Today we are going to do a little hacking with OPHcrack & ntpassword! These are the best pieces of software that I’ve encountered for cracking local PC passwords, and incredibly user friendly to boot. If you haven’t already done so, Checkout my last post covering YUMI for USB install instructions for OPHcrack.
Cracking a Basic Password
In order for OPHCrack to work it needs to run outside of Windows, which is convenient if say…you forgot your password 🙂 Boot to the device that you have installed OPHCrack on ( USB / LiveCd ) and select Run in “OPHCrack Graphic mode – Automatic”. From this point forward OPHcrack will take care of the rest – It will automatically open the window shown below and start a brute force attack to find all of the user accounts and passwords on the PC.
Advanced Password Cracking 101
If OPHCrack was unable to crack the Local machines passwords it means that the passwords used for those accounts were “Strong” passwords. Not to fret just yet though – we just have to roll up our sleeves a bit to get the job done now. You WILL need a large USB drive for the following instructions to work.
Since the default Dictionary brute force attack failed, we have to Download a set of new “Tables” for OPHCrack to use – The Tables Page can be found here. By default OPHcrack comes with the “XP Free Small” and ” Vista Free” Tables. Once you have downloaded your desired tables – Copy the tables to the “Tables” folder on your Flash Drive ( E:\tables ).
OPHCrack should now automatically detect and Load the new set of Tables the next time it runs. While OPHcrack can break passwords on Vista / 7 – it is much more effective on XP / 2000. OPHCrack has detailed why on their website.
****For advanced usage and details – Please Visit http://ophcrack.sourceforge.net/
No Luck Cracking the Password?
Lets just change it, With ntpassword!
Now this program is impressive! It Can bypass *ANY* password set on the PC and reset it – I just did a quick test and it took me all of 5 minutes to Download, install via YUMI and run. This is definitely the way to go on Vista / Win7!
- Donwload the .iso HERE.
- Use Yumi to add the .ISO file to a Flash Drive, or simply Burn the ISO to CD-rom.
3. Boot to ntpassword ( F12 at startup ) and Follow the on screen prompts to wipe / Reset account passwords!
***You should be able to simply hit Enter at each prompt in most cases.
A note from the author:
If password is reset on users that have EFS encrypted files, and the system is XP or newer, all encrypted files for that user will be UNREADABLE! and cannot be recovered unless you remember the old password again If you don’t know if you have encrypted files or not, you most likely don’t have them. (except maybe on corporate systems)
****For advanced usage and details – Please Visit: http://pogostick.net/~pnh/ntpasswd/