Once Backtrack is done loading and the select menu is visible, pick "Start Backtrack Frame Buffer (1024X768)".
3
Once you're allowed to type in commands, type in "startx".
4
Once the GUI is visible, go
to start(Lower-left corner) Backtrack >> Privilege Escalation
>> PasswordAttacks >> Chntpw, opening the Chntpw terminal. (If it shows error "No such files or directory" check correct path to Chntpw executable in File manager).
5
Now inside backtrack, you need to find the file path to a file called SAM, usually under 'Windows/System32/config/SAM'. We will first mount the windows partition first, so that we can access windows directory.
6
Type in the following commands in shell console
"mkdir /mnt/sda1" and press Enter
Type again "mount -t ntfs /dev/sda1 /mnt/sda1" and press Enter.
7
Now in the shell console type in "/pentest/passwords//chntpw/chntpw -i <SAMFILEPATH>"
Example in this case: "/pentest/passwords//chntpw/chntpw -i
/Windows/System32/config/SAM". (Note: Windows path should be case
sensitive). This will load SAM in chntpw.
8
Type in 1. "Edit user data and passwords". It will display all username of Windows partition.
9
Type in the username of the Windows account you want to change the password in.
10
Type in 1 to clear the password and press Enter. You can also type in 2 to edit it.
11
Once done, type in the username of the Windows account you changed or cleared the password on and Type in 4. "To unlock account" and press Enter. This will unlock the account and enable it for using.
12
Type in "!" and press Enter to return to main menu of chntpw.
13
Type in"q" and press Enter to quit chntpw.
14
Chntpw will confirm about the changes you made to SAM. Type "y" and press Enter to Write hive files.
15
Done! Logout and Close Backtrack 4 and restart Windows!
1Boot Backtrack 4 in your computer.Ad
2Once Backtrack is done loading and the select menu is visible, pick "Start Backtrack Frame Buffer (1024X768)".
3Once you're allowed to type in commands, type in "startx".
4Once the GUI is visible, go to start(Lower-left corner) Backtrack >> Privilege Escalation >> PasswordAttacks >> Chntpw, opening the Chntpw terminal. (If it shows error "No such files or directory" check correct path to Chntpw executable in File manager).
5Now inside backtrack, you need to find the file path to a file called SAM, usually under 'Windows/System32/config/SAM'. We will first mount the windows partition first, so that we can access windows directory.
6Type in the following commands in shell console
7Now in the shell console type in "/pentest/passwords//chntpw/chntpw -i <SAMFILEPATH>"
8Type in 1. "Edit user data and passwords". It will display all username of Windows partition.
9Type in the username of the Windows account you want to change the password in.
10Type in 1 to clear the password and press Enter. You can also type in 2 to edit it.
11Once done, type in the username of the Windows account you changed or cleared the password on and Type in 4. "To unlock account" and press Enter. This will unlock the account and enable it for using.
12Type in "!" and press Enter to return to main menu of chntpw.
13Type in"q" and press Enter to quit chntpw.
14Chntpw will confirm about the changes you made to SAM. Type "y" and press Enter to Write hive files.
15Done! Logout and Close Backtrack 4 and restart Windows!
Post a Comment