how to crack windows 2003 server ?

hey guys
I hate to ask this but I need to crack the admin password of a VM.
It is a windows 2003 stnd server. It is stand alone vm. It is not a domain
server else I could get into it. My boss as you know was terminated.
And I am not suppose to talk with him due to company policy.
Crap now what. Do you know of any solution to crack it.
I need to get into it to troubleshoot some services it has we use.

help!

Find more posts tagged with

Comments

dynamik

Kon-Boot

neuropol

use l0phtcrack on the password hashes. May take a while(days).

l0phtcrack

RobertKaucher

dynamik wrote: »

Kon-Boot

That rocks!

I have used Reset lost Windows passwords with Offline Registry Editor | Microsoft Windows | TechRepublic.com and it works flawlessly, if you follow the instructions.

dales

depends if you need to crack it or just change it, I find trinity rescue kit works pretty well with windows vm's. It will allow you to blank out the password straight away so there's no wait for a password crack.

I'm sure that this is available in loads of different linux distro's but this one does the job so I'm sticking with it

Trinity Rescue Kit | CPR for your computer

arwes

dynamik wrote: »

Kon-Boot

Tempted to download this just for the sole reason that Kon is awesome.

Devilsbane

neuropol wrote: »

use l0phtcrack on the password hashes. May take a while(days).

l0phtcrack

I've used this several times on XP. I beleieve that 2k3 non DC's are the same as XP.

Speak with someone higher up in your company. You could likely have someone from HR contact him and get the password. Unless he wants to hold out and end up in jail like that guy out in California.

arwes

Devilsbane wrote: »

I've used this several times on XP. I beleieve that 2k3 non DC's are the same as XP.

You are correct. I used l0phtcrack on a SQL server that was set up for us and the guy forgot the local admin password.

Bl8ckr0uter

arwes wrote: »

Tempted to download this just for the sole reason that Kon is awesome.

Yes he is lol. He needs more screen time.

dynamik

There's no reason to try to crack hashes or brute-force authentication when you have physical access and control over the machine.

arwes wrote: »

Tempted to download this just for the sole reason that Kon is awesome.

I've emailed the author and told him he gets bonus points for creating Bleach-themed tools

itdaddy

OMG!! i LOVE KON BOOT OMG!!!!!!!!!!!!!

YOU GUYS ROCK! THANK YOU WOW YOU SAVED MY JOB!

HAHA
WOWOWOWOOW!

erpadmin

I have never heard of kon-boot prior to this thread. I have used l0phtcrack, and the methods Robert described though as well as Winternals ERD Commander '07 (locksmith).

Based on itdaddy's response, sounds like this tool should be on the next iteration of Security+.....lmao.

itdaddy

false alarm hitting F12 on boot is the key thing wow
konboot got me right in the best tool i have ever seen next to

BOOTPE and kon boot best tools out there

man this is a life savior man!

Devilsbane

itdaddy wrote: »

man this is a life savior man!

In your hands, yes. Remember that an attacker will use the same tools, which is why restricting physical access is so important.

Glad to hear that it worked out for you. I'm going to have to download this and play with it!

itdaddy

devils bane
you are right at our CU we have locks on all server rooms.

but it saved my butt.
1. I couldnt call the old fired boss
2. our IT vendor didnt want to crack it
3. i was like yikes this is a major server and services were down yikes

but man great feeling bam! whhooooooohhhooo!

earweed

I just added Kon Boot to my toolkit. I've been trying to find something that did that.

Paul Boz

I can't tell you how many pentests I've used Konboot on. If the client says attacking physical machines is in-scope I'd just hit people's computers while they're at lunch.

Devilsbane

phoeneous wrote: »

I so just left you hanging.

Ahriakin

devilsbane wrote: »

i so just left you hanging.

lmao

miller811

a vendor shared this site/disc with me, that has tons of utilities and is continously updated.

Hiren's BootCD 11.0 and All Other Versions - HTTP Download

Devilsbane

miller811 wrote: »

a vendor shared this site/disc with me, that has tons of utilities and is continously updated.

Hiren's BootCD 11.0 and All Other Versions - HTTP Download

I have version 9.8 of it and used to use it tons. Lots of tools packed into a single cd. I might have to upgrade.