{"id":48,"date":"2009-06-26T22:09:22","date_gmt":"2009-06-27T04:09:22","guid":{"rendered":"http:\/\/www.anthonyreinke.com\/?p=48"},"modified":"2009-06-26T22:09:22","modified_gmt":"2009-06-27T04:09:22","slug":"2-old-tools-and-1-new-tool","status":"publish","type":"post","link":"https:\/\/anthonyreinke.com\/index.php\/2009\/06\/26\/2-old-tools-and-1-new-tool\/","title":{"rendered":"2 Old Tools and 1 New Tool"},"content":{"rendered":"

Many time you might need to access a system but have been locked out or the password to access the local system has been forgotten. There are many ways to deal with that.<\/p>\n

NT Offline<\/strong><\/a>
\nIf you just want to get in quickly you can use NT Offline. NT Offline will allow you to blank\/clear or change the password of an existing local account.\u00a0 This boots up in to a linux command line utility.\u00a0 From here you select the drive the OS is on, the path to the config files, and then which account(s) you would like to modify.<\/p>\n

fgdump<\/strong><\/a>
\nBeing able to change\u00a0 a password is great and all but what if you need to get the password.\u00a0 fgdump will allow you to dump the dump the LSASS.\u00a0 This will allow you to get the users accounts and their hashed passwords.\u00a0 How to find the password from the hash is another story.\u00a0 You might start by looking at RainbowTables.<\/p>\n

KonBoot<\/strong><\/a>
\nThis is the new tool.\u00a0 It is getting quite a bit of hype right now.\u00a0 This tool will boot a different kernel of the OS and then load Windows or Linux during the boot.\u00a0 Once you get to the login screen, simple select a local user or a cached user and press enter with no password and you are in.\u00a0 There is not much you can do to the account, but you have access to the machine.<\/p>\n

Yes I know that these can be listed as “hacker” tools.\u00a0 But the “hacker” tools are a administrator’s best friend.<\/p>\n

I will post these in the links section also.<\/p>\n","protected":false},"excerpt":{"rendered":"

Many time you might need to access a system but have been locked out or the password to access the local system has been forgotten. There are many ways to deal with that. NT Offline If you just want to get in quickly you can use NT Offline. NT Offline will allow you to blank\/clear […]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[],"tags":[],"class_list":["post-48","post","type-post","status-publish","format-standard","hentry"],"_links":{"self":[{"href":"https:\/\/anthonyreinke.com\/index.php\/wp-json\/wp\/v2\/posts\/48","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/anthonyreinke.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/anthonyreinke.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/anthonyreinke.com\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/anthonyreinke.com\/index.php\/wp-json\/wp\/v2\/comments?post=48"}],"version-history":[{"count":0,"href":"https:\/\/anthonyreinke.com\/index.php\/wp-json\/wp\/v2\/posts\/48\/revisions"}],"wp:attachment":[{"href":"https:\/\/anthonyreinke.com\/index.php\/wp-json\/wp\/v2\/media?parent=48"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/anthonyreinke.com\/index.php\/wp-json\/wp\/v2\/categories?post=48"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/anthonyreinke.com\/index.php\/wp-json\/wp\/v2\/tags?post=48"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}