March 28th, 2006 by Keith

Ophcrack 2.2 – Windows Password Cracker

Posted in Linux, Utilities, Windows


Have you lost your Windows password? Or are trying to play a trick on your friends by finding out his or her password and logged onto their accounts? It was seemingly difficult especially Microsoft had made the Windows login quite secure, other than the fact that it is having some problem with Internet Explorer being buggy these few weeks.

Anyway, Ophcrack 2.2 is an open source Windows password cracker based on a time-memory trade-off using rainbow tables. This is a new variant of Hellman’s original trade-off, with better performance. It recovers 99.9% of alphanumeric passwords in seconds. It was released recently just less than a week ago.

The software can be installed under Windows and Linux. See the latest change log below.

Latest Changes:

  • * feature: support of the new table set (alphanum + 33 special chars – WS-20k)
  • * feature: easier configuration for the table set (tables.cfg)
  • * feature: automatic definition of the number of tables to use at the same time (batch_tables) by queriying the system for the size of the memory
  • * feature: speed-up in tables reading
  • * feature: cleaning of the memory to make place for table readahead (linux version only)
  • * feature: improved installer for windows version
  • * new fix: change of the default share for pwdump4 (ADMIN$)

According to one user, this is how it is being used:

If you have no account with admin privileges to start with, this is the way to go:

  1. Boot the machine with any system that will be able to read the harddisk, e.g. a linux CD, a Windows installation CD or a boot floppy
  2. Go to the C:\WINDOWS\system32\config\ directory
  3. Copy the files SAM and SYSTEM and put them in a directory on a machine where you installed ophcrack.
  4. Run ophcrack and chose Dump from encrypted SAM, point to the directory where you saved the files and click ok.
  5. This should decrypt and load the hashes. Now you can clik launch to start cracking them.

Of course, if you windows machine also has a linux partition, you can simply mount the windows partition from linux, run the linux version of ophcrack and point it to the config directory.

Hope that works for you.

3 Responses to “Ophcrack 2.2 – Windows Password Cracker”

  1. vyas Says:


  2. jhone Says:

    I have downloaded Windows Password Recovery Tool 3.0 from it not only supports XP, 2000, and NT, I have personally tested it with Vista Home Premium and Ultimate. It works perfectly to reset any local user account to a blank password. I Wrote it to an old 128mb USB flash drive do this. Booting up and clearing a password takes a minute or two works like a charm.

  3. Linky Wu Says:

    There’s a way to reset windows password and it doesn’t involve reformatting and reinstalling Windows. The solution is called Windows Password Reset 7.0. It can reset almost all Windows passwords in seconds. It is a great windows password recovery tool. you can log in again just in one second.

Leave a Reply

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>




  • German Spanish French Italian Japanese Korean Portuguese Chinese