Recovering Windows Passwords with the Ophcrack Live-CD
I occasionally have the need to either audit the passwords on Windows domains or individual systems and use a few different methods of accomplishing this. With the advent of “time/memory trade off cracking” standard Windows passwords on systems using Lan-Man or NTLM hashes (the Windows default) can typically be cracked in less than an hour, often in just few minutes. I’ve discussed these vulnerabilities in the past but this post will deal with a few more specific tools instead of “cracking theory”.
Time/Memory cracking uses pre-computed tables of password variations encoded with LM or NTLM hashes. For example, a windows password of “password”, when encoded with the LM hash, looks like this “E52CAC67419A9A22″. One of my favorite tools for cracking Windows hashes is called “Ophcrack” and it can be installed on Linux or Windows. Ophcrack has a simple GUI interface and uses a set of optimized precomputed Rainbow Tables for cracking. If you enter the password hash mentioned above (E52CAC67419A9A22) into Ophcrack the program will search it’s precomputed table for a match, when it finds the hash it knows what plain text password generated it in the table and returns that to you as “password”.
The Ophcrack Project has recently released a Linux Live-CD based on SLAX that can be used to retrieve and crack passwords from Windows machines with little or no effort. As an example, just yesterday I had someone ask me if I could get them access to their laptop as they had changed the password and promptly forgotten it. I said, sure, bring it over and broke out my Ophcrack Live-CD.
The routine is simple, place the Live-CD in the CDROM drive and boot the Windows machine. The Live CD will boot from the CDROM, load SLAX linux into RAM and bring you to a text based “boot prompt”. The prompt will say “press enter to continue booting”, if you simply press enter the SLAX OS will boot up and load the Fluxbox desktop. As soon as Fluxbox begins to load a Linux terminal window will appear and give you updates as Ophcrack locates and retrieves the password hashes. If the hashes are found Ophcrack will launch it’s application GUI, with no user interaction, and begin to crack the password hashes it located.
I booted the CD in the laptop provided to me, recovered the administrator password in 287 seconds (Ophcrack has a timer) and returned the laptop to it’s owner shortly thereafter.
Another very useful tool for this sort of work is called “Cain & Able” which consists of a robust network sniffer, password cracker and hash generator (among other things). I use it in conjunction with Ophcrack to test password complexity strength. Be aware that most Anti-Virus clients will mark these tools as “Hack-Tools” (duh!) and try and remove them so you will want to white-list these applications if you want them to work properly.
Enjoy.
/bf
November 10, 2006 at 11:22 am
Hi, thanks for your informative post on how to use the Ophcrack live CD. My question is how exactly did you make the CD? I recently tried to download the live CD from my machine at home (I am running Windows XP SP2), but I ran into a problem. I thought it would allow me to burn it directly to a CD, but instead it started downloading to my C:\ drive. I only have a dial-up connection and the download box said something like 5 hours to complete the download! Ouch. Is there a way to just save this directly to CD? I appreciate any assistance you can offer, cheers,
Cat
November 10, 2006 at 10:25 pm
Hello Cat,
The Ophcrack CD actually contains the Ohpcrack program and the the optimized Rainbow Tables for cracking, all preinstalled on a Slax ISO image. You have a few choices, download the entire ISO and burn it to CDROM or just download the ophcrack app and tables and use them on your own system. Alternatively you can use a web based hash cracker if you already have the hashes. Look in the left menu of this site for a link to “crypto hash generator” and there is an online cracker there, milw0rm also has one.
December 25, 2006 at 2:27 am
hi, i’m really confused. i had d/led the live cd version. saved it on another desktop, then burnt it on a cd, then put it in my laptop (which i’m locked out of)and reboot it but no program came up. it just reboot naturally back to the win log in screen. HELP!! what am i doing wrong?!?!
December 25, 2006 at 11:17 am
Confused,
First, test the Live CD on a known good system to make sure the image is good.
Second, on the PC you are locked out of, boot the box and enter the BIOS (DEL key typically?), once in the BIOS make sure the system is set to boot from “CDROM, Hard Disk and Removable Media” in that order. The BIOS needs to check the CDROM before the Harddisk or it will see the Windows OS before it sees the Live CD. My guess is that the BIOS is set to check hard disk first.
December 26, 2006 at 5:03 pm
Thanks so much, that worked but now i’ve encountered another problem! after running the program, it only revealed the original phrase that i’ve used as my pw before i had altered it with additional charachters. how do i get it to show the full phrase? the original was about 10 chars, the newer one (which i can’t remember!) might be 12?
the program doesn’t really seem to have any instructions on what to do next if the exact phrase doesn’t show..or what to do if the complete phrase isn’t revealed.
help? :(
December 28, 2006 at 10:23 pm
I’m not sure if the CD contains a Rainbow Table that includes special characters. You may have to find an online source that contains special character tables. Or, you can download the ohpcrack program and generate your table or see if you can find one for download that has special characters in it.
Good luck with that and let me know how it goes.
January 3, 2007 at 9:30 pm
i dunno, dude. i looked for it online and they cost alot. i don’t think my laptop likes me. sigh. i tried the nt offline program but that didn’t seem to work either.
