Using LCP to extract a forgotten Windows Admin pwd. SAM & SYSTEM copies copied to a working XP system (from KNOPPIX) Problem is...

Posted on 2006-05-23
Last Modified: 2011-04-14
When I hit OK after entering the locations of SAM & SYSTEM it yields an error message that states:

Error while opening key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\COntrol\Lsa
The system cannot find the path specified.

The rest of the path to the error couldn't be shown in the small dialog box. The only path I found in that LSA registry entry was a %SystemRoot%\system32\ntmarta.dll  and that file looks pretty intact to me.

Thanks :)
Question by:CaptainPickard
    LVL 19

    Accepted Solution

    Do you *have* to crack it? You can very easily just reset it, even with syskey, using the NT pass reset util from:

    If you need to properly discover the password use pwdump via a Windows PE derivative (32bit "live" windows boot CD type thing), then RainbowCrack. BartPE is the common one floating around. RainbowCrack is a pre-compiled hash comparison cracker. It generates all possible hash combinations, then compares them to the dumped sam. The hashes take a few days to generate (unless you have the luxury of a 128-way sparc box) and will weigh in at several gigs, but will crack most admin passwords in seconds from a full set of hashes.

    Author Comment

    "You can very easily just reset it, even with syskey, using the NT pass reset util from:"

    I will assume this works - got the .iso burned - thanks!

    Featured Post

    Why You Should Analyze Threat Actor TTPs

    After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

    Join & Write a Comment

    How many times have you wanted to quickly do the same thing to a list but found yourself typing it again and again? I first figured out a small time saver with the up arrow to recall the last command but that can only get you so far if you have a bi…
    The purpose of this article is to demonstrate how we can use conditional statements using Python.
    Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
    Connecting to an Amazon Linux EC2 Instance from Windows Using PuTTY.

    734 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    20 Experts available now in Live!

    Get 1:1 Help Now