Hey everyone,hi
I read a few tutorials on how to recover an admin's password (on a pc with win XP sp2), but I'm a little confused.
Since I was already trying Ubuntu anyway (from a livecd), I saved the sam file on a US (but here's a first problem: I found 4 sam files: sam.log, sam.sdf, sam.spd and one that's just called sam. I assume it's the last one that I need).
So is there a simple program that can decrypt the sam file? Or do I have to try something else?
the password is in the SAM FILE, without any extension.
for decrypting this file you can access www.loginrecovery.com , download a program, execute it ,save its files in a diskett, and boot the target computer with the diskette in.( assuming you configured your boot priority correctly)
It will save a file on the same diskette. U will need to upload this file in this site, wait up to 48 hours ( unless you pay for it, u don´t need to wait). And the password will be there.
The website will explain better than me.
good lucky!
Em São paulo tem mais hackers do que no resto do mundo
Forgot the password to your Windows admin account? There are a lot of different reasons why one would want to hack a Windows password. This tutorial will show you how to use John the Ripper to crack Windows 10, 8 and 7 password on your own PC.
SAM (Security Accounts Manager) is basically a registry file that is typically found in the latest version of Windows. The SAM file saves the user’s password into it in a hash format. The SAM file can be located at C: Windows system32 config but if you are thinking to locate this file to get access to the user’s password then it is not. Yes, you can use the cachedump (to dump cached credentials) and pwdump (to dump password hashes out of the SAM file) in combination with the system hive. You should have access to both files on the hard drive.
Step 1: Extract Hashes from Windows
Security Account Manager (SAM) is a database file in Windows 10/8/7/XP that stores user passwords in encrypted form, which could be located in the following directory:C:Windowssystem32config
The first thing we need to do is grab the password hashes from the SAM file. Just download the freeware PwDump7 and unzip it on your local PC.
Decrypt File Online
Open a Command Prompt. Navigate to the folder where you extract the PwDump7 app, and then type the following command:PwDump7.exe > d:hash.txt
Once you press Enter, PwDump7 will grab the password hashes from your current system and save it into the file d:hash.txt.
Windows Sam File Location
Step 2: Cracking Passwords with John the Ripper
As you can see the password hashes are still unreadable, and we need to crack them using John the Ripper. John the Ripper is one of the most popular password cracking tools available that can run on Windows, Linux and Mac OS X.
Just download the Windows binaries of John the Ripper, and unzip it.
Open a Command Prompt and change into the directory where John the Ripper is located, then type:john --format=LM d:hash.txt
It will start cracking your Windows password. In my example, you can clearly see that John the Ripper has cracked the password within matter of seconds.
Final Words
John the Ripper is probably the world’s best known password cracking tool. But its lack of a GUI interface makes a bit more challenging to use. Don’t use it for illegal purposes.