31 Mar 2015

The key to Windows System Security (SAM FILES)

, ,

To hack into any stand alone(when u have no access to system via network) windows system first u have to understand that where does windows keeps it login passwords as it is to be ultimately stored anywhere on harddisk for windows to access it again to verufy via login.
Now the key file of windows where it stores password is named as sam files.These files stores the password in encrypted form so that no one can simply open it and look at the password. Also the sam files are hidden by default so that a user cannot see them
normally. Windows also enforces some additional security to these sam files such as u cannot delete copy cut move etc….the same files …. thus it is impossible to yake out sam files out of a system when windows is on…….
So to hack we know the restrictions that windows enforces on us…. now we can plan out the alternate steps to get the sam files………
Do these actions in steps……..
1) Go to folder option and and check “show hidden files” and also uncheck “hide protected system files”
2) Now go to drive where windoes is installed normally in c drive …. go to c:\windows\system\
here u will find some sam file or u can simply search sam file including search hidden file option.
3) now u have found your sam file….. but cant do anthing to it……….as long as windows in on…
4)so we will now try to boot the system with some other operating system and then try to access the dirctory where sam is stored
5)We can use bartpe builder to make a bootable pendrive windows …….. or we can use linux to boot system……such as slax live bootable cd…NOTE- we need portable os on cd or a pendrive we dont need a bootable windows setup cd….
6)After booting the system go to the directory where sam is present copy the sam files also copy service.sam files to any pendrive or cd……
7) Now u have the protected sam files with u now u can copy these files on other pc …
8) now u have to decrypt or crack these sam files as these sam files are encrypted using NTLM technique ( Windows NT is called so becuase of this NTLM only)
9) Download Lopht crack or Lc5 cracker or cain and albel from oxid.com these all have NTLM crackers…..
10) Run these crackers on Sam files And YUP……. u got the password as well there usernames………
Shortcut Procedure
Download Linux slax with LC5 cracked ………. burn it do a cd the cd automatically becomes bootable…now just put the cd in any system and start it and sit closing ur hands cd will automatically find sam files crack them and show u the passwords with usernames……..