Sorry :(
Our Image server is on a maintenance now,
You will not see the image correctly
please check back shortly. . .
Crack Windows Password Using RCrack, Pwdump, and Rainbow Table
Type : Tutorial
Level : Medium, Advanced
Requirement : Rainbow Table, rCrack, PwDump7, Basic CMD Prompt
According to my last tutorial about generating Rainbow Crack using WinRTGen, now I want to share tutorial about how to crack Windows password, and how easy it is..:-). This tutorial usually used to recover your Windows password accidentaly forgot.
7 years ago at the 1st time I learn about IT, my classmate tell me that if you want your password hard to be cracked you should fill it with alpha-numeric and also character and your password should not below 15 chars. Yep that's true 
because if you only have password between 1 – 10 chars (all chars) it will be more easier to crack and the cracker maybe only need 1 or 2 minutes to decrypt your password.
In this tutorial, I have one user account "mycomp" as administrator and the password is reveal123, I use only 1 – 10 alphanumeric password characters for the example(it takes long time to generate the table…believe me..:p LoL), but the process is the same for the password more than that, so don't worry about it. Once you know about it, it will be easier on the next step.
1. As usual, at the first time you need to prepare the tools to doing this(rCrack and PwDump), but I've already make it simple to bundle all of the latest application into 1 file and you can download it below(Choose one).
2. Extract all of the application, then create a new folder in drive C:\ rename into "pwdump". Copy the pwdump7.exe and libeay32.dll into it. Extract the rCrack file, then create new folder inside pwdump folder and rename into "rcrack". Copy all the rainbowcrack-1.5-win32.zip contents(without folder) into it.
3. The next step you need to use PwDump7.exe to dump the protected storage containing your password hash inside your Windows Box. See the picture for more details.
- Go to command prompt and go to pwdump directory.
- Execute this command pwdump7.exe > myPassword.txt it means that you will dump your Windows password hash into myPassword.txt.
- In this tutorial I only choose only 1 password to crack, but if you want more than 2 or 3 it's okay the application can crack all of it.
4. The next step we will use rcrack with Rainbow Tables to crack the password. Change your directory to rcrack then execute this script :
rcrack.exe path_to_rainbow_tables -f path_to_password_hash
Voilla, you find the password . The time to cracking the password is not too long, but you must wait a long time when you generate the rainbow table :p LoL.
|
|
10 Comments »
RSS feed for comments on this post. TrackBack URL
hello, i have put 1-5 len. On your print screen is 7… I have make a password of 5 caracters and is not found….
Can you please reply me here or by email ?
Thank you ! Im french sorry ! ^^
#Francois
Maybe you should increase your N of tables let's say to 5, so it will increase the success rate
Thanks !
you’re welcome…
[...] IT admins can test the effectiveness of password security by thinking like a hacker and using the tools that an attacker might use to try and crack passwords and breach sensitive data. Tools like Cain and Abel, or John the Ripper can identify passwords that represent the low hanging fruit and provide easy prey for attackers, or you can view tutorial How to Crack Windows Password using RCrack, PWDump and Rainbow Tables. [...]
[...] got the victim machine and also the password hash(click here to view how to crack the password hash). If you want to know more what meterpreter can do, you can view the tutorial here and [...]
These tools reslly good.
If you want to save more time and get a easy way.
Maybe some commercial software will be your choice.
In additional,some people actually don't konw some complex computer operations.So some rasily to use software is need.
Such as Windows Password Rescuer,Windows Password unlocker etc.
I have used Windows Password Rescuer Professional edition(http://www.daossoft.com) and I think the tool is convinient though cost me some money.
I would like to see how you would do it this fast with Windows 7 and NTLM hash…
#anonymous
this method you can use to Windows XP SP3 and earlier
Windows 7 have different scheme on how they store the password
Nice post! I just want to say Windows password is not safe now, not only these tools can crack the password, another software Windows Password Rescuer also can <a href=http://www.daossoft.com/products/windows-password-product.html>reset Windows password</a> instantly without logon.