System Security: five methods of system password cracking

Source: Internet
Author: User
Tags net command

Comments: 1. ERD2003 uses ERD2003 to forcibly modify the password of the system administrator. This method is simple and easy to operate and is effective for 2000/xp/2003 systems. The following describes the usage of this software. 1. Download the iso of ERD2003 and burn it to a boot CD. It is best to burn the image directly. 2. set the system to start from the CD and enter "System & rdqu 1. ERD2003 uses ERD2003 to forcibly modify the password of the system administrator. This method is simple and easy to operate and is effective for 2000/xp/2003 systems. The following describes the usage of this software. 1. Download the iso of ERD2003 and burn it to a boot CD. It is best to burn the image directly. 2. Set the system to start from the CD. after entering the "System", ERD2003 will make some settings for the system's network and other hardware devices. In short, select "yes" if you want to choose. 3. Next, ERD2003 will search for all installed systems on your hard disk, and then select the system you want to modify. 4. wait patiently. after entering the system, press start-administrative tools-locksmith to enter the force password change interface. The pop-up dialog box will show you the user name you want to change the password, after selecting the password, you can forcibly change the password without entering the original password. Then click NEXT and restart. Ii. Windows KEY 5.0 in passware kit 5.0 also has some tool discs with this program, which can be run directly on the CD. If the disc cannot be found, run passware kit 5.0 to generate three files: TXTSETUP. OEM, WINKEY. SYS, and WINKEY. INF. The three files are 50 kb in total. Place the three files on any floppy disk, start the computer using the XP installation CD, and press F6 to enable the system to adopt a third-party driver. At this point, it is the best time for us to switch in. If we put this disk, it will automatically jump to the Windows KEY interface. The software will automatically detect the Windows 2000/XP/2003 Table installed in the system for the user to choose from. When the prompt "Please enter your selection 1...?" appears ..? Or 0 to quit: "(according to the number of installed operating systems detected,"?" A number between 1 and 9. Then, the message "Set local Administrator password to '123' is displayed '? (Y/N): ", that is, whether to change the" Administrator "password to" 12345 ", and press the Y key. The software first automatically backs up the original password, then, change the "Administrator" password to "12345 ". Remove the disc from the optical drive and restart the computer. If the "Administrator" user is not listed on the Windows XP welcome page, press Ctrl Alt Del twice in a row, in this case, the user name and password dialog box appears. Enter "Administrator" in "User Name", and enter "12345" in "password ", click OK to log on to Windows XP. Tip: When you log on to Windows XP for the first time, the system will prompt you that your password has expired. Do you want to modify the password. You can choose one as needed. This method can also restore the original password !! If you only need to temporarily use the system and want to restore the original "Administrator" password after using Windows XP, follow these steps. Follow Step 1 and Step 2 to change the "Administrator" password, and the prompt "wocould you like to undo Windows XP/2000/NT Key changes? (Y/N): ", press the Y key, the software will automatically restore the original" Administrator "password, and then the prompt" Set local Administrator password to '123 '? (Y/N): ", press the N key. Do not change the" Administrator "password to" 12345 ". Remove the disc from the optical drive and restart the computer to restore the password. 3. DreamPackPL uncompress the downloaded software dreampackplage to a hard disk, then run the dreampack.exe file in it, select the optical drive of the Windows installation CD on the software interface, and click "Make iso cd image". The program will create an ISO image, you need to specify the directory to save the image file. After the image is created, use the CD recording software to burn the image file to the CD, and then use the CD to boot the computer. Windows Installer runs automatically. Press R to enter the fault recovery console. Then, the installer automatically displays all installed Windows operating systems. Use the number key to select the fault recovery console of the operating system you want to access, and press Enter. You don't have to worry about entering the administrator password. We don't know what the password is, but you just need to press enter to skip this step. Then enter the System32 Folder: cd system32, and rename the file sfcfiles. dll under the directory to another name: ren sfcfiles. dll sfcfiles. lld. Copy the pinball. ex _ file from the I386 directory on the CD to the System32 folder and name it sfcfiles. dll: copy d: \ i386 \ pinball. ex _ sfcfiles. dll. Now all the preliminary work has been completed. Take out the CD, enter the exit command to exit the console, and restart the computer. All the above is to replace sfcfiles in the system. dll file. Therefore, if your operating system is installed in the partition of the FAT32 file system, it is simpler. You only need to use the Windows 98 boot disk to direct the computer to DOS, and use sfcfiles in the DreamPackPL package under DOS. replace the dll file with the original file of the same name in the System32 directory (do not forget the file protection in Windows, and replace the backup file ). Forgot the password of the Administrator account on the computer. Click the "Details" button on the Interface displayed after the restart. Then, you can see a similar interface as the usual account management interface, and select the account whose password is to be modified, click "Reset Password" at the bottom of the window, enter the new password, and click "OK. 4. Other Methods 1. A software for dos password cracking, DOSPASS. 2. press Shift F10 when you start the installation interface with the installation disk to open a command line window, and use net user administrator 123 to change the password to 123, run SHIFT F10 to open CMD and run SET without adding parameters to view the password. 3. Use office nt password & registry editor. This software can be used to create a LINUX boot disk, which can access the NTFS file system, so it can support Windows 2000/XP. You can use NTPASSWD, a tool running in LINUX on this floppy disk, to solve the problem and read the registry and rewrite the account. The usage is simple. You only need to follow the prompts after the startup to do it step by step. We recommend that you use the quick mode to list users for you to change the user password. By default, users in the ADMIN group are selected, and users whose ADMINISTRATOR name is replaced are automatically found, which is very convenient. 5. How to crack the password of Windows2000/WindowsXP/Windows2003 in other legends on the Internet 1. go to DOS to delete the sam file. This method is valid for win2000 and not only for xp and 2003, but also for system deadlocks and completely unusable. 2. Start and enter the console with winpe, and then manually add a user using the DOS command-unless the original administrator password (the Administrator in security mode) is not set, it will be invalid. 3.change the screen saver name and rename cmd.exe to logon. scr (of course, it has to be mounted on another machine). After the instance is started up, it will wait for 10 minutes to go to screen protection. In fact, it will go to the doscommand line interface, you can use the net command to add a user, which has been proved to be in sp1, sp2, and 2003. In this way, after entering dos, the permission is not an administrator, and thus the user cannot be added. 4. mount the hard disk to another machine, test the sam file in the system32 folder, and use lc4 for brute force decryption-Theoretically, yes. Open and create a new task, then, press "IMPORT → Import from SAM file" to open the SAM file to be cracked. Then, LC4 automatically analyzes the file and displays the user name in the file; then click "Session → Begin Audit" to start cracking the password. However, if the password is complex, the decryption time will be extremely long. 5. If the machine is connected to the Internet, try SMBCrack.

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.