January 15, 2007 at 9:42 am
Ok , I burned the live cd iso to a cd. Then when t loads everything it comes to a screen hat says,”No partition containing hashes found!!”bash-3.1#. What did I do wrong or what do I do?
January 18, 2007 at 1:58 am
Hey, how are ya? I loaded Ophcrack LiveCD and then there’s that Fluxbox desktop and the Linux terminal window, just like ya said. And in that Linux terminal window is written ‘bash-3.1#’. What do I do next? There’s like no ‘updates’ like you said in your article. Please help.
Thanks, JC
January 18, 2007 at 11:20 am
Hi JC,
The CD should have begun searching for the password hashes when Fluxbox got started, if it didn’t find the hashes it may have stalled. Reboot and load the CD again and if it doesnt locate the hashes for you go ahead and browse the menus (right-click on the desktop) and look for a way to manually acquire the hashes.
I’ll have to load my disk up and see what I can find but that’s where I would start if I were you.
Let me know how it goes.
Thanks,
bf
February 4, 2007 at 10:24 pm
Crack Windows password with Ophcrack Live CD
Here is the situation. You just changed your Windows admin password. The next morning when you boot your PC, you can’t remember the password to login to your Windows. You got nervous and don’t know what to do. Every passwords you entered we…
February 11, 2007 at 4:21 pm
People that don’t know how to burn an iso, boot from a cd-rom, or use Linux (in this case) have no reason to use this tool. If you’re having problems getting into your computer because you lost your password, go ask somebody who knows how to boot from a live cd to change your password. If all else fails, just reinstall Windows.
For all of you script kiddies out there thinking this will make you an “ub3r 1337 h4×0r”, get a life. Just because you can boot to a prebuilt cdrom doesn’t make you cool.
February 14, 2007 at 10:00 am
Hi there
That’s how people learn, Kn1ghtmare, by asking questions. Ophcrack’s open source and whoever wants to learn, can. I for one do not know how to burn the ‘iso image’ for Ophrrack and will be very gratefull to anyone who explains the process.
Cheers.
February 14, 2007 at 4:35 pm
Odin,
Download the Ophcrack ISO image to your local drive and use burning software like “Nero” to burn the .iso image to a “bootable CD”, pretty easy.
Search Google for “burn ISO image” and you’ll get plenty of how-to’s.
The CD (and Ophcrack itself) is a good way to play with the basics of password encryption and “time-memory-trade-off” hash cracking.
Enjoy.
bf
February 15, 2007 at 4:20 pm
Hi again, thanks Blackflag
Iv been reading up on iso images and so forth, however, the following info caught my attention which makes me a little confused:
“Note: You can not simply drag and drop an ISO image file on your CD icon to create a bootable CD. In order to create a bootable CD from an ISO image, you must burn the actual CD image onto the CD. Burning the ISO file to a CD will not produce a usable disc”
So ive downloaded the live Ophcrack CD (which i assume is the ‘iso file’ and not the iso image) and downloaded ISO recorder and i want to right click on the ophcrack iso and select ‘copy images to CD’, but according to the information above it would’nt work. Is it necessary to turn the iso file into an image and THEN burn it, if so, how exactly do you do this.
Thanks alot
February 16, 2007 at 11:11 pm
Hello Odin,
The file you downloaded should be an ISO image (look for the .iso file type). Give it a test run with ISO recorder, I’ve never used that burner but at a worst case you’ll just waste a CD. Give it a shot.
Have a look at this site and see if the how-to provides any insight.
http://www.petri.co.il/how_to_write_iso_files_to_cd.htm
February 17, 2007 at 2:30 pm
Iv burnt the live CD and just tested it. when i booted from the CD i got to the the opening screen, pressed enter and then after a few seconds it went back to a black screen with white writing (which i think was windows not ophcrack) with alot of technical data and “Kernal panic: not syncing, attempted to kill idle task” written at the bottom. The CD itself seems to be working, I don’t know what went wrong, any ideas?
February 27, 2007 at 2:15 pm
Odin,
That’s probably indicative of a hardware driver issue between the OS on the Live-CD and your PC hardware. Unless you want to try and pass boot options to the kernel manually I suggest you go download the Ophcrack software and pre-computed tables and work with it that way. You can get Ophcrack and tables for both Win32 and Linux for free.
March 7, 2007 at 6:20 pm
Everyone,
The easiest, most simple way to burn the iso image or file. WHICHEVER. is to use a program called dvd decrypter. You can learn how to use the program by just going to google and typing how to use dvd decrypter. IM NOT SURE IF THE PROGRAM IS STILL FREE, WHEN I GOT IT, IT WAS FREE! Basically you have to chose write in one of the drop down menus and then drag and drop the file you want. You can also open the file by giving the location. ITS SIMPLE AND EASY!
March 13, 2007 at 8:38 am
hello i burned live cd in nero choosing option ‘burn image’ and i didnt booted even if i set cd,a,c in bios now i see in nero option ‘make a bootable cd’ will it solve a problem?
March 13, 2007 at 10:05 pm
Jurek,
See comment #16.
March 14, 2007 at 5:43 pm
Hey Black,
Got the same message,”No partition containing hashes found!!”bash-3.1#” as a previous user and I need to know how to find the hash and make the necessary changes. Just and fyi, I used another program to get into the windows directory and delete the SAM file. Will this have an affect on the use of the ophcrack software. Any thoughts why deleting the SAM did not reset the password?
