Simple MS Native Solution To Reset (Forgotten/lost) Windows Local Account Passwords

Discussion in 'Windows 10' started by Enthousiast, Feb 29, 2016.

  1. Enthousiast

    Enthousiast MDL Tester

    Oct 30, 2009
    14,758
    16,986
    340
    #1 Enthousiast, Feb 29, 2016
    Last edited: Feb 29, 2016
  2. ddsmm2n

    ddsmm2n MDL Novice

    Nov 21, 2015
    11
    0
    0
    cool - and anyway to prevent this happening if our computer is taken away from us?
    bitlocker?
     
  3. Enthousiast

    Enthousiast MDL Tester

    Oct 30, 2009
    14,758
    16,986
    340
    Everything can be hacked, if someone tries hard enough, a bios boot password could be of some help but that is also hackable.
     
  4. MS_User

    MS_User MDL Guru

    Nov 30, 2014
    2,654
    404
    90
    do u have a work around if comp is setup with MS account.
     
  5. Enthousiast

    Enthousiast MDL Tester

    Oct 30, 2009
    14,758
    16,986
    340
    Yes, Lost online account pw: windows login gives you the site where to unlock :)
     
  6. MS_User

    MS_User MDL Guru

    Nov 30, 2014
    2,654
    404
    90
    that i already know...i was referring more to a hack ;)
     
  7. Enthousiast

    Enthousiast MDL Tester

    Oct 30, 2009
    14,758
    16,986
    340
    I'm no hacker, I am just a MS DaRT lover ;):D
     
  8. Flipp3r

    Flipp3r MDL Expert

    Feb 11, 2009
    1,520
    652
    60
    When you use regedit to remove the password you can delete any field with refrence to internet or cache.
    The account reverts to local.
    there's many links in the forums on how to do this...
     
  9. MacAddict01

    MacAddict01 MDL Member

    Mar 3, 2011
    149
    20
    10
    I did not know this was possible. Very nice information I might need one day. Thanks!
     
  10. MS_User

    MS_User MDL Guru

    Nov 30, 2014
    2,654
    404
    90
    im talking about a comp thats not yours and lock to a MS account...how would u regedit that? their third party software out their that can try to crack the pass or PIN like the F.B.i CD Tool.
     
  11. Flipp3r

    Flipp3r MDL Expert

    Feb 11, 2009
    1,520
    652
    60
    Jeez, Boot into WinPE, run regedit & load the SAM file from their HDD.
    or
    Pull their HDD, plug it into your system, run regedit, load their SAM file from their HDD.

    No need for 3rd party tools...
     
  12. LatinMcG

    LatinMcG Bios Borker

    Feb 27, 2011
    5,356
    1,446
    180
  13. MS_User

    MS_User MDL Guru

    Nov 30, 2014
    2,654
    404
    90

    that will not work...if the HD is encrypted with bitlocker using PIN;)
     
  14. trungpt

    trungpt MDL Addicted

    Dec 15, 2009
    520
    49
    30
    So if someone takes our computers, he/she can open it without our passwords :(
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  15. Ace2

    Ace2 MDL Senior Member

    Oct 10, 2014
    331
    150
    10
    Added to my Windows 10 (sources/boot.wim/Index 2) bootable usb stick.

    Thanks Enthousiast & murphy78.:cool:
     
  16. Flipp3r

    Flipp3r MDL Expert

    Feb 11, 2009
    1,520
    652
    60
    It's useful to add it into your winre.wim. You'll have to mount your install.wim 1st to access it...
    That's assuming you want it on every install...
     
  17. hearywarlot

    hearywarlot MDL Member

    Jul 31, 2015
    112
    109
    10
    #17 hearywarlot, Mar 5, 2016
    Last edited: Mar 5, 2016
    I did not think people in this age of time still need to know this information, but alright.

    As long as you use a standard Windows/Linux/Anything install, your install can be read flat-file booting a CD/USB with a WINPE/LINUX OS or by taking out your HDD and reading from their OS.
    To fight this people put a password on their BIOS/UEFI and restrict boot to HDD, encrypt their whole system and turn on Secure Boot to fight evil maid attacks.

    But people can still try take out your HDD and brute force (try out all passwords in existence) the password to get in using specialized software, although this takes a enternity on most systems (that is if your password is complex).
    Also if you use a PC, people can also reset the BIOS/UEFI password on most systems by simply removing the CMOS for 30 seconds or a password clear jumper (temp restricted removal) where they do not need to remove the HDD.

    But in all these examples, they physically need access to your system, which you control 'most' of the time. The second layer of vulnerability is from your OS and You, the third layer is your network and the internet.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  18. Heimnetz

    Heimnetz MDL Novice

    Jun 5, 2014
    7
    0
    0
    #20 Heimnetz, Mar 5, 2016
    Last edited by a moderator: Apr 20, 2017
    I add WinRE ramdisk entry to the Windows Boot Manager.
    Start PC with MSDART boot medium and Winre.wim with the
    Winre.wim inclusive masdart copy folder replaced on the system partition.
    Code:
    1. bcdedit -enum all
    2. bcdedit -displayorder {ca497cd0-c15f-11e5-9ee6-0800278db2d6} -addlast
    3. bcdedit -timeout 5
    1ramdiskeintrag.JPG Windowsbootmen├╝.JPG