Password resetting and recovering techniques - gHacks Tech News

Password resetting and recovering techniques

There are several methods to reset and recover the password of a Windows administrator's account . The fastest method is to use a freeware tool like Offline NT Password & Registry Editor or the Linux live distribution Austrumi (update: not updated since 2009 so use with care).

The author of Offline NT Password & Registry Editor provides a bootdisk for the program while Austrumi is bootable right away after you burn it to CD or DVD. Detailed instructions on how to use the first tool are provided on the authors website, with Astrumi you simply enter nt_boot when the command prompt appears.

You could also try to bruteforce your way in again but this is not recommended because the other two methods are easier and faster. Plus, brute forcing only works if the Windows user account password is short. For long passwords, brute forcing is not an option at all.

Last but not least this was taken from a user comment and not checked out.

  • 1) copy cmd.exe out of system32
  • 2) rename as logon.scr
  • 3) paste it back in system32 and replace current one
  • 4) log off and wait for the screensaver. it will be a command prompt. use [net user]

If an admin account is available, it is without doubt the easiest to log into that account and change the user password this way. This works if an admin account without password is available, or if an admin account with password is available that you still remember the password of, or that someone else has control over.

It needs to be noted though that changing the user account password may have consequences for that user's files on the system. If files have been encrypted using the EFS encryption subsystem of the NTFS file system, then they are lost if the password is changed. If that is the case, brute forcing may after all be the better option to regain access to the user account.

Advertisement

We need your help

Advertising revenue is falling fast across the Internet, and independently-run sites like Ghacks are hit hardest by it. The advertising model in its current form is coming to an end, and we have to find other ways to continue operating this site.

We are committed to keeping our content free and independent, which means no paywalls, no sponsored posts, no annoying ad formats or subscription fees.

If you like our content, and would like to help, please consider making a contribution:


Previous Post: «
Next Post: »

Comments

  1. Kiltak said on January 5, 2006 at 5:08 pm
    Reply

    No problem, it was my pleasure!

    btw, the link that you published to my blog isn’t apparent, it’s only showing
    as normal text, even if it’s clickable.

    Cheers,

    Kiltak

  2. Kenny L said on January 5, 2006 at 8:26 pm
    Reply

    funny you should mention Austrumi…. i made a Detailed paper using this method… it can be downloaded from here

    http://www.codelinx.net/smashing_windows.pdf

    just to give an idea how to use this distro for account access

Leave a Reply

Check the box to consent to your data being stored in line with the guidelines set out in our privacy policy

Please note that your comment may not appear immediately after you post it.