Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Disabling syskey on XP pro

from [Eoin Miller] Network Security [Permanent Link]
Subject: Re: Disabling syskey on XP pro
Date: Wed, 06 Sep 2006 09:52:03 -0400
Denis Jedig wrote: 
Rocky wrote:

Hi List, one of my client forgot his syskey password, i tried
booting up on erd 2005 and run/update syskey.exe but it
did not help. Is there anyway to disable syskey from running
on startup or updating the syskey password?

Since syskey is there to protect the user databases (SAM) by means of strong encryption (and the password is protecting the en-/decryption key BTW), your only way around this would be to try to bruteforce the password. You always could reset the SAM of course, but would loose any local accounts, groups and trusts.
The ERD will only contain encrypted versions of your SAM BTW.

Denis

The ntpasswd utility will blank out the SAM like it never existed. However, once you choose to use this utility you can not re-enable the syskey so it should only be used as a last resort.

http://home.eunet.no/pnordahl/ntpasswd/

---------------------------------------------------------------------------
---------------------------------------------------------------------------

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Disabling syskey on XP pro, Dino Dogan
Next by Date:  Windows AutoAdminLogon Security, akosbo
Previous by Thread:  Re: Disabling syskey on XP pro, Denis Jedig
Next by Thread:  Re: Disabling syskey on XP pro, Rocky
Indexes:  [Date] [Thread] [Top] [All Lists]