Results 1 to 4 of 4

Thread: SAM file oh my!

  1. #1
    Just burned his ISO
    Join Date
    Mar 2011
    Posts
    2

    Default SAM file oh my!

    I have a windows 7 box that I was trying to pen test... I began with the basic chntpw on ubuntu.. trying to clear/change the password. When I rebooted into windows the passwords I had "set" was not valid, the password was not cleared (for another acct) and the Administrator account had not been enabled as I had selected. I continued to try using chntpw but eventually gave up.
    Now on BT4 I've tried bkhive, and john but neither seems to be working (both are throwing me errors)
    BKHive:

    root@bt:/mnt/WIN/Windows/System32/config# bkhive system /root/key
    bkhive 1.1.1 by Objectif Securite
    http://www.objectif-securite.ch
    original author: ncuomo@studenti.unina.it

    Error opening hive file system


    and
    John:

    root@bt:/pentest/passwords/jtr# ./john -format:NT /root/ipass
    Loaded 1 password hash (NT MD4 [128/128 SSE2 + 32/32])
    Crash recovery file is locked: ./john.rec



    Does anyone have any ideas as to why this is happening and/or what I should do about it.

    PS although I don't want a direct answer (A start in the right direction would be nice), I'm at the point where I really do just want to make sure I haven't screwed things up too badly so solutions and help are much appreciated

  2. #2
    Good friend of the forums comaX's Avatar
    Join Date
    Feb 2010
    Location
    Paris, France
    Posts
    338

    Default Re: SAM file oh my!

    Oh boy. I think you made a post about the same subject twice, which is not very appreciated...

    Anyway, if you're attacking the machine you're running BT on, there is a useful tool called "utilman' if I remember correctly. You should try looking that way.

    As for messing anything, I know some would say "you don't know what you're doing, maybe try something else from BT".
    Running both KDE and GNOME BT5 flawlessly. Thank you !

  3. #3
    Senior Member
    Join Date
    Jan 2011
    Location
    over the under
    Posts
    197

    Default Re: SAM file oh my!

    i had the same issue with chntpw, it wouldn't clear the password. I eventually moved onto samdump2 and just cracked the hash. also when using bkhive dont do /root/key instead try

    Code:
    bkhive system sam
    I also have windows 7 and this works for me.
    Last edited by 2901119; 03-23-2011 at 07:44 AM.

  4. #4
    Senior Member
    Join Date
    Jul 2009
    Posts
    135

    Default Re: SAM file oh my!

    You can check my blog on using the method "comaX" suggested. Here i give two methods of accomplishing this and offensive security has a video of this as well.

    Go here

Similar Threads

  1. .Cap File Help
    By Strict in forum OLD BT3final Support
    Replies: 6
    Last Post: 05-02-2009, 10:43 PM
  2. Replies: 0
    Last Post: 09-03-2008, 08:05 AM
  3. better file info than file/strings
    By kr0m3 in forum OLD General IT Discussion
    Replies: 0
    Last Post: 07-24-2008, 01:25 PM
  4. Tranfert .txt file in Inbox thunderbird file
    By danathane in forum OLD Newbie Area
    Replies: 1
    Last Post: 07-21-2008, 07:57 AM
  5. How to add a file to the ISO.
    By imported_ASTRAPI in forum OLD Newbie Area
    Replies: 9
    Last Post: 04-09-2007, 04:31 PM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •