Break a Windows XP Admin Password Using the Nusrmgr Exploit

Let's say you've found yourself in the dubious situation of having to break into an Admin account... and you're not the admin. Or you just have a terrible memory. Whatever the reason, there will be no judging here - instead let's get cracking using these simple methods!

Steps

  1. Place your Windows XP CD(Boot-able) in your CD-rom and start your computer.
  2. Keep your eye on the screen messages for booting to your CD. Typically, it will be “Press any key to boot from CD.”
  3. Once you get in, the first screen will indicate that Setup is inspecting your system and loading files.
  4. When you get to the Welcome and Setup screen, press ENTER to Setup Windows.
  5. The Licensing Agreement comes next - Press F8 to accept it.
  6. The next screen is the Setup screen, which gives you the option to do a Repair. It should read something like “If one of the following Windows XP installations is damaged, Setup can try to repair it.”
  7. Use the up and down arrow keys to select your XP instruction.
  8. Let the Repair run. Setup will now check your disks and then start copying files which can take several minutes.
  9. Shortly after the Copying Files stage, you will be required to reboot. (This will happen automatically – you will see a progress bar stating “Your computer will reboot in 15 seconds”.)
  10. During the reboot, do not make the mistake of “pressing any key” to boot from the CD again! Setup will resume automatically with the standard billboard screens, and you will notice installing Windows is highlighted.
  11. Keep your eye on the lower left hand side of the screen, and when you see the Installing Devices progress bar, press SHIFT + F10. This is the security hole! A command console will now open up giving you the potential for wide access to your system.
  12. At the prompt, type NUSRMGR.CPL and press Enter. Now you have just gained graphical access to your User Accounts in the Control Panel.
  13. Now simply pick the account you need to change and remove or change your password as you prefer. If you want to log on without having to enter your new password, you can type control user passwords at the prompt and choose to log on.

Tips

  • If you find these methods to be too hard or long, try this:
    • Start you computer than press F8. This will take you to the bios menu, where there will be an option to start windows through the 'safe mode'. Choose the option and you will be entered in your account. You'll be prompted to remain in the safe mode. Click yes and next time you will be directly entered into this mode.

Warnings

  • This method for the users who forgot their password not for those who are doing it in another's computer without permission. THIS WILL BE ILLEGAL.

Related Articles

You may like