How do I get the administrative password on Windows 7? I don’t want to reset
it; I just want to learn how to know the password
In this excerpt from
Answercast #91 I look at the (fortunate) impossibility of determining an
encrypted password, and the possibility of resetting it.
Determine administrator password
Well, the short answer is that you can’t. The password is encrypted.
Trying to extract and understand what the password is currently set to requires defeating the encryption. That’s why all of the responses I have to people who have actually lost their administrator password (or somehow lost the ability to login to their Windows machine) actually involves using a tool that resets the Windows password to something that you know.
If you are actually facing a problem in trying to access a machine, and you don’t know the password, you have to reset it to a password that you know.
Password resetting tools
Now, there are tools, one in particular called Ophcrack. I don’t recommend it but it’s important that you know it exists.
What it boils down to is: if you’ve chosen a poor password, it may be able to determine what that password is. The way it does that is by trying pretty much all possible passwords or at least all possible somewhat-common passwords.
We’re talking thousands, and thousands, and thousands of passwords- perhaps even millions of passwords that its able to try. It does take some time to do that!
Can’t crack a good password
I will tell you that I tried the program some time ago just to see if it could crack my password – and my password, while it’s not great… it’s good. And it was unable to crack my password.
That’s the tool that hackers typically will point at to say, “You know what? If you want to get into a machine, if you want to discover a password, that’s the tool to use.”
I use that as an example because even that tool will fail if you choose an appropriately complex and non-obvious password. So make sure you’re doing that, in general, when you’re setting up passwords.
If that’s the kind of password that’s on a machine then I know of no way to determine what the password is; only how to reset it to something specific.
(Transcript lightly edited for readability.)