Resetting Windows passwords from Linux with chntpw
I came across a strange issue recently, where I needed to reset a users password however the computer was unable to boot from USB so my usual ntpasswd option was out of the question.
Step in the ever userful
chntpw which is available in the Debian repositories and can be installed via:
sudo apt-get install chntpw ntfs-3g
ntfs-3g is also thrown into the mix so you can mount the inevitable Windows NTFS partition with write permissions
From here on, we’ll be executing everything as root to avoid strange permission issues, so elevate yourself via
Find your disks Windows partition via
blkid and mount it via:
mkdir /mnt/win && ntfs-3g /dev/sdb2 /mnt/win
sdb2 is your Windows Partition.
cd to your System32’s config directory with:
and ensure the
SAM registry hive is located there with
Now start the software on the SAM file with
chntpw -i SAM. Follow the instructions onscreen to blank the password and unlock the account if need be. When quitting ensure you save your changes then boot the Windows drive and enjoy your new unlocked Administrator (or other) account.