Instructions 

What does the current password mean? How to find out your password in Odnoklassniki? How to protect yourself from Windows password theft

Surely every user social network I forgot the password for my own account at least once in my life. For security reasons, some sites do not provide a second opportunity to reset your password. But most social networks accommodate users by offering to restore access to the page by email address or numbers mobile phone. The well-known Odnoklassniki network is no exception.

Depending on which browser the user uses to log into the social network, his actions to change the attribute in the browser and recover the password will depend.

It's easy to see your password in Odnoklassniki if you log in via Firefox browser. The fact is that the browser automatically saves not only the login, but also the current password for all individual pages. In order to change an attribute in the browser, you need to perform several basic manipulations:

  1. From “Settings”, go to “Protection”.
  2. Click on “Saved Passwords”.
  3. From the proposed list that appears on the monitor, you must select the desired social network.
  4. In this case, we search and left-click on “Odnoklassniki”.
  5. The selected entry is displayed in passwords.
  6. The system provides additional opportunity for copying credentials.

Password under asterisks

It is possible to view the password in the browser under the asterisks. For example, when using Google browser Chrome , you need to use the item in the “View element code” menu, which is called right click mice:

In the window that appears, you can change the password type by clicking on the highlighted line:

To change the type text field"type=password" should be changed to "type="text".

Using browsers that do not support automatic saving current password will most likely require you to change your individual security data. You will first need to recover your password and then change it to a new one. The algorithm of actions is quite simple:


Now is the time to check email or phone, depending on which password recovery method you chose. The system automatically sends a code to enter a new password. In exceptional cases, the letter may be sent to spam, so take the time to check this folder as well.

You don't have to remember the code. You can copy it and paste it into a special window on Odnoklassniki. After verifying the code, the system will prompt you to change the password. It will be relevant the next time you access the page.

To ensure that the question “where to look up the password for a social network” does not arise again, you should write down your credentials in a notepad or save it on your desktop. In order to protect users as much as possible from attacks by intruders, the Odnoklassniki social network prohibits the use Old Password as a new account.

Experts do not recommend using your birth date or the first and last names of relatives as a password. Such a password is considered insufficiently strong, which the system will not inform you about. Also, you should not use the same set of numbers and letters to log into different Internet resources. All changes made must be confirmed and recorded separately.

This article will describe how to find out the password for Windows (any version), NOT reset, NOT change, but FIND OUT.

Retreat first

Resetting a password or changing it in a Windows system is easy - schoolchildren have already made their own hundreds of videos on how to do this.

Advanced schoolchildren use the PRO version of the ElcomSoft System Recovery program, which “cracks a password in half a minute” (in fact, it searches the dictionary for the most popular passwords, compares them with previously calculated hashes, and, if the student has set a password something like “1”, “1111”, “123”, “admin”, “password”, then the program displays it).

Advanced users make videos on how to reset a password using Kali Linux . Moreover, Kali Linux is used for 1) mounting a disk with Windows OS, 2) renaming one file to launch the command line... I think in their free time these people crack nuts with iPhones.

Actually, I'm kidding. In 99.99% of cases, this is exactly what is needed - to reset the password of a student or accountant who for some reason set it and conveniently forgot it.

If this is exactly what you need, then boot from any Live disk (it could be Linux - whatever). In the catalog C:WindowsSystem32 rename the file cmd.exe V sethc.exe or in osk.exe. It is clear that you need to make a backup of the sethc.exe (or osk.exe) file, and copy the cmd.exe file with a new name.

If you renamed the file to sethc.exe, then the next time booting Windows, when you are asked for a password, press the SHIFT button five times, and if in osk.exe, then call on-screen keyboard. In both cases, you will have command line(cmd.exe) in which you need to type:

net user username *

Those. if the name user admin, then you need to type:

And now I will shoot my video.

Just kidding again.

Finding out the Windows password using Kali Linux

Theory: Where does Windows store its passwords?

