How to Change a Windows User Password Using Backtrack

Boot Backtrack 4 in your computer., Once Backtrack is done loading and the select menu is visible, pick "Start Backtrack Frame Buffer (1024X768)". , Once you're allowed to type in commands, type in "startx". , Once the GUI is visible, go to...

21 Steps 1 min read Advanced

Step-by-Step Guide

Step 1: Boot Backtrack 4 in your computer.

(If it shows error "No such files or directory" check correct path to Chntpw executable in File manager). , We will first mount the windows partition first, so that we can access windows directory. ,, (Note:
Windows path should be case sensitive).

This will load SAM in chntpw. , "Edit user data and passwords".

It will display all username of Windows partition. ,, You can also type in 2 to edit it. , "To unlock account" and press Enter.

This will unlock the account and enable it for using. , and press Enter to return to main menu of chntpw. ,, Type "y" and press Enter to Write hive files. , Logout and Close Backtrack 4 and restart Windows!

Step 2: Once Backtrack is done loading and the select menu is visible

Step 3: pick "Start Backtrack Frame Buffer (1024X768)".

Step 4: Once you're allowed to type in commands

Step 5: type in "startx".

Step 6: Once the GUI is visible

Step 7: go to start(Lower-left corner) Backtrack >> Privilege Escalation >> PasswordAttacks >> Chntpw

Step 8: opening the Chntpw terminal.

Step 9: Now inside backtrack

Step 10: you need to find the file path to a file called SAM

Step 11: usually under 'Windows/System32/config/SAM'.

Step 12: Type in the following commands in shell console "mkdir /mnt/sda1" and press Enter Type again "mount -t ntfs /dev/sda1 /mnt/sda1" and press Enter.

Step 13: Now in the shell console type in "/pentest/passwords" Example in this case: "/pentest/passwords//chntpw/chntpw -i /Windows/System32/config/SAM".

Step 14: Type in 1.

Step 15: Type in the username of the Windows account you want to change the password in.

Step 16: Type in 1 to clear the password and press Enter.

Step 17: Once done

Step 18: type in the username of the Windows account you changed or cleared the password on and Type in 4.

Step 19: Type in "!"

Step 20: Type in"q" and press Enter to quit chntpw.

Step 21: Chntpw will confirm about the changes you made to SAM.

Detailed Guide

About the Author

Judy Vasquez

Specializes in breaking down complex home improvement topics into simple steps.

45 articles

View all articles

Rate This Guide

How helpful was this guide? Click to rate:

How to Change a Windows User Password Using Backtrack

Step-by-Step Guide

Step 1: Boot Backtrack 4 in your computer.

Step 2: Once Backtrack is done loading and the select menu is visible

Step 3: pick "Start Backtrack Frame Buffer (1024X768)".

Step 4: Once you're allowed to type in commands

Step 5: type in "startx".

Step 6: Once the GUI is visible

Step 7: go to start(Lower-left corner) Backtrack >> Privilege Escalation >> PasswordAttacks >> Chntpw

Step 8: opening the Chntpw terminal.

Step 9: Now inside backtrack

Step 10: you need to find the file path to a file called SAM

Step 11: usually under 'Windows/System32/config/SAM'.

Step 12: Type in the following commands in shell console "mkdir /mnt/sda1" and press Enter Type again "mount -t ntfs /dev/sda1 /mnt/sda1" and press Enter.

Step 13: Now in the shell console type in "/pentest/passwords" Example in this case: "/pentest/passwords//chntpw/chntpw -i /Windows/System32/config/SAM".

Step 14: Type in 1.

Step 15: Type in the username of the Windows account you want to change the password in.

Step 16: Type in 1 to clear the password and press Enter.

Step 17: Once done

Step 18: type in the username of the Windows account you changed or cleared the password on and Type in 4.

Step 19: Type in "!"

Step 20: Type in"q" and press Enter to quit chntpw.

Step 21: Chntpw will confirm about the changes you made to SAM.

Detailed Guide

About the Author

Judy Vasquez

Rate This Guide

More from Technology

How to Chrome Plate

How to Buy Books on the Kindle App

How to Convert eBooks with Calibre on Windows

How to Download an Xbox 360 Game

How to Set Up a New FTP Account in WiseFTP

How to Update Your Google Shopping Express Account Information

Step-by-Step Guide

Step 1: Boot Backtrack 4 in your computer.

Step 2: Once Backtrack is done loading and the select menu is visible

Step 3: pick "Start Backtrack Frame Buffer (1024X768)".

Step 4: Once you're allowed to type in commands

Step 5: type in "startx".

Step 6: Once the GUI is visible

Step 7: go to start(Lower-left corner) Backtrack >> Privilege Escalation >> PasswordAttacks >> Chntpw

Step 8: opening the Chntpw terminal.

Step 9: Now inside backtrack

Step 10: you need to find the file path to a file called SAM

Step 11: usually under 'Windows/System32/config/SAM'.

Step 12: Type in the following commands in shell console "mkdir /mnt/sda1" and press Enter Type again "mount -t ntfs /dev/sda1 /mnt/sda1" and press Enter.

Step 13: Now in the shell console type in "/pentest/passwords" Example in this case: "/pentest/passwords//chntpw/chntpw -i /Windows/System32/config/SAM".

Step 14: Type in 1.

Step 15: Type in the username of the Windows account you want to change the password in.

Step 16: Type in 1 to clear the password and press Enter.

Step 17: Once done

Step 18: type in the username of the Windows account you changed or cleared the password on and Type in 4.

Step 19: Type in "!"

Step 20: Type in"q" and press Enter to quit chntpw.

Step 21: Chntpw will confirm about the changes you made to SAM.

Detailed Guide

About the Author

Judy Vasquez

Rate This Guide

More from Technology

How to Chrome Plate

How to Buy Books on the Kindle App

How to Convert eBooks with Calibre on Windows

Related Guides

How to Download an Xbox 360 Game

How to Set Up a New FTP Account in WiseFTP

How to Update Your Google Shopping Express Account Information