become

Reset Admin Password - Become Administrator & Get Admin Privileges



Sharing buttons:

hello tutorial shows you how to reset admin password become administrator and

get admin privileges this video is only for educational

purpose if you forget your computer password or

if you cannot access your hard drive because your operating system does not

boot normally you can bypass your own computer

password or become an administrator on your own computer

please note that any hacking is punishable by law

so please don't use this knowledge for illegal acts

steps in tutorial step 1 introduction windows user accounts and

their privileges and rights step 2 bypass reset admin password

step 3 add a user to the administrator group

and get administrator privileges without admin password

step 4 enable built in administrator account step 5 roll everything back

as it was

Let’s say, you have two users on your computer

first with admin privileges mmk 322 with password

and second standard user user one so you can access user one but it has

low rights

okay first of all let's find the user which is currently logged in and using

windows go to start and navigate to user icon

also, you can open a command prompt and type command whoami

the command displays the full computer name and the current user

if you go to manage

local users and groups

then click on users folder it lists all user accounts of computer

i have two active users mmk322 and user 1. all other users

are disabled as i mentioned before mmk 322 is a member of the

administrators group and has a password

and user one is member of standard user group

this means that the user one has low privileges and cannot perform basic

settings on windows without admin password

let's see examples

you cannot install any softwares without an administrator password

to continue enter an admin username and password

you cannot run group policy

you don't have permission to perform this operation access is denied

you cannot make changes in the registry editor

cannot create key error writing to the registry

you cannot access websites which is blocked by

admin from the hosts file

cannot reach this page

so if you try to edit hosts file it asks you administrator permission

and also admin password

You cannot activate a built-in administrator account

Again, access is denied

And there are many other restrictions

Ok, let’s try to add the User1 to the administrator group

We get an error again

I don’t like being a limited user with low permissions on my own computer

Because I forgot my admin password

therefore we need to reset an administrator password

become an administrator and gain administrator rights

in order to take full control of our computer

before we start let me quickly explain to you

what is same file and why we need it what is same file

the security accounts manager sam is a database file

used by all versions of windows that manages user accounts

and stores user passwords the sam file cannot be edited

moved or copied while windows is running don't try to edit it or delete it

otherwise windows don't boot normally so to become an administrator and get

all admin privileges we need to make changes in sam file for

that we need to create a bootable usb flash

drive first you need computer or laptop with

full admin rights second usb flash drive of at least eight

gigabits and third to software kali linux

and linux live usb creator okay let's download useful tools

all useful links can be found below in the description

we need to download kali linux live

does not matter which version 64 or 32 it's up to you

i prefer kali linux live 64 but i already have that version

so let's download linux live usb creator just remind you all useful links can be

found below in the description

okay when you complete downloads you can connect the usb to your computer

my usb drive is e make sure to backup all files from your usb

then go ahead and format your usb with fat32

fat32

okay now let's run linux live usb creator and start creating bootable usb

step 1 choose a usb make sure you choose your usb not hard drive

otherwise you will erase all data

step 2 choose your Linux iso file

step 3 leave it by default

step 4 make sure all radio buttons are checked

step 5 click the lightning icon

okay now we need to wait 5-10 minutes depending on the power of your computer

so i skipped the installation process

really it may take longer you should wait until

this message your linux live key is now up and ready

you can check your usb key it should look like this

and then we can connect the usb to the computer where we are going to reset the

admin password on this example it is user one

so just plug the usb into your computer okay before we start resetting admin

password and becoming an administrator let's see the admin password which we

going to reset as i promised in step 5 after resetting

i must roll everything back as it was so let's check what the administrator

password really is okay remember admin password is one two

three let's go back to user one and start

resetting the password

let's do step by step so our goal is first

reset admin password

second add the user 1 to the administrator group and get

administrator privileges without admin password

third enable built in administrator account

and fourth roll everything back as it was

okay make sure your usb is connected to your computer

and boot your linux from usb press and hold down

the shift key on the keyboard and then restart your computer

continue to hold down the shift key until the computer will open a blue screen

go to use a device

then efi usb device and wait until your usb boots

if you get a boot error efi usb device has been blocked by the current security

policy don't worry you can find an easy fix

below in the description okay press any key to continue

then choose live system forensic mode

and hit enter

okay first of all we need to find the windows system root folder

and then navigate to sam file for easy navigation you can simply click

on any folder and enter the name of the folder you are

looking for

first of all, make a backup of the SAM file

just copy the sam files somewhere

go back to sam file location and right click on blank space in the folder

choose open terminal here

make sure your path looks like this then type command sudo su and hit enter

this means to run the commands with root privileges

now type chntpw -i SAM make sure you type sam in capital

letters and hit enter this runs SAM password

