312-50V13 · Question #36
You have gained physical access to a Windows 2008 R2 server which has an accessible disc drive. When you attempt to boot the server and log in, you are unable to guess the password. In your toolkit, y
The correct answer is C. CHNTPW. This question asks for a specific Linux-based tool that can reset Windows user passwords or activate disabled accounts from a LiveCD environment.
Question
Options
- AJohn the Ripper
- BSET
- CCHNTPW
- DCain & Abel
How the community answered
(30 responses)- B3% (1)
- C93% (28)
- D3% (1)
Why each option
This question asks for a specific Linux-based tool that can reset Windows user passwords or activate disabled accounts from a LiveCD environment.
John the Ripper is a password cracking tool that attempts to guess passwords from hashes, but it does not directly reset passwords or activate accounts within the Windows SAM database.
SET (Social-Engineer Toolkit) is a framework for social engineering attacks, not a direct password reset utility for physically accessing and modifying a Windows system's SAM file.
`CHNTPW` (Change NT Password) is a widely recognized Linux utility that can be run from a LiveCD to directly access and modify the Windows Security Account Manager (SAM) database. It allows an attacker or administrator to reset passwords for local Windows accounts and activate disabled user accounts without knowing the current credentials.
Cain & Abel is a Windows-based password recovery and network sniffing tool, and thus cannot be used from a Linux LiveCD as specified in the question.
Concept tested: Windows password reset tool (CHNTPW)
Source: https://manpages.ubuntu.com/manpages/jammy/man8/chntpw.8.html
Topics
Community Discussion
No community discussion yet for this question.