We have new forums at NiteshKothari.com
TopBottom

Did you like this Blog?
Subscribe for my feeds to get updates:



Subscribe Via Email for Free:
TwitterCounter for @milanparmar

Announcement: wanna exchange links? contact me at clwolvi@gmail.com.

How to Recover Windows Password

Posted by Milan at 9.08.2009
Share this post:
Ma.gnolia DiggIt! Del.icio.us Yahoo Furl Technorati Reddit

Want to crack windows passwords try this trick. There are also a lot of ways and hacks to allows Windows users to find and get back their forgotten password for the Windows user account. If you're the regular normal user, you can still log on to the administrator account to reset the password, but if you're using the administrator user id itself, then you're out of luck. Some service such as Login Recovery helps to retrieve and recover the Windows user name and password for Windows XP, 2000, NT and Longhorn Server. However, you will need to let the third party process the password recovery, which effectively reveal the password to them. For security reason, now you can recover and get back the Windows user or admin password from local computer which you've forgot the password itself with Ophcrack 2, with password retrieval process takes place locally.


Ophcrack2 is a open source Windows password cracker or password auditing utility which is an improvement over original Ophcrack 1.0 developed at EPFL. Ophcrack hacks and cracks the Windows password LM hashes based on a time-memory trade-off using rainbow tables. Basically, Ophcrack works by using rainbow tables which contains precomputed hashes of possible alphanumeric and character table sets, so that the program can iteratively compare the windows hashes to precomputed bits and compute the hash and its value more quickly in a more effective way than brute-force guessing. Thus, Ophcrack features ability to reveal, recover and crack most of the alphanumeric passwords which contains up to 14 characters almost immediately, usually within just a few seconds, and at most a few minutes.

Ophcrack 2 comes in the form of Windows installer (currently Ophcrack 2.3.3) and Ophcrack LiveCD (currently Ophcrack LiveCD 1.1.3) which automates the retrieval, decryption, and cracking of passwords from a Windows system. The Ophcrack Live CD contains a live linux distribution, ophcrack and an alphanumeric table set (SSTIC04-10k). The CD is bootable and will automatically load linux, search for Windows partitions and then extract Windows' SAM to start ophcrack to crack the password hashes it finds. Without installing anything on the PC, LiveCD allows users to not only recover and retrieve their lost or forgotten password, but also to hack and crack the passwords on any Windows machines, although it can be used for testing the strength of passwords.


Ophcrack 2.3 comes with a GTK+ Graphical User Interface and runs on Windows, Mac OS X on Intel CPU and Linux. Ophrack Windows installer, Linux source package and Ophcrack LiveCD can be downloaded from SourceForge. For Ophcrack LiveCD, you must burn it to a CD in order to use it to boot up the computer. For Windows installer and Linux source, you will also need to download Rainbow alphanumeric table sets from http://lasecwww.epfl.ch/~oechslin/projects/ophcrack.

It has 2 rainbow alphanumerical tables sets available for free, SSTIC04-5k (720MB) for machines with at least 512M of RAM, and SSTIC04-10k (388MB) for machines with at least 256M of RAM. You can opt to download the rainbow tables component automatically and directly from the installer itself.



If you cannot log on to the Windows because you have forgot the password, the LiveCD is the way to go. To use Ophcrack windows app, just install it and run it. Click on Load and select the appropriate password LM (LAN Manager) hash to use. If you have already dump and save the hash with utility such as pwdump2, then choose "PWDUMP File". Else you can choose encrypted SAM to allows Ophcrack to dump the hashes from the SAM and SYSTEM files retrieved from a Windows machine while booting on another disk, where there is no need to know a Windows administrator password to get the hashes. Other options been local SAM which dumps the hashes from the Windows machine the program is running on and remote SAM which dumps the hashes of a remote Windows machine, which both require the username and password of an administrator and the later also requires the name of a share.

Next, click on Tables, and select the location or folder that you store the rainbow hash tables downloaded or installed by the installer. The select the tables type you want to use. And finally, click on Launch button to start the cracking process.

If you're using uppercase letters, lowercase letters and numbers only in your Windows password, then the free rainbow table sets should works for you. However, if you're using special characters, or wish to crack NTLM hashes, then the table sets is not distribute for free download. You can order and purchase WebSec06 WS-20k table sets which can crack passwords made of mixed case letters, numbers and 33 special characters including the space character, and NTHASH table sets which cracks NTHASH hashes when LMHASH has been disabled from Objectif Securite

Credit

Labels:

0 comments:

Post a Comment