ComputerSecurityStudent (CSS) [Login] [Join Now]




|FORENSICS >> Hiren's BootCD >> Current Page |Views: 102262

(Hiren's: Boot CD)

{ Mini Windows XP: NTPWEdit (Reset Xp/Vista/7 User Password) }


Section 0. Background Information
  1. What is Hiren's Boot CD?
    • Hiren's BootCD is a boot CD containing various diagnostic programs such as partitioning agents, system performance benchmarks, disk cloning and imaging tools, data recovery tools, MBR tools, BIOS tools, and many others for fixing various computer problems. It is a Bootable CD; thus, it can be useful even if the primary operating system cannot be booted.
    • http://www.hiren.info/pages/bootcd

  2. Lab Notes
    • In this lab we will do the following:
      1. Download the Hiren's iso
      2. Boot Damn Vulnerable WXP-SP2 into the Hiren's Mini Windows XP Environment.
      3. Use NTPWEdit (Reset Xp/Vista User Password) to reset the Administrator's Password

  3. Prerequisites
    • Instructions:
      1. This will work on Windows NT, 2000, XP, Vista and 7
      2. This lab uses the Damn Vulnerable WXP-SP2 Virtual Machine.

  4. Legal Disclaimer
    • As a condition of your use of this Web site, you warrant to computersecuritystudent.com that you will not use this Web site for any purpose that is unlawful or that is prohibited by these terms, conditions, and notices.
    • In accordance with UCC § 2-316, this product is provided with "no warranties, either express or implied." The information contained is provided "as-is", with "no guarantee of merchantability."
    • In addition, this is a teaching website that does not condone malicious behavior of any kind.
    • You are on notice, that continuing and/or using this lab outside your "own" test environment is considered malicious and is against the law.
    • © 2012 No content replication of any kind is allowed without express written permission.

Section 1: Prerequisite
  1. Open A Firefox Browser
    • Notes:
      • Login to the machine that has VM Player Installed.
    • Instructions:
      1. Click on the Windows Start Button
      2. Type firefox in the search box
      3. Click on Mozilla Firefox

     

  2. Place Link in Firefox Browser

     

  3. Navigate and Save
    • Instructions:
      1. Navigate to your external USB hard drive.
      2. Create a directory call Hirens on your
      3. Click Save

     

Section 2: Configuring VMware to play Hiren's
  1. Edit Virtual Machine Settings
    • Instructions:
      1. Click on Damn Vulnerable Windows XP
      2. Click on Edit virtual machine

     

  2. Configure CD/DVD (IDE)
    • Instructions
      1. Configure CD/DVD (IDE)
      2. Click the radio button "Use ISO image file:"
      3. Click the Browse button and Navigate to the location of the Hiren's.BootCD.14.0.iso
      4. Click the Options Tab

     

  3. Configure Operating System Settings
    • Instructions
      1. Settings: General
      2. Guest operating system: Linux
      3. Version: Other Linux 2.6.x kernel
      4. Click on OK

     

  4. Start Damn Vulnerable WXP-SP2
    • Instructions:
      1. Click on Damn Vulnerable WXP-SP2
      2. Click on Play virtual machine

     

  5. Access the Boot Menu
    • Instructions
      1. Once you see the below vmware screen, (1) Left Click in the screen and (2) press the <Esc> key.
    • Note(FYI)
      1. Beginners be patient, this might take a few times.  <Grin>

     

  6. Boot from CD-ROM Drive
    • Instructions
      1. Arrow Down to where CD-ROM Drive is highlighted
      2. Press <Enter>

 

Section 3: Starting Mini Windows Xp
  1. Select "Mini Windows Xp" (See Below)
    • Instructions
      1. Arrow Down to Offline Mini Windows Xp
      2. Press Enter

 

Section 4: Starting HBCD (Hiren's Boot CD) Menu
  1. HBCD Menu
    • Instructions
      1. Click on the HBCD Menu Icon

 

Section 5: Starting NTPWEdit (Reset Xp/Vista/7 User Password)
  1. NTPWEdit (Reset Xp/Vista User Password)
    • Instructions
      1. Programs --> Password/Keys --> Windows Login --> NTPWEdit

     

  2. Unclean File System Message
    • Instructions
      1. Path to SAM file
        • C:\WINDOWS\SYSTEM32\CONFIG\SAM
      2. Click the(Re)open Button

     

  3. Change the Administrator Password
    • Instructions
      1. Click on Administrator
      2. Click the Change password Button

     

  4. Change Password
    • Instructions
      1. New password: Supply New Password
      2. Verify: Re-enter New Password
      3. Click the OK Button

     

  5. Save Changes
    • Instructions
      1. Click the Save Changes button
      2. Press Enter.

     

  6. Shutdown Hirens
    • Instructions
      1. Start --> Restart

     

  7. Restart Windows
    • Instructions
      1. Select Restart from the down drop menu
      2. Click OK

     

Section 6: Proof of Lab
  1. Logging into Damn Vulnerable WXP-SP2.
    • Instructions:
      1. Username: administrator
      2. Password: Use the new password
      3. Click the OK Button

     

  2. Open a Command Prompt
    • Instructions
      1. Start --> All Programs --> Accessories --> Command Prompt

     

  3. Proof of Lab
    • Instructions:
      1. net user administrator | findstr "last"
      2. date /t
      3. echo "Your Name"
        • Replace the string "Your Name" with your actual name.
        • e.g., echo "John Gray"
    • Proof of Lab Instructions:
      1. Do a PrtScn
      2. Paste into a word document
      3. Upload to Moodle

     

  4. Power Off Machine
    • Instructions:
      1. shutdown -s -t 0

     

Section 7: Configuring your original VMware back to play Windows XP
  1. Edit Virtual Machine Settings
    • Instructions
      1. Select Damn Vulnerable WXP-SP2
      2. Select Edit Virtual machine settings

     

  2. Configure CD/DVD (IDE) Settings
    • Instructions
      1. Select CD/DVD (IDE)
      2. Select the Use physical drive: Radio Button
      3. Select Auto detect
      4. Click on the Options Tab

     

  3. Configure Operating System Settings
    • Instructions
      1. Select General
      2. Guest operating system: Microsoft Windows
      3. Version: Windows XP Professional
      4. Click on the OK Button

 



Help ComputerSecurityStudent
pay for continued research,
resources & bandwidth