Find, Reveal, Get, Recover & Retrieve Windows Passwords with Ophcrack and Rainbow Tables

Home»Software»Utilities»Find, Reveal, Get, Recover & Retrieve Windows Passwords with Ophcrack and Rainbow Tables
There are a lot of ways and hacks to allows Windows users to find and get back their forgotten password for the Windows user account. If you’re the regular normal user, you can still log on to the administrator account to reset the password, but if you’re using the administrator user id itself, then you’re out of luck. Some service such as Login Recovery helps to retrieve and recover the Windows user name and password for Windows and Windows Server systems such as Windows XP, Windows 7, Windows Vista, Windows 2000, Windows NT, Windows Server 2003, Windows Server 2008, Windows Server 2008 R2 and so on. However, you will need to let the third party processes the password recovery, which effectively reveals the password to them. For security reason, now you can recover and get back the Windows user or admin password from local computer which you’ve forgot the password itself with Ophcrack, with password retrieval process takes place locally.

Ophcrack, is a open source Windows password cracker or password auditing utility which is an improvement over original Ophcrack 1.0 developed at EPFL. Ophcrack hacks and cracks the Windows password LM and NTLM hashes based on a time-memory trade-off using rainbow tables. Basically, Ophcrack works by using rainbow tables which contains precomputed hashes of possible alphanumeric and character table sets, so that the program can iteratively compare the windows hashes to precomputed bits and compute the hash and its value more quickly in a more effective way than brute-force guessing. Thus, Ophcrack features ability to reveal, recover and crack most of the alphanumeric passwords which contains up to 12 – 16 characters almost immediately, usually within just a few seconds, and at most a few minutes.

Ophcrack comes in the form of Windows installer (currently Ophcrack 3.6.0) and Ophcrack LiveCD (currently Ophcrack LiveCD 3.6.0) which automates the retrieval, decryption, and cracking of passwords from a Windows system. The Ophcrack Live CD contains a live Linux distribution, ophcrack and/or an alphanumeric rainbow table set (SSTIC04-10k / SSTIC04-5k) or others to cracks LM or NT hashes. The CD is bootable and will automatically load Linux, search for Windows partitions and then extract Windows’ SAM to start ophcrack to crack the password hashes it finds. Without installing anything on the PC, LiveCD allows users to not only recover and retrieve their lost or forgotten password, but also to hack and crack the passwords on any Windows machines, although it can be used for testing the strength of passwords.

Ophcrack Installer

Ophcrack comes with a GTK+ Graphical User Interface and runs on Windows, Mac OS X on Intel CPU and Linux. Ophrack Windows installer, Linux source package and Ophcrack LiveCD can be downloaded from SourceForge. For Ophcrack LiveCD, note that you must download the correct version for Windows XP or Windows Vista and Windows 7, and you must burn it to a CD in order to use it to boot up the computer.

For Windows installer, Linux source and Ophcrack LiveCD without rainbow tables, you will also need to download Rainbow alphanumeric table sets from http://ophcrack.sourceforge.net/tables.php. It has many free rainbow tables, which supports alphanumerical (uppercase letters, lowercase letters and numbers) and/or special and space characters, German alphabets and other rainbow tables sets available for free, for Windows XP or Windows 7/Vista respectively. Commercial versions with larger data sets are also available for purchase. Note that you need to have sufficient RAM on the physical machine to load the table downloaded. You can opt to download the rainbow tables component automatically and directly from the installer itself.

Ophcrack

If you cannot log on to the Windows because you have forgot the password, the LiveCD is the way to go. To use Ophcrack Windows app, just install it and run it. Click on Load and select the appropriate password LM (LAN Manager) hash to use. If you have already dump and save the hash with utility such as pwdump2, then choose “PWDUMP File”. Else you can choose encrypted SAM to allows Ophcrack to dump the hashes from the SAM and SYSTEM files retrieved from a Windows machine while booting on another disk, where there is no need to know a Windows administrator password to get the hashes. Other options been local SAM which dumps the hashes from the Windows machine the program is running on and remote SAM which dumps the hashes of a remote Windows machine, which both require the username and password of an administrator and the later also requires the name of a share.

Next, click on Tables, and select the location or folder that you store the rainbow hash tables downloaded or installed by the installer. The select the tables type you want to use. And finally, click on Launch button to start the cracking process.

Update: Reset or recover Windows user or administrator passwords

By |Categories: Utilities|Tags: |9 Comments

About the Author:

LK is a technology writer for Tech Journey with background of system and network administrator. He has be documenting his experiences in digital and technology world for over 15 years.Connect with LK through Tech Journey on Facebook, Twitter or Google+.
  • Panarchy

    WOW!

    Thanks!

    I'm going to start downloading it now!

    SWEET!

    I'll try this at school, lol

  • aristotele85

    It works!! I'm happy like a child, I was desperate :D:D Great program, Ophcrack!!

  • GavGav

    hey hab mal ne frage also ich hab nen computer und nen laptop an jedem nur 1 benutzer also der admin auf dem com hab ich Windows XP Professional und hab mein kannwort vergessen n anderen benutzer gibt es nicht wie bekomm ich das passwort heraus

  • Janie

    It siad the passowrds weren't found. The only way i know how to do it is do local SAM. I know a file on a floppy that has encrypted passowrds on it but don't know how to decrypt them.

  • layla ali

    Ok i need help!!!!

    i cant get into my house computer my mom locked it and i want to get it

    please help me!

  • Robin

    thanks I will try this hope it will work if not then I gonna buy vista DVD for £120.

  • farah

    yes I want to know how to retrieve windows en sy life hacker who has d … org. plzzzzzz

  • AKav8tor

    If you are unable to use the default administrator user name due to being deactivated or deleted and the password you are trying to recover is your admin authorized user you wont be able to run the install files. When I when run the disk it says boot disk failure. So no luck, have to use a VISTA disk because System Restore wont run without the ADMIN user authority which is the password we need. Bummer. 🙁

  • dannylleu

    I used to reset my windows password with Ophcrack, but I failed, I don’t know the reason. At last, I bought a tool called windows password seeker. I believe it is the easiest and safest way to remove windows password.

Pin It on Pinterest

Share This

Share This

Share this post with your friends!