by jackman19258 on Tue May 27, 2008 1:14 pm
([msg=3334]see Domain Cached Password on Encrypted Disk?[/msg])
So, to answer some simple questions: Yes, I am trying to hack a Windows XP laptop that is on a domain. No this isn't a request for help. Yes this is a request for helpful information and possible links to articles for me to learn.
Here's the situation: My friend gave me a laptop to crack the password of. I thought, simple: ERD Commander 2k5. Oh wait, this has a password before the bios. Well, let's just remove that. (Tinkered with it, removed the bios password). Ok, lets move on.
Turned it back on, made it to a Windows XP boot screen and then a user name, password, and domain are requested. I thought, ok, maybe ERD commander can change the standard administrator password for the local machine. I booted it up, and it told me there was no partition to login to. Uh-oh... maybe it's an encrypted disk? Or maybe the partition is bad? But wait, that can't be since I have a fully working login screen right here...
Several domains to login to. Can't change the password or view the contents on any secondary computer, (tried adding it as an external, it asks me if I want to format. Tried data recovery while in that mode, and it picked up nothing). Now, this is where I get stuck. There must be a way around this aside from endless guessing. But how? It seems like a pretty locked up computer, and this is the first one I really can't get around the password with. I have all tools and utilities available to me, and I will spend personal cash to get the right tools if necessary.
One other thought I had, but I could just be an idiot not thinking right as of now, but could it be possible the said encryption is at the beginning of the LBA and all I need to do is wipe that out near the boot sector to gain access? Also, what other methods or programs would you recommend? And yes, this is in networking because I believe that it has to do with an AD scheme and cracking a cached password from a previous login may be of assistance.