search

gentilkiwi / mimikatz

A little tool to play with Windows security
http://blog.gentilkiwi.com/mimikatz
19.51k stars 3.75k forks source link

Need Help #264

Open xvMODvx opened 4 years ago

xvMODvx commented 4 years ago

I'm trying to log into my Windows 10 laptop that was using a Microsoft login. I used mimikatz as Administrator to retrieve the SAMkey, LSA secret, dpapi, System masterkeys, and the password hash but it's the generic hash for no password and no help. I have access to the admin account, just need the password for the other user. How do I use this info to get the password or be able to reset it?

I know I'm asking for a lot of help, but I haven't been able to figure this out after a week of trying to. All the guides I could find use older systems and methods that are no longer usable. Thank you for any help in advance.

Also I tried copying the SAM file earlier and wasn't able to. I just learned that it's inaccessible while the system is booted up. With the SAM file and SAMkey how do I then retrieve the user's password?

PS. It's off topic but that user account also has a PIN option, is there a was to bruteforce the PIN or recover it using a tool?

Thank you for all you help once again.

tigros commented 4 years ago

Surely you can use Win 10 user administration from the admin account to reset any users password. Just type "users" that should lead to something.

Papotito123 commented 4 years ago

Hello: From win 10 Anniversary plaint-text password us not kept in lsass process.User Microsoft login encrypt its password, so no cracking is available.PIN also is encrypted si theres no tool for recovering.You can try activating the Administrator hidden account.Login to this account and try to Reset password o in reality you will change password - you can do from administrator account.In the case of the user Microsoft account I don't recommend Reset password but better try to change account to local account.If you have PIN for the troubled account,you should sign-in without problem.You will have problem if you try too many login attempts so th account gets blocked.

tigros commented 4 years ago

how about this: https://www.passfolk.com/windows-password-recovery.html anyway i don't think mimikatz is the way to go.

Papotito123 commented 4 years ago

Hello: None password recovery tool will grab user microsoft account password.Instead will change account to Local account without password if it has this feature So you can log in. As I said ,if you have the PIN for the troubled account you can have options.