Users online right now: 66 - Login  » search  » forum index  

How do I retrieve a password?

Godot
wrote 8 years ago


reply
Sorry if the answer to this question is obvious, but I'm really new to this and I don't know much about computers. I downloaded ophcrack for the sole purpose of retrieving a password (although I don't want to change it) on my computer. However, I have no idea how to do that. Any help?
 
markds
wrote 8 years ago


reply
Ordinarily I wouldn't tell you how, because theres no real reason to wanting the password,and needless to say, if you don't know how to use it, you shouldn't be. But considering if you just type the word Ophcrack into google you'll find the solution in 2 seconds, I will point you in the right direction.

Ophcrack uses the Rainbow tables (read http://en.wikipedia.org/wiki/Rainbow_table for more info, its actually very interesting). If you downloaded the application from ophcrack.sourceforge.com, you don't need linux to run it. There is a windows version which you can install on your Windows and crack the passwords, only drawback for both is you have to download the proper Rainbow tables from the internet or from the CD/DVD which I guess you have to purchase. To crack passwords with _any_ kind of characters, even non alphanumeric, the full Rainbow tables is required and that is over 8GB.

Anyway to save you time and trouble, there is a livecd iso based on SLAX 6.0.0rc5 that contains Ophcrack and the a minimal set of the Rainbow tables (for alphanumeric passwords only, no punctuation or special characters). On boot up it will run automatically to search out the LM/NTLM hashes and crack the passwords. The ISO is available here :

http://sourceforge.net/project/showfiles.php?group_id=133599

Its pretty good, booted up with the old Slax clover splash and loaded Ophcrack immediately after the system got going. Asked me which partition had the Windows hashes (gives you selections and lets you choose), then it runs on its own. Cracked a pretty robust 16 character alphanumeric password in under 300 seconds, and that was on an old P4 3GHz machine. I'm sure it'll be faster on today's machines.


Godot wrote:
Sorry if the answer to this question is obvious, but I'm really new to this and I don't know much about computers. I downloaded ophcrack for the sole purpose of retrieving a password (although I don't want to change it) on my computer. However, I have no idea how to do that. Any help?
 
Godot
wrote 8 years ago


reply
The link you gave me took me to a version of ophcrack that I already downloaded... It was complicated and I had no idea how to get the password. Again, I don't know anything about computers, so things that may seem simple to others are very complicated to me... could somebody give me (or give me a link to) a step-by-step process on how exactly to retrieve a password?
 
Guest
wrote 8 years ago


reply
Chill Godot. Learn about computers a little, before you start stealing passwords from your school admin or sister or whatever. It is a Windows tool, and as far as I am concerned, I think mark was very kind with your. Your problem has nothing to do in here.
 
Godot
wrote 8 years ago


reply
I guess you're right, and thank you Mark for giving me so much information. I just really needed an easy way to get the password, but I won't delve into why. I'll continue trying and take my questions elsewhere. Thanks again.
 
ben_coh
wrote 8 years ago


reply
NB : Ophrack isn't just a Windows tool ....
 
markds
wrote 8 years ago


reply
As Ben said, Ophcrack isn't just a windows tool, I think I mentioned there that there is a linux tool and a live cd where basically you just have to burn the ISO to a cd and boot up with it and it'll start cracking your passwords for you. How much easier does it get unless you don't even know what a livecd is?
 
a guy who needs help
wrote 8 years ago


reply
i as well have a ophcrack problem

i have downloaded the ophcrack iso and then burnt it to a disk
all goes well when booting it up until it comes to loading the user interface
i will see the black screen with the [X] curser in the middle
then it will go black and then go to the screen like this

------------------------------------------------------------------------------------------------------
Welcome to Slax
------------------------------------------------------------------------------------------------------
System is up and running now.

Log in as "root with password as ............................ETC.


There is a list of commands there as well
i used -xconf- to configure my card and try again
then i will sue the command -startx- to try and restart the interface
it will repeat the black screen process and then
it gives me the error : Invalid ELF header.

can anybody help me
it would be greatly appreciated
 
markds
wrote 8 years ago


reply
You either have a bad downloaded iso or an incompatible video card. Thats my guess.

a guy who needs help wrote:
i as well have a ophcrack problem

i have downloaded the ophcrack iso and then burnt it to a disk
all goes well when booting it up until it comes to loading the user interface
i will see the black screen with the [X] curser in the middle
then it will go black and then go to the screen like this

------------------------------------------------------------------------------------------------------
Welcome to Slax
------------------------------------------------------------------------------------------------------
System is up and running now.

Log in as "root with password as ............................ETC.


There is a list of commands there as well
i used -xconf- to configure my card and try again
then i will sue the command -startx- to try and restart the interface
it will repeat the black screen process and then
it gives me the error : Invalid ELF header.

can anybody help me
it would be greatly appreciated
 
a guy who needs help
wrote 8 years ago


reply
i think you are right
i just downloaded slax and it is giving me a similar problem
probably a junk video card
thanks for the help =]
 
mox
wrote 7 years ago


reply
basically. I have burned the iso image and started it on reboot, but then, it looks like the windows blue screen is coming up, and an error message occurs. it reads.... when trying to update a password the return value status is that the password is not correct...Im very frustraded since ive been tryiing to fix this laptop for days, not getting wireless then going into system restore then this crap . any ideas?
 
jcsoh
wrote 7 years ago


reply
@ mox

Are you trying to retrieve windox xp password ? . Provided your your partition is not encrypted (I am told if you partition is encrypted , reseting the password will lead to data lost) , then just use Offline NtPassword . It won't crack or retrieve the password but wuill merely reset it so you can just set a new pass word.

http://home.eunet.no/pnordahl/ntpasswd/
 
Dude
wrote 7 years ago


reply
jcsoh wrote:Provided your your partition is not encrypted (I am told if you partition is encrypted , reseting the password will lead to data lost) , then just use Offline NtPassword .
Read the second question on their "FAQ" page :)
http://home.eunet.no/pnordahl/ntpasswd/faq.html
 
jcsoh
wrote 7 years ago


reply
@ Dude

"Read the second question on their "FAQ" page :)"

Thanks . I didn't bother following up with Offline NtPassword as I am not really using window xp anymore (although I still have it on my hard disk) . I know it work because I used it once to reset my window xp password.
 
villain
wrote 7 years ago


reply
wind00fs password fun: http://www.speedyshare.com/137454887.html
chntpw changes win passwords; samdump2 gives you the password hashes to crack.
One module, because it's still small and those two fit well together.
 
