[How-To] Reset Windows NT/2k/XP/Vista Admin Password With Offline NT Password and Registry Editor
Earlier in one of my post, i wrote about Ophcrack which is a free Windows password cracker based on rainbow tables and can be used to recover Windows Passwords. In today’s article, i will introduce you to yet another freely available open source tool called Offline NT Password & Registry Editor which can be used to reset the password of any user that has a valid account on your Windows NT/2k/XP/Vista etc system.
Offline NT Password & Registry Editor doesn’t show you your password like the Ophcrack password recovery tool. Instead, it actually deletes your password allowing access to Windows without any password.
Though cracking passwords is not something that i advice people, but i must let you know that at times there are real “legitimate” reasons when you want to reset Windows passwords. This article is more from an educational perspective than from turning nice human beings into crackers.
With Offline NT password and Registry Editory, you need not know the old password to set a new password, thereby making it ideal for use in situations when you forgotten the password of your system or got locked out because some script kiddie changed the password of your user account without your knowledge. Offline NT password and Registry Editor also support unlocking of locked or disabled accounts.
Below are the steps you need to follow in order to Reset any Windows NT/Windows 2k/ Windows XP or Windows Vista password. Though, the instructions below are quite clear, but still bear in mind that you are using the tool at your own risk and this post is meant only for educational / crisis situations. Also, If used on user accounts that make use of EFS encrypted files, all encrypted files will become unreadable unless you enter the old password again. Offline NT Password and Registry Editor does not come with any warranty or support.
1.) Download and burn the ISO image on a CD. You can download the image from here.
2.) Modify your BIOS settings to boot from the CD Drive. Enter the CD you just burnt from step 1 and restart the computer. This restart should boot the computer from the CD burnt in step 1.
Image: Offline NT Password and Registry Editor
3.) Once the computer boots from the CD, you would see the screen as shown in the image above. Usually just press enter here. If you have linux knowledge, you can tweak kernel options if you need/like.
4.) Next the boot process continues and outputs a lot of kernel messages about your hardware. The application will also load drivers in this step. Once the process is complete, you will be shown with various drives which the application has found.
You would be required to select the drive where Windows is installed.
5.) Once you have selected the proper drive, Offline NT Password and Registry Editor would ask you to enter the directory path for registry. The registry is usually system32/config under WINDOWS or WINNT directory, depending on the windows version (and it may be changed during installation). If you wish to select the default entry, press Enter key.
6.) Next, you will asked to choose a task. Offline NT Password and Registry Editor offers 3 tasks at this moment i.e. Password reset [sam system security], RecoveryConsole parameters [software] and quit.
Select 1 for password resetting.
7. ) Next, the system will ask you for more choices. Press Enter here. This will show another screen with User information.
8.) A list of all local users on the machine is then displayed.The users marked “ADMIN” are members of the administrators group, which means they have admin rights, if you can login to one of them you can get control of the machine.The built in (at install time in all windows versions) administrator is always RID 01f4. This example is from Vista, and Vista by default has this locked down (the installer instead asks and makes another user the regular use administrator, in this case RID 03e8).The “lock?” collumn show if the user account is disabled or locked out (due to many logon attempts for example) or BLANK if the password seems to be blank.
9.) We will select the “admin” user here. This was the user made administrator by the Vista installer.
10.) The system will then give you options to clear out a password by setting it blank. You can also reset a password to some other value, but the author of the application Offline NT Password and Registry Editor also recommends setting a blank password. Pressing Enter ( default choice) will clear out a password and set it as blank.
11.) Next keep quiting by pressing either !quit or select q from the options menu till you see a screen as shown above. This is the last phase and is important as the changes made to the password are still to be written to the registry. If you forgot something, you may run again, else press CTRL-ALT-DEL to reboot.
12.) Once the system says that your edit was complete, you can reboot the system after removing the CD. You should be able to login to the admin userid with a blank password 
. Once Windows loads, create a new password that you can remember.
In the end, please do remember that this post was intended only to help you get access to your system in times of crucial need. This tool certainly can be dangerous in the hands of a cracker.