March 14, 2007 at 9:55 pm
JLo,
I’ve never deleted a sam file to gain access to a locked admin account, but from what I understand that should have cleared the password.
I’ve always cracked them with pretty good success, you might try the following tool in your situation:
http://home.eunet.no/pnordahl/ntpasswd/
Are you using WinXP or Win2k?
March 14, 2007 at 10:02 pm
I have been using this application and in the process I disable the syskey on a 2003 enterprise box. I have confirmed from another tool that the password is clear, but I still can not get into the box via the local admin. This server has be rebooted by pulling the power and that seems to mess with the logfiles so the application you suggest will only allow read only mode. I finally figured out if I boot to safe mode and restart properly then the application seems to work with out any errors or being in read only mode. However, using a blank password with the ntpasswd application does not get me in. Your thoughts?
JLo
March 16, 2007 at 4:20 pm
If the Win2k3 server is logged onto a Windows AD Domain try and log on with an AD domain admins account and change the local admins password that way. If this doesn’t work and none of the utilities you’ve tried thus far are getting it done I’m afraid you’ll have to hit Google for more answers. You can’t crack a hash that isn’t there so you’ll have to find a way through the recovery console or sum such to change the admin password and in doing so create another hash file.
April 20, 2007 at 1:26 pm
hi i also have the same problem as sum of u guyz
i burnt the iso image and reebooted the pc
and it goes in to this ‘ecurite objectif’ screen and without having to press enter it loads everythin and then fluxbox or sumthin lyk dat opens up and bash-3.1#. thing comes
i figured out one thing though
when u type ‘ophcrack’ and click enter the window that cracks the passwords opens up but nothing happens . i dnt know how to get passed this can u’ll help me pls
thanx
May 2, 2007 at 11:19 am
downloaded OPHcrack, no problem, burned to CD, no problem
booted with CD no problem, got almost all the way thru the boot process then the screen said “Fatal server error” and shut down.
happened on two different computers. Any idea what is happening?
tks
May 3, 2007 at 11:38 am
i am getting the same problems on booting, just a black screen and nothing else. i can get to a bash prompt by entering slax_nox at the boot prompt. its very flaky. i ran ifconfig and noticed that networking was ok so did a ping and now i cant kill it with ctrl-c . also noticed there are no other terminals – ttys – available such as ctr-alt-f2 , ctr-alt-f3 etc which is standard under linux.
im having to reboot because ctrl-c wont work .
ctrl-alt-delete works all right !
rebooted and back at the bash command prompt.
———-
root@slax:/ ophcrack
Gtk-Warning cant open display
——–
so it wont run from the command line.
got to get X working then.
———-
root@slax:/ startx
black screen again
——–
reboot. this time try slax_autox at the boot prompt.
im into the GUI and it appears to be cracking away,
so try slax_autox at the boot prompt
May 5, 2007 at 5:36 am
tks Sam Mac
slax_autox did the trick. Has anyone found a list of special
characters yet. More and more people using special characters
to make password stronger. Does Cain and Able crack special chariters?
May 5, 2007 at 10:03 am
Errorman,
You’ll have to visit the Ophcrack project to see which table they included with the Live-CD. My guess is that it does not contain special characters. You can use the Ophcrack stand alone client for cracking (for Win/Linux) and generate your own tables if you care too. If you create your own “upper/lower/alpha/numeric/special chars” tables you can use Cain&Able as a front end to crack using that table as well. The folks at oxid.it have a free download for a Windows “rainbow table generator” available at:
http://www.oxid.it/projects.html
June 15, 2007 at 7:10 pm
i burned the iso image rebooted changed my bios, its loads for a while and then it gives me some errors and ejects my disk and does nothing until i manually power down my system and start back up in xp. what the hell is going wrong can somebody please help me!!!!
June 29, 2007 at 1:04 am
no partition containing hashes found”
This error still hasn’t been adressed, I’m running vista with raided harddrives and CANT REMEMBER MY PW!
What should I do??
June 29, 2007 at 9:54 am
Jtrain,
If it were me I’d try the Ophcrack help forums on Sourceforge.
July 20, 2007 at 5:34 am
it has been doing its thing 4 600 seconds and only 25 % done?!?!?!?!By the way i bought 3 perfectly pentium 4 computers from goodwill, all work , cost me 1.99 each!!!!!!!!!!!one has a password and thats why im doing this
July 20, 2007 at 5:38 am
wow it finished on 26 %, I LOVE THIS PROGRAM!!
July 20, 2007 at 3:51 pm
I downloaded Ophcrack ISO image file and then burned it to a CD. I checked the CD and all of the files are on there. I rebooted my computer, Ophcrack screen starts and then automatically starts processing, then it goes to Lunix and then brings up the Bash-3 box, it doesnt say anything else. I typed in Ophcrack launch and it says that no tables are found in this directory or something, how do i load the tables into Ophcrack? How do i get it to start automatically. I cannot click on the launch option until the tables are set. Help!
July 23, 2007 at 11:41 am
Using Nero I created what I thouht was a bootable CD. When I boot from it I don’t see any reference to a Linux program but DOS showing the folders and files on my harddrivve. Where did I go wrong?
