Using OphCrack.

Using Ophcrack,You can crack account password of almost all the Windows till date,And since OphCrack is the fastest password cracking tool,it wont take more than 4-5 minutes to crack a password.So let’s begin –

What Do You Need ?

BackTrack 5 Live DVD.
Rainbow Files (i’ll tell you what it is.)
Physical Access to victim PC.

So What-The-Hell is Rainbow Files ?

First thing that pops in mind when reading rainbow files is the collection of rainbows and unicorns flying,but no,Rainbow Files/Tables are basically huge sets of precomputed tables filled with hash values that are pre-matched to possible plaintext passwords. The Rainbow Tables essentially allow hackers to reverse the hashing function to determine what the plaintext password might be. It’s possible for two different passwords to result in the same hash so it’s not important to find out what the original password was, just as long as it has the same hash. The plaintext password may not even be the same password that was created by the user, but as long as the hash is matched, then it doesn’t matter what the original password was.

So What Do I Need To Do ?

You need to download the rainbow tables matching to the OS Version of your victim PC,Get Them Here.You can download the smaller files because they will work,unless your victim is the Head of FBI who uses 28 letter long password.NOTE : the vista files will work for Windows 7 and Windows 8 too.

Everything is Downloaded and ready,Now –

Put the downloaded rainbow tables in a flash drive,and pick that BackTack 5 Live DVD too.

Let The Hack Begin –

Step 1 –
Boot the Victim PC with BackTrack Live DVD.
Step 2 –
Now Navigate To The Directory where windows password files are Stored.
WINDOWS/system32/config/
Step 3 –
Locate the Files “SAM” and “System”,and copy them to a new folder on BackTrack desktop.
Step 4 –
Run The OphCrack tool in backtrack by : start->Backtrack->Privilege Escalation->Password Attack->offline Attacks-ophCrack GUI.
Step 5 –
Go to “Load” and select “Encrypted SAM” in ophcrack tool.Now it will ask you to select directory that contains SAM folder. Select the directory where you saved the SAM file (new folder on desktop).
Step 6 –
Target The Administrator Account,remove other account off the list (if any).
Step 7 –
Plug in the pen-drive/flash drive,Extract The Rainbow Tables to Desktop.
Step 8 –
Click on the Table button in ophcrack tool. Now it will ask you to selec the table. Select the files as required.Click OK after that.
Step 9 –
Now Hit the Crack Button,and wait for 3-4 minutes,You will have the key in your hands .

So how was this tutorial ? you know i’m hungry for your guys feedback,so leave some in the comment section BELOW :

or

 

 

Ophcrack  is a free Windows password cracker based on rainbow tables. It is a very efficient implementation of rainbow tables done by the inventors of the method. It comes with a Graphical User Interface and runs on multiple platforms.


Features:

  • Runs on Windows, Linux/Unix, Mac OS X, …
  • Cracks LM and NTLM hashes.
  • Free tables available for Windows XP and Vista.
  • Brute-force module for simple passwords.
  • Audit mode and CSV export.
  • Real-time graphs to analyze the passwords.
  • LiveCD available to simplify the cracking.
  • Loads hashes from encrypted SAM recovered from a Windows partition, Vista included.
  • Free and open source software (GPL).



Download
Ophcrack is available in two versions (Vista Ophcrack and XP Ophcrack).You can download the latest version from the following link

Creating a bootable Ophcrack flash drive:

In the following tutorial, I will explain how to create an All In One USB Ophcrack Flash Drive. which can be used to recover, reveal or crack both Windows XP and Windows Vista login passwords.

  1. First download the Ophcrack XP Live CD ISO form the above link
  2. Insert your USB Flash Drive
  3. Download and run Universal USB Installer, select OphCrack XP, and follow the onscreen instructions
  4. Create a folder named vista_free inside the tables folder on your USB Flash Drive
  5. Download and unzip the tables_vista_free. zip to the tables/vista_free folder on your USB Flash Drive
  6. Reboot your PC and set your system to boot from the USB device
Hope this information helps you .In my next tutorial I will explain How to Hack windows password using Ophcrack Live CD/USB .Till then have a Nice time and keep visiting 

 If you have any doubts regarding the installation .Please feel free to post a comment 
 
 
 

or

 

 

 

Crack the Windows password with ophcrack:

After loading Live kali linux  go to the system menu  > ophcrack click ok

Ophcrack  uses Rainbow Tables to crack NTLM and LM hashes into plain text, its a free Windows password cracker based on rainbow tables. It is a very efficient implementation of rainbow tables done by the inventors of the method. If you have a complex password it will take a lot longer than simple passwords, and with the free tables your password may never be cracked.

Once the crack is done you will see the password in plain text, write it down and reboot the machine to login. If your password isn’t cracked, you can also log in as one of the other users with admin rights and then change your password from within Windows.

With the free tables available you will not be able to crack every password, but the paid tables range from $100 to $1000.Windows uses NTLM hashes to encrypt the password file which gets stored in SAM file. We simply need to target this file to retrieve the password

Now you can see the ophcrack application windows. Here, click on Load > Encrypted SAM

After that we need to give the path to SAM directory which is by default /mnt/hda1/WINDOWS/System32 click choose

Screenshot - Monday 18 August 2014 - 04:58:22 IST

Here we can see the saved hashed now with the username and userid.

Screenshot - Monday 18 August 2014 - 04:59:31 IST

Now click on Crack button and wait for the password. Its quick and easy

Screenshot - Monday 18 August 2014 - 05:00:54 IST

That’s it. It’ll show the password , if you unsuccessfully go with free tables.  I downloaded the xp free small and the Vista free tables. Once you have downloaded the tables you will need to unzip them in separate folders. I made a folder called “hash-tables” and then made 2 more folders within for each table to unzip to.

Run the program and click on “Tables” button. Select the table you downloaded and click “Install”, navigate to the folder where you unzipped the table, select it and then click “ok.” You should see green lights next to the tables you installed.

Screenshot - Monday 18 August 2014 - 05:00:08 IST

Screenshot - Monday 18 August 2014 - 05:01:25 IST

Reset Windows password with chntpw:

Navigate to the Windows password database file. Almost all versions of windows password is saved in SAM file. This file is usually located under /Windows/System32/config. On your system it may look something like this: /media/hda1/Windows/System32/config.

The SAM database is usually in the /media/name_of_hard_drive/Windows/System32/config

Type command chntpw -l SAM and it will list out all the usernames that are contained on the Windows system.

#chntpw -l   SAM
The command gives us a list of usernames on the system. When we have the username we want to modify and we simply run the command chntpw -u “username” SAM

Screenshot - Tuesday 19 August 2014 - 11:35:00 IST

In the example below we typed: chntpw -u “Sanjai sathish” SAM and we get the following menu:
#chntpw -u Sanjai sathish

Screenshot - Tuesday 19 August 2014 - 11:36:50 IST

We now have the option of clearing the password, changing the password, or promoting the user to administrator. Changing the password does not always work on Windows 7,8 systems. it may works on XP system, so it is recommended to clear the password. Therefore you will be able to log in with a blank password. You can also promote the user to a local administrator as well.

by vishal waghmare