原文发表于网易博客 2011-02-27 23:16:29
sudo apt-get install chntpw
mount /dev/sda1 /mnt/c/
cd /mnt/c/WINNT/system32/config
chntpw SAM #查看sam文件
chntpw –u username SAM选中某个要修改密码的用户
chntpw的帮助手册--转自 http://www.allguru.net/security/reset-windows-password-chntpw/
Reset Windows Password Using Chntpw
chntpw is a Windows NT 2K XP user password tool for delete passwords and restrictions from SAM database on installed system.
This tools does not brute force password but only delete passwords and restrictions for Administrators and simple user in SAM database.
To erase password use a script to search NTFS drives from your XP to mount your partition.
Deleting the password will enable you to login to the system without a password, but it will not give you access to any encrypted data on the system.
NAME
chntpw – utility to overwrite Windows NT/2000 SAM passwords
SYNOPSIS
chntpw [options] [systemfile] [securityfile] [otherreghive] [...]
DESCRIPTION
This manual page documents briefly the chntpw command. This manual page was written for the Debian distribution because the original program does not have a manual page. chntpw is a utility to view some information and change user passwords in a Windows NT/2000 SAM userdatabase file. It is not necessary to know the old passwords to reset them. In addition it contains a simple registry editor (same size data writes) and hex-editor with which the information contained in a registry file can be browsed and modified.
OPTIONS
-h
Show summary of options.
-u username
Username to change. Default is Administrator
-l
List all users in the SAM database.
-i
Interactive: list all users (as per -l) and then ask for the user to change.
-e
Registry editor with limited capabilities.
-d
Use buffer debugger.
-t
Show hexdumps of structs/segments (deprecated debug function).
EXAMPLES
chntpw sam system
Opens registry hives sam and system and change administrator account. This will work even if the name has been changed or it has been localized (since different language versions of NT use different administrator names).
chntpw -u jabbathehutt mysam
Prompts for password for jabbathehutt and changes it in the mysam registry file, if found (otherwise do nothing)
SEE ALSO
If you are looking for an automated procedure for password recovery, you might look at the bootdisks provided by the upstream author at http://home.eunet.no/~pnordahl/ntpasswd/
There is more information on how this program works available at /usr/share/doc/chntpw registry works, what are syskeys and some other issues.
AUTHOR
This manual page was written by Javier Fernandez-Sanguino Pe?a , for the Debian GNU/Linux system (but may be used by others).
2011-05-25 21:59
ubuntu 11.04已经出来了,可惜我还是没有用ubuntu.