July 23, 2007 at 11:14 pm
Give me a bit more detail than that Larry, what .iso image did you get? How did you burn it? etc.
August 5, 2007 at 9:02 pm
hey i loaded up my iso file, and got a bootable cd, and was able to locate the files. However when it found the hash, it had an error. Line 88: usr.Bin. something, and it didn’t work.
August 6, 2007 at 4:49 pm
i have a windows vista basic, but its a laptop. i got the livecd version, and burned the iso with roxio. load it to the menu. no matter which i choose, my computer stops or something. the first two i load, it loads the two files and then it goes black for good. help me
August 18, 2007 at 8:33 am
just used on a pc I’ve been locked out of XP for 8 months. Worked a treat. Showed passwords with no problems. When I logged in it said my password was out of date (pc not used for 8 months)and asked me to enter a new password….Hey presto!! Can not recommend enough!!
August 18, 2007 at 8:39 am
I used a small easy to use program called ‘CDCC’ to burn the ISO imge file. I’ve got Nero but couldn’t figure out how to use it to burn ISO. I’m not technical at all!
Extremely easy to use ISO burner can be downloaded from here:
http://www.snapfiles.com/opinions/BurnCDCC/BurnCDCC.html
Hope it helps!
August 19, 2007 at 4:46 pm
How to with nero in winxp.start>all program>nero.nero start smart>cd or dvd>copy and backup>burn image to disc>look in to find file to burn>file of type>image files{.nrg, .iso, .cue)>click on the program to be opened>now click open> set speed and next to burn.it worked 4 me
http://sourceforge.net/project/showfiles.php?group_id=133599
September 1, 2007 at 2:37 am
hey all,
i downloaded livecd iso file. burned with nero to a DVD as a bootable DVD.
booted PC, changed BIOS to check CDROM fist.
it then moves on, it mentions something bout USBs. then it comes up with [DR-DOS]A:\>
nd it wants me to enter something in. i enter in the file name, nothing, i looked above nd entered in slax_autox, nothing
does ny1 hav ny suggestions at all.
thanx
September 7, 2007 at 1:50 pm
Hello Every Body,
did you Know about syskey
Is there any way to Crack syskey Lock
Please mail to : rizviweb AT yahoo.com
September 15, 2007 at 3:03 pm
HELP!! I burnt the iso image + booted from it. OK. then when it asks you which sort of ophcrack to use (auto, VESA, etc) whenever i select auto or Vesa it goes to the Slax is loading screen and stops. I then tried to use the manual option but it couldt find any hashes!!!
September 19, 2007 at 5:09 am
So, I have a friends computer and he can’t remember his password. Anyways, I made the iso disk, it runs, brings me into the GUI and says, “All LM hashes are empty. Please use NThash tables to crack the remaining hashes.” What do I do.
Thanks
October 18, 2007 at 3:41 am
I recently downloaded ophcrack from sourceforge (yes it was the liveCD) but no iso file, instead i got a RAR file with the data. Do I unzip the RAR file and burn the data or something else?? Any help appreciated, thank you.
October 18, 2007 at 9:21 am
What link did you use to get the rar file?
October 19, 2007 at 6:49 am
Dont worry about prev. post (48) i got it burnt but now it wont boot properly:(
It boots to the point where there is a 4 leaf clover up top and a whole heap of text down the bottom. then it emptys the screen and runs some more commands then theres a lashing undersore in the top left corner then the screen goes black and nothing happens!?
Also, thanks blackflag for taking the time to try to help me :)
October 19, 2007 at 7:27 am
never mind i got it working. i ran it in the second mode (VESA?? i think) and it worked but now i want to know what vesa means and why it worked while the others didnt
ty
October 31, 2007 at 5:11 pm
Did anyone discover how to resolve the ”No partition containing hashes found!!”bash-3.1#” error?
I am working on a crashed laptop running XP and I’m unable to access Recovery Console because of a password (bad boot.ini file) and getting the error above.
I know that Ophcrack works as I have used it on other machines but never on a machine with an OS that is not functioning. Will Ophcrack work?
Sorry to bother Linux folks with Windows issues.
November 1, 2007 at 10:25 am
Jgander,
If the OS is crashed don’t bother with the hashes. I assume your trying to recover data?
If so, boot the system from a Linux live-cd like Mepis or Knoppix. Mount the hard drive in the Konquerer file manager and copy the data off to a external USB drive or network share.
November 15, 2007 at 2:20 am
I too saw the problem with ”No partition containing hashes found!!”
I think I’ve figured out the problem although can’t verify it since I’m not at my buddy’s computer anymore. Going from memory…
I ran across this problem on a Dell 2350 which has the hard drive split into two partitions. The first partition is the ‘Dell System Restore’ area or whatever it’s called. It has lots of archived system files. The second partition is the regular Windows partition. I’m sure the windows system being on the second partition s is why there is a problem. (the same ophcrack live cd worked fine on my PC which has only one partition).
Here’s what I think will fix the problem. At the bash prompt, type ‘mount’ (without quotes). It will list the mounted partitions. I found on the Dell the archive partition was /mnt/hd1 and the Windows partition was on /mnt/hd2, or something like that. You can verify that this is the right partition by using the cd command to change the directory and look for the correct windows structure, e.g. /mnt/hd2/WINDOWS/WINNT/SYSTEM32/CONFIG. Don’t forget that linux is case sensitive.
