
No comments:
Post a Comment