Where are Windows 7 Passwords Stored?

windows-7 passwords

Where are Microsoft Windows 7 passwords and credentials stored on disk?

I would like to physically verify that the Users group does not have access to files containing system passwords.


Solution 1:

Windows account details are stored in the SAM registry hive. It stores passwords using a one-way-hash (either LM Hash, which is old and weak, or NTLM hash which is newer and stronger.)

The SAM hive file is located at %WinDir%\system32\config\sam. This directory, and it parents, are by default inaccessible to non-administrative users. However it is vulnerable to offline attacks (e.g. booting a LiveCD and manually modifying the binary data. For example with the ONTPRE tool.)

Solution 2:

They are stored per user in C:\users\username\AppData\Roaming\Microsoft\credentials and also in C:\users\username\AppData\Roaming\Microsoft\Vault . Since this is in a user directory it's safe to say only the user and computer/domain admins have access to it. Not to mention it is also encrypted.

Related

Modify Chrome user agent stylesheet [duplicate]
How to kill tasks in Windows 7 when even Task Manager won't open or respond?
Is TrueCrypt robust against data corruption?
How do I copy a link in Lynx?
Chrome/Chromium - disable HTML5 LocalStorage and Databases for all webpages /or ask user
How to shrink the main Windows folder?
Is there a way to configure the directory SQL Developer uses to save SQL scripts?
Centos 7 - ping 8.8.8.8 (connect: Network is unreachable)
Pasting image into Outlook results in an attachment, rather than inline with content
How to copy text to the clipboard when using Wayland?
Get exit status of last executed command in Windows?
(When) is CONHOST.EXE actually necessary?