06-01-2012, 10:26 AM
(08-22-2011, 07:45 PM)konspirasi Wrote:(08-22-2011, 07:09 PM)henz komunika Wrote: Ada yang tau gmn caranya buka password win7 dengan backtrack?? Soalnya laptop paman saya ga sengaja terkunci password krn dimainkan anaknya.
klo dekrip passwordnya lama bro prosesnya, soalnya satu2nya cara saat ini masih menggunakan brute force attack
tapi ane ada satu cara lagi, yaitu reset password
toolsnya menggunakan chntpw di folder /pentest/passwords/chntpw
tinggal jalankan:
Code:./chntpw -i "posisi file system" "posisi file sam"
mengapa file system dan sam? karena di dalam file system ada sistem pengamanan dari file sam yg berisi username dan password kita di OS Windows
klo ane kayak gini:
Code:root@bt:/pentest/passwords/chntpw# ./chntpw -i /media/disk/Windows/System32/config/SYSTEM /media/disk/Windows/System32/config/SAM
nanti muncul tampilan seperti ini:
Quote:<>========<> chntpw Main Interactive Menu <>========<>
Loaded hives: </media/disk/Windows/System32/config/SYSTEM> </media/disk/Windows/System32/config/SAM>
1 - Edit user data and passwords
- - -
9 - Registry editor, now with full write support!
q - Quit (you will be asked if there is something to save)
What to do? [1] ->
pilih no 1, lalu muncul seperti berikut:
Quote:===== chntpw Edit User Info & Passwords ====
| RID -|---------- Username ------------| Admin? |- Lock? --|
| 01f4 | Administrator | ADMIN | dis/lock |
| 01f5 | Guest | | *BLANK* |
| 03ea | HomeGroupUser$ | | |
| 03e9 | subidhar | ADMIN | |
| 03eb | UpdatusUser | | |
| 03ed | __vmware_user__ | | |
Select: ! - quit, . - list users, 0x<RID> - User with RID (hex)
or simply enter the username to change: [Administrator]
ada 2 (dua) user dengan privileged ADMIN, yaitu Administrator dan monyet, nah disini tergantung user yg brogunakan apa
note: kalau di kolom Lock? ada tulisan dis/lock berarti harus di unlock dulu, klo ga ada lanjut aja bro
misal kita pilih monyet, maka kita ketik monyet di sebelah [Administrator] seperti berikut:
Quote:Select: ! - quit, . - list users, 0x<RID> - User with RID (hex)
or simply enter the username to change: [Administrator] monyet
setelah ini akan muncul:
Quote:- - - - User Edit Menu:
1 - Clear (blank) user password
2 - Edit (set new) user password (careful with this on XP or Vista)
3 - Promote user (make user an administrator)
(4 - Unlock and enable user account) [seems unlocked already]
q - Quit editing user, back to user select
Select: [q] >
pilih 1 (satu) untuk reset password, karena akun tidak disabled/lock maka pada point no 4 ada tulisan "[seems unlocked already]"
terakhir tinggal ikutin saja langkahnya:
Quote:Select: [q] > 1
Password cleared!
Select: ! - quit, . - list users, 0x<RID> - User with RID (hex)
or simply enter the username to change: [Administrator] !
<>========<> chntpw Main Interactive Menu <>========<>
Loaded hives: </media/disk/Windows/System32/config/SYSTEM> </media/disk/Windows/System32/config/SAM>
1 - Edit user data and passwords
- - -
9 - Registry editor, now with full write support!
q - Quit (you will be asked if there is something to save)
What to do? [1] -> q
Hives that have changed:
# Name
1 </media/disk/Windows/System32/config/SAM>
Write hive files? (y/n) [n] : y
sudah di write hive files?
reboot komputer brodan lihat apakah password pada akun tadi telah dihapus atau belum
semoga bermanfaat
M
sumber:
blog ane sendiri
keren baget Om pejelasaannya dan sangat di megerti +1 om dari ane
Spoiler! :