Step 1: Cain and Abel
You will also need the Rainbow Tables: http://ophcrack.sourceforge.net/tables.php
Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, recovering wireless network keys, revealing password boxes, uncovering cached passwords and analyzing routing protocols.
This program needs access to your hard drive in order to work. You also need to install WinPcap, which comes with the installer. After downloading the Rainbow tables, extract the files (table0, table 1, etc.) into the Cain folder. The run the program. In the "Cracker" tab, click LM and NTLM hashes. The click the blue cross at the top toolbar and then click OK. this will dump all the users on the computer. Find the account you want to hack and right click on it. Then go to Cyptananylisis attack, LM Hashes and then to Rainbow tables. Click start and wait while the password is decoded. You can then tinker wth the many features of this program
Step 2: OphCrack
A Windows password cracker based on a time-memory trade-off using rainbow tables.
Ophcrack is a Windows password cracker based on a time-memory trade-off using rainbow tables. This is a new variant of Hellmans original trade-off, with better performance.
Ophcrack will recover 99.9% of alphanumeric passwords in a matter of seconds
This program is simliliar to cain and abel but much simpler. This is used only for password recovery.. You need access to the hard drive for it to work. You will also need the same tables used with Cain and Abel. After installing the program put the tables in the table folder in the OphCrack folder. Then start the program and click tables, click install. find the directory with the tables and click ok. Then click load and dump local SAM. accounts should begin to appear. Click the one you want to hack and click Crack. Wait a little while and your password will be decoded.
Step 3: OphCrack Live CD
This is the version you use when u dont have HD access. Download the file and then use a program that can burn Cd images. (Nero Burning Rom, MagicISo, PowerIso, IsoBuster, ImgBurn, etc.) make sure it can burn and image bigger than 300mb. You CANNOT just drag the iso onto the cd and burn it that way. After you have burned it, start up xp or vista and go the the setup screen (by hitting f12 for xp)
the select boot from cd-rom drive and it will begin to load up. Select use graphical interface, and from then on it's just like using OphCrack
ENJOY YOUR NOW HACKED ADMIN ACCOUNTS!!!!!!!!!!!!!!!!!
Cain and Abel can also be used to get WEP passwords!
I am not liable for anything illegal done with this information, so be smart.