With the GUI up, click on LOAD. You will need to navigate from /mnt to hd2… to the SYSTEM32 directory, click on CONFIG directory and click the OPEN button.
Now you need to find the tables. This is where I gave up and switched to a different method of fixing my friend’s PC. But anyway after further review I think you can find them on the CD like so.
Click on Tables in the GUI to specify the tables to be used in the crack. Navigate to /slax/ophcrack/ and select the ‘tables’ directory, then click the OPEN button.
Now you should hopefully be able to click on the Launch button. Maybe there are more steps but give that a shot and let me know if it works or not.
November 26, 2007 at 1:11 am
Works like a charm. This is a good tool.
December 2, 2007 at 10:34 pm
I am having the same problem as comment 44. I insert the dick and boot up my computer and it starts to load the data but then stop and a command line that just says [DR-DOS]A:\> pops up now I assume I am supposed to enter something but what? Any help would be vastly appreciated.
December 2, 2007 at 10:36 pm
and yes that typo was funny but you know what I meant. Be mature people lol. Still need help with the computer issue though I am getting tired of seeing [DR-DOS]A:\>
December 3, 2007 at 12:42 am
not sure if this has already been addressed but anyone know of any sites offering FREE nthash table?
i have a laptop with vista.
not looking foreword to paying $250.
December 4, 2007 at 12:08 pm
Saveferris,
You can use the “WinRTGen” tool from Oxid.it to generate your own tables, they don’t take too long to create. You can also use the Ophcrack stand alone client to use the tables you create to crack whatever hashes you have.
December 14, 2007 at 12:18 am
hi, i also facing same problems as comment 44, 56. I was burn 2 CD into bootable file but still getting into [DR-DOS]A:\> in Windows XP and Vista.. Please help!!!
December 14, 2007 at 7:39 am
The main thing i’m enjoying while reading your blog is the way you write, you are a really charismatic person and your posts are wonderful, keep it up!
December 14, 2007 at 5:32 pm
Im having a bit of trouble.. I started to the down the the ophcrack but do i pose to burn it to a cd that havent been installed or burn it as installed?
December 14, 2007 at 11:32 pm
Hi, I had download the ophcrack iso image file to a cd, and when I booted the computer later it was all black… it didnt even that starting of of linux. When i checked the cd, it had files of [ boot, and slax] and more other files in it… Please tell me what happend?
December 14, 2007 at 11:33 pm
i actually burned it to the CD
December 28, 2007 at 4:17 pm
Hi Blackflag,
I downloaded the LiveCD ISO file as a WINRAR from the sourceforge website. Then I burnt it to a CD using Nero. Then I changed my BIOS boot sequence so the CD rom would be chosen before my HDD.
During boot-up, a cursor comes up briefly and the CD spins a bit as if I’m going to get a CD boot, then it continues to the Windows boot.
This is an ISO extension I’m using so I assume no extracting is necessary.
Can you help me with this?
Thanks very much
December 28, 2007 at 5:15 pm
I haven’t burned it using the winrar package, if you unpack the rar I assume there is a useable .iso inside? Does the md5 check out?
If not I would go download the 1.2.2 .iso file directly, burn it to cd using nero (as an .iso project), and boot.
Check that the md5 on the .iso is good and check that the media is bootable, if your bios skipped it at boot time it probably didn’t recognize the cd as a bootable iso.
January 8, 2008 at 1:04 pm
BlackFlag,
I downloaded live CD and burned it using nero. I tried it on my office computer and it worked incredibly fast and came up with the very lengthy pass in minutes. I tried to use it on my home computer and it identified one partion and the admin and user names but listed the passes and “none found”. Any ideas?
January 8, 2008 at 1:05 pm
oops, listed them AS none found.
January 19, 2008 at 1:39 am
ok so how exactly do u operate this software
January 24, 2008 at 9:27 am
hi, i burned the ophcrack iso file, made the laptop boot from it. then i was prompted to select a version of the linux (then it selected on its own). now starts the trouble, the screen goes blank, nothing comes up, couldnt hear the cd drive working either.
now, i’m using this on a vista home edition. is it not working bcoz of the anti virus? or do they not support ophcrack??
please help,
thanks
April 8, 2008 at 2:24 pm
ok, here is what I get:
kernel panic – not syncing: IO-APIC + timer doesn’t work! Boot with apic=debug and send a report. Then try booting with the ‘noapic’ option
I’ve tried every option available on the livecd but I don’t know what the above option is. I even tried the log in ‘toor’ way and still come up with a blank screen.
Apparently it’s not reading my graphics card.
Any ideas?
Thanks so much
April 8, 2008 at 10:33 pm
You might be able to add the “acpi=off” boot parameter (google it) and get by the kernel panic. Other than that you might want to try a different live cd and locate the hashes manually. Copy them to a USB drive and then use Ophcrack (installed) or an online hash cracker to crack it. Securitystats.com has one.
April 9, 2008 at 7:32 am
Hi there, Im trying to crack a password for a colleagues grand daughters vista laptop and i keep getting ‘All LM hashes are empty. Please use NThash tables to crack the remaining tables’. I have downloaded winRTgen and have no idea what im doing as im not familiar hashes and what not.