Windows places passwords in the registry file SAM(System Account Management) (account management system). Except when Active Directory is used. Active Directory is separate system authentication, which places passwords in an LDAP database. The SAM file is in C: System32config (C: sys32config).

The SAM file stores passwords as hashes, using LM and NTLM hashes to add security to the file being protected.

Hence an important note: obtaining a password is probabilistic in nature. If we manage to decrypt the hash, then the password is ours, but if not, then not...

The SAM file cannot be moved or copied while Windows is running. The SAM file can be dumped (dumped), and password hashes obtained from it can be subject to brute force for offline hacking. A hacker can also obtain the SAM file by booting from another OS and mounting C:. You can boot from Linux distribution, such as Kali, or boot from a Live disk.

One common place to look for a SAM file is C: repair. By default, a backup of the SAM file is created and is usually not deleted system administrator. The backup of this file is not protected, but is compressed, which means you need to unzip it to get the hash file. To do this you can use the utility expand. The command looks like Expand. Here's an example of expanding a SAM file into a file called uncompressedSAM.

C:> expand SAM uncompressedSAM

To improve protection against offline hacking, Microsoft Windows 2000 and later versions include the utility SYSKEY. The SYSKEY utility encrypts the hashed passwords in the SAM file using a 128-bit encryption key, which is different for each Windows installation.

An attacker with physical access to a Windows system can obtain the SYSKEY (also called the boot key) using the following steps:

  1. Boot from another OS (for example, Kali).
  2. Steal SAM and SYSTEM hives ( C: System32config (C: sys32config)).
  3. Recover boot key from SYSTEM hives using bkreg or bkhive.
  4. Dump password hashes.
  5. Hack them offline using a tool such as John the Ripper.

One more important note. Each time you access files in Windows, the MAC(modification, access and change), which guarantees your presence. To avoid leaving behind forensic evidence, it is recommended to copy the target system (make a disk image) before launching attacks.

Mounting Windows

Eat available tools to capture Windows SAM files and SYSKEY key file. One method of capturing these files is to mount the target Windows system so that other tools have access to these files while Microsoft Windows is not running.

The first step is to use the fdisk -l command to identify your partitions. You must identify Windows and the partition type. The fdisk output shows an NTFS partition, like this:

Device Boot Start End Blocks Id System

/dev/hdb1* 1 2432 19535008+ 86 NTFS

/dev/hdb2 2433 2554 979965 82 Linux swap/Solaris

/dev/hdb3 2555 6202 29302560 83 Linux

Create a mount point using the following command mkdir /mnt/windows .

Mount the system Windows partition using the command as shown in the following example:

mount -t /mnt/windows

Now that the target Windows system mounted, you can copy the SAM and SYSTEM files to your attack directory with the following command:

cp SAM SYSTEM /pentest/passwords/AttackDirectory

Tools are available to dump the SAM file. PwDumpand Cain, Abel And samdump- these are just a few examples.

Please note that you need to recover both boot key and SAM files. The boot key file is used to access the SAM file. Tools used to access the SAM file will require a boot key file.

bkreg And bkhiveare- popular tools that will help you get the key loader file, as shown in the following screenshot:

How to protect yourself from theft of your Windows login password:

  • First of all, you don't need to rely on this password. This password will not save you even from your school-aged son. This password will not help you protect your data and is also useless if your computer is stolen. (The situation with the BIOS password is about the same - it does not provide any real protection, and from time to time it ruins the lives of accountants and people with poor memory).
  • If it is important for you to limit access to data or to the entire system, use encryption programs such as (but if in this case you forget the password, the data will be irretrievably lost).
  • To prevent schoolchildren from deciphering your password for logging into Windows, come up with a complex, long password with different registers, numbers and letters (including Russian), etc. But I repeat once again - this password does not protect anything.

How to find out your password in Odnoklassniki if you suddenly forgot it? This question may arise for almost every user of this social network. In our article we will talk about in various ways find out your password in Odnoklassniki if you forgot, so you will definitely cope with this matter.

Do you know, ? In fact, it is very easy to do both using your phone and PC. This is exactly what is described in detail in our other article, which you can read at this link.