Metalx1000
wrote 7 years ago


reply
Here is a version of Slax I just made. It's the easy way to automate chntpw to clear out passwords from a Windows machine.
http://www.youtube.com/watch?v=6bKHIIkfing
http://filmsbykris.com/customdistros/index.php?page=chntpwall_v1.php
 
qwerty
wrote 7 years ago


reply
Like this:

----------------------------------------------------------------------------------------------------------------------------
Posted by xatar
Hi all,

To explain kirmet's question. the windows password has been stored in the SAM database (local windows accounts, not domain!) with the Lan Manager Hashing algorithm as well as the newer NTLM hashing algorithm.

The LM hash is old, it was used for Window 3.1, 95, 98 etc. You do not need it anymore, in fact I would advise that you switch it off with either a registry change or through local security policies.

The LM hash is insecure because it takes your password and immediately converts it to UPPERCASE. This removes any case sensitivity you had. It then splits your password into two 7 character passwords, padding out the second to make 7 characters. e.g.

PaSshave58
PASSHAVE58
PASSHAV
E58

It then hashes (one way encryption) the two passwords seperately...

PASSHAV = 7713c9168576a5ff
e58 = 194db5b7f19c8340

It then concatenates them...

7713c9168576a5ff194db5b7f19c8340

And that is stored in the SAM database along with the NTLM hash...

8cacb1edb77fc056c50315feda39c8d6

The NTLM hash is stronger as it hashes the password with case sensitivity and can accept up to 254 characters (I think!).

Now that the revision is out of the way, to answer your question...

John The Ripper has broken the second half of the LM hash - e58 and not the first. Did you do a brute force attack or a dictionary attack? The advantage of doing a dictionary attack is that it is very quick, just a couple of minutes to get through a decent sized dictionary, but the password HAS to exist in the dictionary file. The advantage of a brute force is that you will get the password eventually, but it may take a long time.

Now, the rest.

In Back|Track (I'll show you the syntax's with Back|Track instead of Auditor/Whax as it is the latest)

First off, boot your Windows machine with the Back|Track CD.

It should automatically mount the windows partition, if not...

root@slax:/# mkdir /mnt/win
root@slax:/# mount /dev/hda1 /mnt/win
root@slax:/# cd /mnt/win/WINDOWS/System32/config
root@slax:/# cp SAM /tmp
root@slax:/# cp system /tmp

That copies the two required files - SAM and system to the /tmp directory. Now you need to prepare the dictionary file.

root@slax:/# cd /pentest/password/dictionaries/
root@slax:/# gunzip -c wordlist.txt.Z > /tmp/wordlist.txt
root@slax:/# cd /tmp

Now you need to decrypt the SAM file...

root@slax:/# bkhive system key

Now extract the SAM file contents to a text file.

root@slax:/# samdump2 SAM key > hashes.txt

Now run John to break the passwords.

root@slax:/# john -w=wordlist.txt hashes.txt

By default it attacks the LM hash, but you can force it to the NTLM hash.

root@slax:/# john -w=wordlist.txt -f=NT hashes.txt

If the passwords appears in the dictionary file, then john will crack it quickly. If not, then you will have to carry out a brute force attack. (Rainbow tables is another very effective option, but Back|Track does not have any tables inbuilt as they are HUGE!)

----------------------------------------------------------------------------------------------------------------------------

now you may not understand certain things and what nots but if your really interested in RETRIEVING the pass this post will take you on the right track
the post is from the backtrack forums (distro dedicated to pentesting)
 
BerryHuston
wrote 3 years ago


reply
It is not difficult to reset windows password.
Take a try with Windows Password Unlocker
http://windows8password.com/
It is the right tool can help you reset forgotten passwords of Windows local administrator, domain administrator and other user accounts on Windows. And It will not destroy any computer data and setting.
 
susansusan15
wrote 2 years ago


reply
I am so interested in how to retrieve lost password, so i DO SOME researching about it, and find a website tha about it, that is SmartKey Password Recovery, I know it from http://www.recoverlostpassword.com
 
Hidence
wrote 1 year ago


reply
Nowadays, it is not so hard for Windows users to remove or reset a Windows password. All you need is a useful tutorial to teach you how to reset it. Here is a simple guide for you to learn how to retrive a password easily.http://www.lostwindowspassword.com
 
sulewel
wrote 303 days ago


reply
susansusan15 wrote:
I am so interested in how to retrieve lost password, so i DO SOME researching about it, and find a website tha about it, that is SmartKey Password Recovery, I know it from http://www.uukeys.com/reset-windows-10-password.html


This is better than ophcrack, which takes a much longer time to find the password. This program directly reset the password so it's faster.
 

  » search  » forum index  

Post your reply

Your name (Login):

Message:

These HTML tags are allowed: <quote>, <b>, <u>, <i>, <pre>, <code>, <small>, <h1>, <h2>, <h3>, <li>



Slax is generously supported by: P&P Software GmbH and wisol technologie GmbH