You can follow me on Twitter at http://twitter.com/vaibhav1981
Do stay tuned to Technofriends for more, one of the best ways of doing so is by subscribing to our feeds. You can subscribe to Technofriends feed by clicking here.
Related posts:
- [How-To] Reset Mac OS X Password
- Reset Local Windows Passwords with PC Login Now
- Top 10 Password Crackers .. REVEALED.
- Wordpress 2.8.4 Released ( Fixes Remote Password Reset Vulnerability)
- Wise Registry Cleaner Free is a Fantastic Registry Cleaning Program
[...] Ophcrack and Offline NT Password and Registry Editor. Learn about these two tools in posts titled [How-To] Reset Windows NT/2k/XP/Vista Admin Password With Offline NT Password and Registry Editor and [How-To] Recover Windows Passwords. Do you have Password Crackers you find useful to share? Do [...]
I downloaded your software as well as TRK and my computer will not recognize either as a boot disk. I oress F12 to get in and then chose to boot from cd-rom, but it tells me there isn’t anything to boot from. What am I doing wrong?
Thanks
here is the methods I know.
The first thing which you check if you forget login password. When we install Windows, it automatically creates an account “Administrator” and sets its password to blank. So if you have forget Your user account password then try this:
Start system and when you See Windows Welcome screen / Login screen, press ctrl+alt+del keys Twice and it’ll show Classic Login box. Now type “Administrator” (without quotes) in Username and leave Password field blank. Now press Enter and you should be able to log in Windows.
Now you can reset your account password from “Control Panel -> User Accounts”.
Same thing can be done using Safe Mode. In Safe Mode Windows will show this in-built Administrator account in Login screen.
Windows XP and further versions also provide another method to recover forgotten Password by using “Reset Disk”. If you created a Password Reset Disk in Past, you can use that disk to reset the password. To know more about It, please visit http://www.resetwindowspassword.com/
I have downloaded Windows Password Recovery Tool 3.0 from http://sn.im/resetwindowspassword it not only supports XP, 2000, and NT, I have personally tested it with Vista Home Premium and Ultimate. It works perfectly to reset any local user account to a blank password. I Wrote it to an old 128mb USB flash drive do this. GUI interface with mouse clicking instead of command prompt
a password on my computer – for the only user on it – was re-set, and the person who re-set it cannot remember the password. I’ve tried everything possible to log onto administrator but the computer does not give me an option to choose either administrator or guest login, even in safe-mode. It only shows the ONE user on the computer. I downloaded the ophcrack and booted the computer up with the cd, had the system do the processes but it finds all the passwords for admin and guest but NOT the user profile. it says ‘not found’. What can i do to get into the system and re-set the password again so i can access my files and such?
My computer runs on Windows Vista by the way.
Thank you
I have downloaded windows password key 8.0. It is a very quick and useful utility for resetting passwords. It not only supports XP, 2000, and NT, I have personally tested it with Vista Home Premium and Ultimate. It works perfectly to reset any local user account to a blank password.
Just an easy to use bootable CD/DVD . It can also be used on a USB Flash Drive. http://www.lostwindowspassword.com/
A few days ago, I had met the headache things that I had forgotten Windows login password. The login screen rejected my passwords. I was frustrated because there was very important data on my disk and I couldn’t reinstall the OS. …………. However, I fortunately got to know the Windows Password Unlocker, which is a professional windows password recovery tool for us to reset windows 7 password instantly yet no data loss
It is difficult to retrieve a forgotten windows administrator password. I will reinstall my OS if i forget it. But if you don’t want to reinstall you windows OS ,you can remove the password with a windows password recovery disk.
http://www.windowsloginrecovery.com
[...] have ever found yourself wanting to reset local windows passwords you can read my previous articles [How-To] Reset Windows NT/2k/XP/Vista Admin Password With Offline NT Password and Registry Editor (makes use of the tool called Offline NT Password and Registry Editor) and [How-To] Recover Windows [...]