So, there are two main ways to find out your password in Ok:

  • Make a repeated request to the site administration

(can be used both from a phone and a PC).

  • Find it saved on your device

(suitable exclusively for computers and laptops).

It should be noted that the first method is much simpler and easier to implement, while the second will require a little preparation from you.

How to find out the password for Odnoklassniki on an Android phone or computer using a request?

In order to use this method, you need to log out of your profile. Also, you need to remember the mobile phone number on which your OK page was registered.

For phone

  • Open home page Ok.ru. You will be prompted to enter the required login information. Instead, touch the “Forgot your password or login?”
  • The system will redirect you to the data recovery page. You will be asked to indicate the phone number to which your profile is assigned. By the way, this number must be active and in your possession, otherwise you will not be able to restore your account.

After entering the number in the provided box, tap the “Search” button.

  • As soon as your account is detected (you can determine whether it is yours by the nickname that appears at the top of the screen), you will find yourself on the next page, where you just need to click on the “Continue” button.

  • Now wait for the SMS message that should arrive at the number you specified. It will contain a confirmation code with which you can restore access to your profile.
  • As soon as the message is received, immediately rewrite the verification code in the desired window, and then tap “Verify Code”.

  • Now you can come up with a new combination for logging into the site. Make sure that it is reliable - it should contain both numbers and Latin letters and other symbols.
  • When you're done, try to memorize your new code or write it down somewhere you'll always have it handy but out of sight of a stranger. Now you can safely click on “Save”.

  • All is ready!

For computer

  • Go to home page"Odnoklassniki" and click on the inscription "Forgot your password?"

  • You will be asked to select the information you remember about your profile. Click on the "Phone number" option.

  • Enter your phone number in the field provided and click on the “Search” button.

  • When your page is detected by the system, your nickname on the site will be displayed on the screen, as well as the “Send code” button. Click on it.

  • Wait for the confirmation code to arrive on your phone, and then enter it in the provided window, then click on “Confirm”.

  • All that remains is to come up with a new combination of Latin letters, numbers and symbols and then click on “Save”
  • You did it! Now you can freely access your page again.

How can I view my login and password in Odnoklassniki on my page through a browser?

If you are used to using this social network to visit personal computer, then your password may well have been saved in the browser you are using. Here we will provide instructions on how to view your password in Odnoklassniki under the asterisks in the browser settings.

Mozilla Firefox

  • Find “Tools” in the form of three bars at the top of the screen and click on them with the mouse.

  • Go to the "Settings" section.
  • On the left, click on the “Privacy and Security” section.

  • In the “Forms and Passwords” item, click on “Saved Logins”.

  • Now find the words “Display passwords”.

  • Confirm your consent by clicking on “Yes” and you will easily find the code you need!

Opera

  • In the top left corner, click on the Opera icon

  • Enter the "Settings" section.
  • In the column on the left, click on “Security”.

  • Then scroll down a little and select "Passwords" - "Show all passwords".

  • A list will appear in front of you, showing the desired result.

Google Chrome

  • Open your browser and look for the icon in the top right corner of three points. Click on it.

  • Now in the menu that opens, select “Settings”.
  • Find the inscription "Additional". It's at the very bottom of the page.

  • Now select the “Passwords and Forms” option.
  • In this section you should find “Configure” and click on this inscription.

  • A block will open in front of you with all the sites for which you have ever saved passwords. Select "Odnoklassniki".

  • Now just click on “Show” and you can see what you were looking for!

How to find out your login?

If you need to find out your login, it is very easy to do.

  • Log in to your Ok.ru page.

  • There is a short menu right under your photo or avatar. Find "My Settings" and click on it.

  • You will see the basic settings of your profile. The login can be seen here in the second line.

By the way, it is impossible to find out your current password in Odnoklassniki if the page is opened even in this way. This was done by the site developers so that if you accidentally leave your page open, no one else could recognize it and subsequently be able to use your account for their own purposes.

Do not know, ? Then be sure to read our other article on this site.

How to find out your password