I click on the username under ‘username/lmhash’ and select launch, but i keep getting that message. Any ideas blackflag?
Thanks,
April 12, 2008 at 8:11 pm
I have a labtop running win vista that I leant to a friend and she put a password and she can’t remmember it. I ran ophcrack but I get this message (Please use NThash tables to crack the remaining hashes.” What do I do.
Thanks
April 15, 2008 at 7:50 am
Question for Steve, and several others trying to use ophcrack to solve this problem; have you already tried going into safe mode on bootup and logging into an Admin account that has not been password protected. Although applying passwords here is one of the first things I do with a system, I notice a lot of people overlook this. If you can get on this way, then you can simply change the password from the control panel / users icon. Goodluck.
April 20, 2008 at 7:59 pm
I don’t know about steve and the others but I have the same problem and cannot get onto the admin account with safemode. The message I get is “Please use NThash tables to crack the remaining hashes. Visit http://www.objectif-securite.ch/ophcrack for more info” but I look for that website and it isnt there
I use Vista. (sorry if that is redundant but thought it might be helpful to point that out)
April 23, 2008 at 4:33 pm
All the peeps with the dreaded NThash problem:
“All Lm hashes are empty, please use NThash tables to crack the remaining hashes”
I circumvented the above problem by following the instructions in the article at http://www.slists.com/techytrends//mvnforum/viewthread?thread=322 and was able to get my password on a vista machine.
Be sure to share your results.
May 4, 2008 at 6:25 pm
or why not just use a simple local live cd? like offline local ntfs password remover? it works for all versions of windows (including vista) it’s super quick (boot up included) about 15 seconds max. either blanking or editing the sam file :p to a password you’d prefer. it’s an open source tool/project so you can make your own versions add custom drivers/libraries etc. using robust tools like ophcrack to crack the local hash can be tiresome, why not just blank or change the sonbitch?
http:\\www.anarchistcookbook.com
May 4, 2008 at 9:56 pm
First, anyone who doesn’t know how to burn a cd or use linux shouldn’t be reading this.
I mean really, burning a cd is a matter of double clicking the iso file on most modern machines.
and linux, well, ever seen kde. its like windows on steroids.
Problem I have is, on my dell machine, i can’t remember the BIOS pass.
i’ve taken out the battery and put it back in. ( for a few seconds, everything else was reset…)
and now, i can’t run very many ditros.
May 31, 2008 at 12:33 pm
Mine worked like in dos format and just listed the passwords for the user accounts. Never got the fluxbox desktop. Question I have is it asked for partition 0 and partition 1. Some passwords in one partition and not the other?
Thanks in advance…
August 11, 2008 at 6:32 pm
waste of time… you have problem with your Windows NT/2k/XP/Vista password?
let’s cut the shit and go forward to a new one fresh password with :
http://home.eunet.no/pnordahl/ntpasswd/
it does not care how long is your forgotten password or which set of characters it use….
peace.
September 4, 2008 at 7:46 pm
I have the Ophcrack Live CD and it works fine on any XP machine I use it on.I have a particular Laptop with Vista that I need to get in to and it sends back a reply saying “not found ” in red for the password section of the vista login. I searched the tables directory on the cd and it lists the operating systems xp free xp special those say installed but vista free and vista special says not installed.So I am thinking that it is not compatible for vista.How do i get it to work for vista?It seems like it worked its jus that the password came bak not found and i doubt that the password is so difficult to decipher.
September 6, 2008 at 7:19 pm
i dont want to change the password of the vista machine i jus want to know it.so i really want the ophcrack live cd to work.i saw a download for vista free but i tried to download it and it wasnt working.
October 9, 2008 at 11:39 am
there is a program called “bartPE builder”.it makes a bootable cd like ophcrack, and it has GUI(user graphical interface). you can get sam and system files with its file management, and then uses any programs you like
to crack the passwords (I suggest LCP).
it is an alternative to ophcrack live-cd. maybe it works when you run into a problem with ophcrack.
October 11, 2008 at 9:28 am
I am getting the “error select tables directory first” and cannot selent the tables…. does any know why this happens or what to do?
October 11, 2008 at 9:39 am
Nevermind, found them…thanks anyway.
October 22, 2008 at 11:47 am
Do you mind telling us where you found them?
November 3, 2008 at 1:28 pm
I used this on an hp laptop with XP, worked perfect. Now trying on a dell with win2000 and it stops at no partitions found containing hashes bash 3.1…
I am a rookie, any help would be greatly appreciated.
November 9, 2008 at 12:54 am
has anyone try vista yet? after finished found the password, it said, “passwoed has beed said in tmp/ophcrack.tmp”, then.how do I the password?
November 18, 2008 at 5:43 pm
hi
i got ophcrack live no prob, burned it no prob, booted no prob, basicly everything was great untill ophcrack had finnished cracking the password. it came up with “not found” on the Admin and Owner passwords. i have no idea why this is, could you guys help me out please?
cheers
v
December 2, 2008 at 11:22 pm
Hi Blackflad.
I downloaded ophcrack, burned a bootable CD using Nero, booted the computer and arrived at a command line that reads [DR-DOS]A:\. Please advise what to enter here.