recovery tool with interactive menu okay sam file loaded

we need first option edit user data and passwords

so type 1 and hit enter

ok here we have all windows users

step 2 reset admin password so we need to reset the password mmk322

we should enter the user number which we going to edit

and hit enter ok here is the info user

and here are options that we can change we need to clear user password

so type 1 and hit enter

then type q to go back

again type 1 to list the users

step 3 add the user to the administrator group

and get administrator privileges without admin password

now we need to edit user 1 so type user number

and hit enter

as you see user1 member of the users group

from options we need number three promote user

make user and administrator so type 3 and hit enter

then type y and hit enter again

as you see user 1 is now a member of the users group

as well as the administrators group so let's remove him from the users group

type 5 and hit enter

then enter the group number you want to leave and hit enter

done let's go back and enable the built-in administrator account

step 4 enable built-in administrator account

for now we need option 2 unlock and enable user account

done type q to go back

okay it's very important when you finish editing the sam file

don't forget to save it so type q to exit chntpw

interactive menu

you will be asked if there is anything to save

we made changes so type y and hit enter and then type exit

and again exit to close the terminal

okay let's check what we got

first let's check which user group user 1 belongs to

as you see user 1 now is an administrator

with full rights and privileges

as you see a built-in administrator account has been enabled successfully

let's check the password mmk 322.

as you see the admin password has been successfully reset

let's connect to the built-in administrator account

works fine

if your computer is in the domain you may not see the users list like this

so if you enable built-in administrator account

and you cannot see it here here must be other user icon

click on it in user name field type dot backslash and administrator

this allows you to log in as a built-in administrator

all steps are done we have successfully reset the admin password

became an admin and enabled the built-in admin account

now let's roll everything back as it was with a simple step

boot your linux usb one more time

okay we just need to restore the old SAM file

we back up

so copy your backup file and replace it with the existing one

okay let's see what we have now

we got back the old password of mmk 322

the built-in administrator account is disabled as it was

as you can see we rolled all the configuration back

thanks for watching if that sounds like something that could help you

then make sure to join me subscribe to my channel with notification

and be the first who get more great tips and tricks

you

Then, EFI USB Device And wait until your USB boots

If you get a boot error: EFI USB device has been blocked by the current

security policy Don’t worry, you can find an easy fix below

in the description Ok, press any key to continue

Then choose Live system (forensic mode) And hit Enter

Ok, first of all, we need to find the Windows system root folder

And then navigate to SAM file For easy navigation, you can simply click

on any folder and enter the name of the folder you are looking for.

first of all, make a backup of the SAM file just copy the SAM file somewhere

Go back to SAM file location And right-click on blank space in the folder

choose Open Terminal Here make sure your path looks like this

then type the command “sudo su” this means to run the commands with root privileges

now type “chntpw -i SAM” make sure you type SAM in capital letters

this runs SAM password recovery tool with Interactive Menu

OK SAM file loaded We need the first option:

Edit user data and passwords so, type one and hit enter

Ok, here we have all Windows users Step 2 reset admin password

So, we need to reset the password mmk322 We should enter the user number (RID), which

we going to edit Ok, here is the info of User

And here are options that we can change we need to clear user password

so, type 1 and hit enter then type q to go back

again type 1 to list the users step 3.

Add a user to the administrator group and get administrator privileges without admin

password now we need to edit User1, so type user number

and hit enter as you see User1 member of the Users group

From options we need number 3, Promote user, make the user an administrator

So, type 3 and hit enter Then type y and hit enter again

as you see, User1 is now a member of the Users group as well as the Administrators group

so, let’s remove him from the Users group type 5, and hit enter

then enter the group number you want to leave done

let’s go back and Enable a built-in administrator account

step 4, Enable built-in administrator account for now, we need option 2, unlock and enable

a user account done, type q to go back

Okay, it's very important when you finish editing the SAM file, don't forget to save

it So, type q to exit chntpw main interactive

menu and hit enter You will be asked if there is anything to

save we made changes, so Type y, (yes), and hit

enter And Then type exit and again exit to close

the terminal Ok, let's check what we got

First Let's check which user group User1 belongs to

As you see User1 now is an administrator with full rights and privileges

as you see, a built-in administrator account has been enabled successfully

Let’s check mmk322 password As you see, the admin password has been successfully

reset Let’s connect to the built-in administrator

account Works fine

If your computer is in the domain, you may not see the Users list like this

So, if you enable a built-in administrator account and you cannot see it here

Here must be Other User icon, click on it In User name field enter: .\administrator

This allows you to log in as a built-in administrator All steps are done

we have successfully reset the admin password - became an admin and enabled the built-in

admin account now lets’ Roll everything (all config) back

as it was, with a simple step Boot your Linux USB again

Ok, we just need to restore the old SAM file we backed up.

So, copy your backup file, and replace it with the existing one

Ok, let's see what we have now We got back the old password of mmk322

the built-in administrator account is disabled, as it was

As you can see, we rolled all the configuration back