1
00:00:00,930 --> 00:00:04,340
Now let's try out password and registry editor.

2
00:00:04,540 --> 00:00:08,680
It works with every Windows version as we mentioned.

3
00:00:08,700 --> 00:00:15,360
Encryption won't protect the password from deletion encryption and Schurz secure storage.

4
00:00:15,530 --> 00:00:20,090
But no matter what encryption algorithm was used encrypted data can be deleted too

5
00:00:22,960 --> 00:00:30,260
security that comes from encryption pertains to confidentiality only password and registry editor gives

6
00:00:30,260 --> 00:00:34,070
you a text based interface only.

7
00:00:34,280 --> 00:00:38,170
First you have to define the operating system Dr..

8
00:00:38,250 --> 00:00:41,010
Then you have to find the SAM file directory.

9
00:00:42,480 --> 00:00:45,850
The program will suggest the default path to the directory.

10
00:00:46,170 --> 00:00:47,450
You just have to press enter

11
00:00:51,580 --> 00:01:00,940
the program found the same file option number one the default option is to reset password.

12
00:01:01,000 --> 00:01:04,640
This is the option we will use.

13
00:01:04,880 --> 00:01:08,700
Now let's use Option 1 again because we want to edit the user's password.

14
00:01:10,100 --> 00:01:12,460
We can see the list of all system users.

15
00:01:15,050 --> 00:01:20,660
The list includes not only names but also information whether a given user really has administrator

16
00:01:20,660 --> 00:01:22,160
privilege.

17
00:01:22,160 --> 00:01:29,330
We can also learn whether an account is locked the user name the administrator has administrator privileges

18
00:01:31,100 --> 00:01:33,000
his account isn't locked.

19
00:01:33,110 --> 00:01:35,140
We can easily delete his password.

20
00:01:37,150 --> 00:01:43,620
We type the user name Administrator and we choose Option one again clearing the user password

21
00:01:48,440 --> 00:01:55,520
the password of the user administrator is now deleted after saving the changes we can close the program

22
00:01:57,500 --> 00:02:00,950
we remove the CD and start the operating system again.

23
00:02:02,850 --> 00:02:08,370
If everything worked fine we'll be able to log into the account of the user administrator who has administrator

24
00:02:08,370 --> 00:02:09,040
privileges

25
00:02:18,360 --> 00:02:20,960
the account is unlocked and has no password.

26
00:02:22,640 --> 00:02:27,880
The examples presented above and at showing you that the defense in depth model has its limitations.

27
00:02:29,120 --> 00:02:36,340
Local attacks constitute one of them even if you invested lots of money in the security of all the other

28
00:02:36,340 --> 00:02:37,220
layers.

29
00:02:37,360 --> 00:02:41,450
Having no physical security measures means having no security at all.