Thanx.
December 25, 2008 at 2:24 pm
after booting the Ophcrack v.20 for Vista, choose menu,,,,it hang at
Enabling IO-APIC IRQS
Timer: vector=0×31 apic1=0 pin1=2 apic2=1 pin2=1
it just sat there…can you help tell me what is missing?
January 9, 2009 at 7:56 pm
Hello, I downloaded the iso. burned ti to a CD. Rebooted PC with disk in place and it seems like it starts but it hangs at:
“Isolinux 3.61 2008-02-03 copyright (C) 1994-2008 H. peter Anvin”
Can you help me?
Thanks
January 12, 2009 at 8:23 pm
Hi.I have vista I downloaded it.burned it to a cd.and after while everything stops with command ” Module dependencies up to date(no new kernel modules found). ”
HELP
THANKS
January 26, 2009 at 6:21 pm
Hello. I downloaded the 2.1 Vista version of the ophcrack liveCD. I have changed my boot sequence to the CD first. When I restart the computer and it starts its boo the process, the farthest it has gotten is to showing either “ISOLINUX 3.61 2008-02-03 isolinux” or “ISOLINUX 3.61 2008-02-03 isolinux: image checksum error.” I have burnt multiple CD’s and tried but have had no luck. I am using the CD on a Dell Lattitude laptop. Please offer any help possible to my situation.
Thank you.
March 2, 2009 at 1:06 pm
How do you make it so the cd boots???,,,, i cant get it to even start…………….please help?!?!?!
March 10, 2009 at 4:04 pm
When I boot the Vista LiveCD everything runs fine then hangs at “Module dependencies up to date (no new kernel modules found).”
Is this normal…am I suppose to continue to wait or is it stuck for some reason and if so, please tell me how I can resolve this problem.
I am using a Toshiba Satellite running Vista.
By the way, I have also already tried running Ophcrack in Text mode and still get the same problem.
Please help with detailed instructions as to how I can solve this problem…Im very new to all this.
Thanks!
March 17, 2009 at 4:11 am
hi,i burnt ophcrack live CD and set the computer in correct order to boot from Cd.but its doesn’t work,i don’t know the reason for that.i didn’t burn the CD as a bootable cd.is that the wrong with me?
April 29, 2009 at 4:01 pm
I’m having the same problem as Cas. I’m trying to crack the password on my neice’s laptop as she forgot it. Running Vista on an HP Pavilion dv4 notebook. I’ve tried every mode in Ophcrack and keeps hanging in the same spot “Module dependencies up to date (no new kernel modules found)”. Left it run for four hours and nothing. Rebooted several times.
Help
June 6, 2009 at 9:46 pm
Hello
I’m having a serious problem with ophcrack livecd 2.3.0. I’ve burnt it into a cd and it works fine. Its just when i getinto slitaz i get confused. A pop-up comes up saying no tables found. How do I fix this ? Help would be appreciated.
June 8, 2009 at 10:30 am
hello. i have a problem with ophcrack when its booted it says- No partition hashes found-and the computer is properly shut down! Also I dont know is this important i use windows xp thats called windows inspiron ultimate! please help!
June 29, 2009 at 4:51 pm
hello there i have ohpcrack 2.3.0 live cd
when i boot the iso it loads fine but when it gets in to linux a terminal window pops up and says ” no table ” i have checked and found the tables all on the cd
please help
July 2, 2009 at 10:42 am
No partitions containing hashes found !!
Thats what I get when I boot up the ophcrack cd.
Does anyone know what to do next? or how to find the hashes?
I know that the password is only five characters long.
Thankyou.
July 4, 2009 at 4:12 am
ophcrack live cd 2.3.0 problem:no tables found how to reslove
July 5, 2009 at 5:54 pm
I get the error:
Kernel panic – not syncing: Out of memory and no killable processes…
Is this referring to the amount of ram that I have in the machine? Either way, how can I fix this error?
Running the latest version of OPHCrack on a Windows XP Pro system with 256 mb of ram.
July 7, 2009 at 5:51 pm
I got “No partitions containing hashes found” message too.
I saw that the Windows partition was not mounted, so I mounted it (“mount /dev/sda2 /mnt/sda2″ in my case).
Then I launched again the script and all works fine.
July 17, 2009 at 3:22 pm
ok, i am having the “no tables found” problem as above, but i am linux+ certified and i have delved a bit deeper into the issue but still not having any luck.
first off, i am using an acer laptop, it has 3 partitions, one sys restore (10gig UNKNOWN), one marked for boot (32gig FAT16) and one other (32gig NTFS)…
fdisk -l displays all 3… and they are all mounted correctly…
ls -a for part 1 (mnt/sda1) errors out because it doesnt know the type, thats fine…
ls -a for part 2 (/mnt/sda2) displays empty file structure
ls -a for part 3 (/mnt/sda3) lists random directories, none of which are windows, or winnt… it has program files, but it only has quicktime listed in there… it doesnt have hardly any of the standard vista directory structure…
soooo my guess is that this is a ?permissions issue?
if anyone can help or maybe give me some guiding light here let me know… THANKS A MILLION! GREAT PAGE!
