How to crack SAM password under Linux system 03/26 Update SLTechnology News&Howtos

How to crack SAM password under Linux system

2025-03-26 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Servers >

Shulou(Shulou.com)06/01 Report--

Editor to share with you how to crack the SAM password under the Linux system. I hope you will get something after reading this article. Let's discuss it together.

Start with linux and mount the system partition of Windows to copy the SAM and system in the c:\ windows\ system32\ config\ directory

You can also use WINPE,DOS boot disk, either, as long as you copy SAM and system

Begin to crack:

Bkhive system keys-generate keys file

Samdump2 SAM keys > hashes-- generate hashes with SAM and keys

John hashes-run hashes

Friendly reminder:

You can directly visit http://www.objectif-securite.ch/en/products.php to query hash online.

Now there is no change to the sky map under linux. I will describe it in words below.

Mount-t ntfs / dev/hda1 / mnt/windows

Mkdir / home/young001/sam

Cp / mnt/windows/WINDOWS\ system32\ config/SAM / home/young001/sam

Cp / mnt/windows/WINDOWS\ system32\ config/system / home/young001/sam

Unount / mnt/windows

Cd / home/young001/sam

Bkhive system keys

Samdump2 SAM keys > hashes

John hashes-run hashes

So the password was found out.

Add some hints:

For example, if the administrator password is 123456, it will be displayed at the bottom.

Administrator:123456:500:e263f50a6a506be3d494d3d62b4dc666::: looks a bit like the content format of / etc/passwd. If you clear the screen without seeing the password clearly at that time, or if you forget the password that has been cracked later, you can check it with the following command

John-1.7.2/run/john-show hashes may sometimes show several question marks at the password, as follows

Administrator:??? 456F50a6a506be3d494d3d62b4dc666D4D62b4dc666: this time can be passed

John-1.7.2/run/john-show hashes to see if the password is complete. If it is still incomplete, it is possible that the password has not been completely cracked. You can continue to crack it by adding the-restore parameter.

John-1.7.2/run/john-restore hashes

After reading this article, I believe you have a certain understanding of "how to crack the SAM password under the Linux system". If you want to know more about it, you are welcome to follow the industry information channel. Thank you for reading!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.