|
Cracking Windows passwords
To crack a Windows password you need to extract it from SAM.
Boot with Knoppix STD and launch a shell.
From the shell, you can view all your NTFS partitions via the LinuxNTFS built into Knoppix STD.
Navigate to the windows\system32\config directory.
Copy the SAM and system files to a cheap USB thumbdrive.
Take each of these files back to another Windows machine and fire up SAMInside. SAMInside uses SAM and system files to
extract the encrypted hash (the SAM file is double encrypted with SYSKEY. SAMInside gets around that).
Launch LC4. It will brute-force and dictionary-attack the hash marks. Once the hash has been matched, the final password
is displayed.
|