July 24, 2009 at 6:02 pm
I am on same boat with Mr. Gold. I have burned Ophcrack in ISO format and successfully booted the CD in locked out computer. It loaded up and said “no tables found”. I tried to find a way to merge new cd in ISO format for Ophcrack with table and no luck.
Still need help in this area. I need an link of ISO image that actually works. If you have older version, let me know and I will download it.
July 29, 2009 at 7:00 pm
I have encountered the “no tables found” problem too. According to all postings here I’ve done everything just right. It boots up normal, Linux works fine, it’s just that it doesn’t want to find anything. Any way around, maybe through one of the Linux sys tools, or else?
Thanks!
August 8, 2009 at 4:33 pm
hi i am using ophlive cd 4 xp just now .after loading it dont show any password ………….just load like linux…..i have tried many times……..every time iget it just a linux……no password…whats the prob please help
September 2, 2009 at 8:48 pm
Hey,
How about we figure out how to get the drivers for the storage on our systems running. I’m pushong OPHcrack into a SAS HBA and getting “no hashes found.”
BS! The system boots to a login prompt. There is a password in this beast somewhere…but its behind the driver door to my Sas drives.
How to get into tthe HBA is the question, not “where are the hashes!” Gotta clue?
Pass it along…
Love
Dave
September 3, 2009 at 12:18 pm
I downloaded Ophcrack 2.2 or 2.3 for vistsa and when it loads on the post, this is what I get( kernal panic – not syncing: Attemped to kill the idle task) I also tried to redownload and burn, I got the same message can u help me…
I tried Ophcrack for xp and it worked fine I retrieved my password…
its vista im having problem.. (iam using Win Vista premium )
September 3, 2009 at 12:20 pm
hello its me again i forgot to mention and comment that it was a virtual machine
thank
September 7, 2009 at 12:12 pm
I have the same problem, no hashes found?? I bought this for my missus and let her set it all up except, no offense to women, she screwed it big time as “I dont really do computers”. lol. so for the last two weeks i have tried all sorts of stuff, virus contaminated and several rollbacks required to find this software, which doesnt appear to work? I dont want to have to reinstall vista cos it didnt come with a disc, please help a freshman recover his love life lol x x
September 9, 2009 at 11:34 pm
Hey, Black Flag. Great tut. And I am downloading the ophcrack live-cd now. I know how to do all of the booting from cd stuff. Been doing this kind of stuff for a WHILE.
I usually do the hash cracking with ASCII tables manually. But this will save me a lot of time THANKS. And just wondering if I have “accidentally” lost my admin panel passwd on my website then do you know of any programs or software that I can use to save time and “recover” my passwd?
Thanks in advance. :)
Any ways. EXCELLENT tut. And to everyone out there HAPPY HACKING :)
September 11, 2009 at 12:57 am
Hey Black Flag, I am trying to look for a Hacking group that I can get into. Do you know any? If so thanks.
September 27, 2009 at 1:28 pm
i too get no hashes found on vista business.
run ophrack command manually but cant locate the SAM file.
Anyone knows the steps to locate the encrypted SAM File?
Many Thanks
September 27, 2009 at 1:38 pm
hi i have a problem that ophcrack works fine in low ram mode but takes a lot of time in cracking. by the way i have only been able to crack few user passwords but not the admin. now when i try to run the programe in normal mode it shuts down itself after loading about 70% i dont now whats the problem. nt hash are available but no lm hash or any password. waiting for the reply
October 28, 2009 at 3:04 pm
i had a problem with ophcrack live cd
i boot it from my usb and it couldn’t find syslinux 3.51 and i found out that it needed the cfg file named syslinux.cfg
i did that and then i got the screen and after a while it said it couldn’t find
livecd.sng so i copied every file like that and put it in to the directory where it couldn’t find it. so i did that and now it says
kernal panic – something about init what do i do about this error
i need a list of troubleshooting’s on how to fix every problem with ophcrack live cd for usb thank you,.
October 30, 2009 at 6:43 pm
Hello to all,
Well I have the USB Ophcrack ready to run, I booted via USB the Vista LiveCD as with the others commenting as well everything seem to runs fine until all of a sudden when it reaches to “Module dependencies up to date (no new kernel modules found).” it seems to stop or I assume that it is to take very long to load is this normal do I suppose or assume that I need to continue or wait for it to advance or is it stuck for some reason and if so can it be corrupted, Do I need to download or install a special module so this can work properly as I need to crack my password asap.
Can you please tell me how I can resolve this problem or what I need to do or missed out.
I am using a HP PAvilion DV5 laptop running Win Vista Home Premium
Also I have also already tried running Ophcrack in Text mode, VESA mode and still get the same problem. What should I do?
Please help with detailed instructions as to how I can solve this problem…Im new school to this.
November 12, 2009 at 1:33 am
hello,
i want to ask a qus …………..
is there any risk in downloading oph crack live cd in my P.C………………….
is there a risk of any body hacking my computer…………………….????????????????????
&
we can use it to hack another computer online……………..?????????????
November 12, 2009 at 1:36 am
hello,
i want to ask a qus …………..
is there any risk in downloading oph crack live cd in my P.C………………….
is there a risk of any body hacking my computer…………………….????????????????????
&
we can use it to hack another computer online……………..?????????????
tell me more usages about it