in

Resetting Windows Administrator Password Using Linux

- - 19 comments
Resetting Windows Administrator Password Using Linux: In case you or a friend of yours has forgotten his/her Windows administrator password, or in rare case your password management software screws up, there’s no need to panic as you can easily reset the password provided you have the right tools. One way to do this is to use Linux as your knight in shining armor.

I’m going to show you how you can smoothly reset a Windows Administrator password using Linux. You will only need a Live CD, and for this example, we will utilize Ubuntu. Also, I assume that you have the basic knowledge on using the Linux command line.

Now let’s get started:

The first thing you have to do is of course load your Ubuntu Live CD. You don’t have to install it, just boot straight into the desktop. Then, install a program called ‘chntpw’:

$ sudo apt-get install chntpw

After successfully installing ‘chntpw’, you have to access the Windows NTFS partition by mounting it and allowing read/write support. A good tutorial on how to do this can be found HERE.

After that, use your command line skills by navigating to ‘WINDOWS/system32/config’.

Once inside the ‘config’ directory, issue this command:

$ sudo chntpw SAM

A long display of information will follow. Just ignore them.

Once you are prompted to reset the password, it is recommended to leave the password blank with an asterisk *. Reboot, and you can now login to freakin’ Windows.

19 comments

  1. Hey, this is excellent, just a question, I need to write an * or just leave a blank space?

    ReplyDelete
  2. Hey, you can also use the sysrescuecd distro, It include ntpass tool that allow to reset administrator's password.

    SysrecueCD have a livecd version.

    more info at:
    http://www.sysresccd.org

    ReplyDelete
  3. Asterisk tells the program to blank the password, so you actually need to enter the * character.

    I actually have a live CD that's entire purpose is to reset Windows passwords. I can't find where to download it anymore (it was a floppy image that I converted to CD) but if you're interested I can make an ISO and upload somewhere.

    ReplyDelete
  4. This is a good tip - I wondered how the Offline NT Password and Registry Editor (http://home.eunet.no/pnordahl/ntpasswd/) worked - it's essentially an automated version of what you do here!

    I'll still use the one I mentioned as it's quick and easy, but it's nice to know the ingredients that go into the sausage!

    -darnitOL (http://darnitol.blogspot.com)

    ReplyDelete
  5. Doesn't 'sudo apt-get' assume you have a network connection? This may make it more difficult if the computer has a wireless adapter not recognized by Ubuntu.

    I'll opt for SysRescueCD.

    ReplyDelete
  6. If you are locked out of your BIOS so you cannot boot from the CD, you are still screwed.

    ReplyDelete
  7. What's the point of having a password if it can be hacked so easily?

    ReplyDelete
  8. Hey I got this error: Cannot find value <\SAM\Domains\Account\Users\Names\Administrator\@>
    Hives that have changed:
    # Name
    None!

    ReplyDelete
  9. I get a message:
    Hives that have changed:
    # Name
    None!

    ReplyDelete
  10. > What's the point of having
    > a password if it can be
    > hacked so easily?

    This is precisely why it's important to control physical access to any box you intend to keep secure.

    ReplyDelete
  11. There is an even easier solution, check out the linux LiveCD distro called OphCrack. It's an idiot-proof and fully automated solution. And you don't have to worry about the implications and ramifications of network access (to do the apt-get install).

    ReplyDelete
  12. AnonymousJune 23, 2009

    "What's the point of having a password if it can be hacked so easily?"

    The point is that technique described above doesn't crack, hack or anything. It just reset administrator password. Password can be resetted on every operating system. Well, maybe not on every but definitelly on every open source systems like Linux. To get root access on linux (open source) machine is far more easier than on windows (closed source). However you can use just windows boot CD to reset admin password.

    Once again, reseting is not cracking, so all your encrypted files and informations will be lost forever!

    ReplyDelete
  13. AnonymousJuly 04, 2009

    i found my sisters old laptop but it has a administrator password at the sartup my sister for got it so cand anybody help me its a dell inspiron 8100

    ReplyDelete
  14. I think the best way for you is to reset your windows password. The Windows password Reset 6.0
    can solve all your problem within a few minutes. Importantly,No need to call a technician, no need to re-install anything, and you certainly don't need to reformat.

    ReplyDelete
  15. anyone know of a method to actually find out the existing admin password rather than change it?

    ReplyDelete
  16. There is noch install-file chntpw found if i use sudo apt-get install chntpw on my ubuntu 11.04 live - CD. How can i get this?

    ReplyDelete
  17. Will this work on a Mac.. If not how could i use something like this to find my Mac password

    ReplyDelete