Bypassing Windows 8 password


In 2012 i had posted about Change Windows 7 password, Click Here to Read

So what about windows 8?

There is Easy of access menu on Login Screen, Why renaming sethc.exe with cmd.exe doesn’t work?

Because its metro style UI and microsoft has kept sethc.exe for normal UI and

it uses Utilman.exe for Easy of Access menu on Login Screen.

So Use same method used in Windows 7 and instead of sethc.exe use Utilman.exe

What Should I use for renaming this files?

Any other OS from which you should get access to drive containing Windows Directory

e.g.  1)  Alongside installed or Bootable Pendrive Linux Distribution

You need to mount drive where target Windows is installed (generally C:)

      2) Windows Installation Disk (CD/DVD/Pendrive)

In windows 8/7 installation disk go to repair and advance option and Command prompt

and simply press C: to jump to C drive and check using dir command if you are in correct drive

now you have access to target windows drive

1) Go to Windows/System32

cd Windows/System32

2) Create backup of Utilman.exe as Utilman_backup.exe

on Linux : mv Utilman.exe Utilman_backup.exe

on Windows: move Utilman.exe Utilman_backup.exe

3) Copy cmd.exe as Utilman.exe

on Linux : cp cmd.exe Utilman.exe

on Windows: copy cmd.exe Utilman.exe

Now you are half done.

but don’t you think that we should probably restore target’s previous password when we are done? we don’t want he/she to get know that we actually had access.

but, we don’t know password, encryption algorithm and all.

So?

Here’s trick

Let’s backup whole password storage folder and restore it when we are done, right?

so where’s it?

Windows/System32/config

Here’s steps

1) Backup config folder

Linux: cp -r config config_backup

Windows: xcopy config config_backup

IMPORTANT: Don’t move anything from config folder

windows checks config folder before boot and will not start if finds some problem in config folder

Now Restart Computer and boot into Windows

and login screen click on small Easy of Access menu located at lower left corner

Wow… command prompt is open.

now use following command

net user bhushan *

Command Prompt will ask for new password. Enter and you are done.

use username you want to change password instead of bhushan, its my username.

I don’t know users on this computer?

No worries.

go to C:/Users

cd C:\Users

dir

Capture

this lists down users of current OS

Public is always there, don’t consider it.

3) Now type exit to exit command prompt or something else you are comfortable with to close it

4) Enter your new Password and Enjoy

5) Don’t forget you have to restore Previous password

Boot same as 1st step and just copy file from config_backup to config

To remove all trace. restore Utilman.exe and delete its backup.

That’s it.

Thanks,

Bhushan

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s