Advertise Here

Support our Sponsors

Saturday, July 5, 2014

Reset Windows 8.1 password with the free tool ntpasswd

I used ntpasswd for the first time on a Windows 2000 computer about 13 years ago, when I tried to crack Microsoft's new Encrypting File System (EFS) for a review for a German magazine. To my amazement, it took me only a few minutes to reset the administrator password and access the EFS files. Microsoft soon fixed the EFS vulnerability, but resetting the password still works on the latest Microsoft OS Windows 8.1 Update. You can't really blame Microsoft for this, because anything is doable whenever you can boot from a second OS and access an unencrypted Windows installation.

You can't set a new password with ntpasswd, but you can easily set a blank password on any account. Most admins will be able to use the tool without any instructions. The step-by-step guide below should work for Windows XP, Windows Vista, Windows 7, Windows 8, and Windows 8.1 with Update.

  1. After you download ntpasswd, you have to burn it on a DVD by right-clicking the ISO file. If you have an older Windows version that doesn't support ISO burning, you can use the free ISO Recorder. If you don't have an optical drive and you want to boot from a flash drive, you can use the free tool Rufus.
    Burn disc image
  2. Next, you have to ensure that the DVD or flash drive comes before the system drive in the boot order of your BIOS settings. Most PCs allow you to access the PC setup by pressing F2 right after you turn the PC on.
    Boot order
  3. After you boot ntpasswd, you should see the following screen. If you have more than one Windows installation on the computer, be sure to choose the correct one.
    Start screen
  4. On the next screen, you can just press Enter to start the password reset process.
    Password reset
  5. Press Enter to select "Edit user data and passwords."
    Edit user data and passwords
  6. Choose the user account where you want to reset the password. You can find the RID, which you have to enter now, to the left of the username.
    Select user
  7. You can now quit editing the user.
    Quit editing user
  8. Next, quit editing the SAM database.
    Quit
  9. On the next screen, confirm that you want to write back the changes by typing "y".
    About to write files back
  10. You are now done editing the SAM database. Just press Enter.
    Edit complete
  11. The password reset process is now completed. Reboot your computer by pressing CTRL-ALT-DEL.
    End of scripts

This wasn't difficult, right? If you are worried that someone might use ntpasswd or a similar tool, such asTrinity Rescue Kit, to get admin access to one of the computers in your network, you should read my next post, where I will explain what you can do to prevent such password reset hacks.



No comments:

Post a Comment

Get Thousands of Visitors for Your Website

autosurf

Get Free Dot Tk Domain

Earn Money by Just Shortening URL