Windows存储您用于登录、访问网络(access network)共享或共享设备的密码。其中一些密码以加密格式安全存储,而其他密码则不是。以下是如何查看哪些密码被Windows不安全地存储,并识别那些容易被他人窃取的密码:
步骤 1(Step 1)。免费下载网络密码恢复(Download Network Password Recovery)
首先,您需要一个知道Windows在哪里存储密码并为您读取密码的应用程序。这项任务的最佳应用之一是网络密码恢复(Network Password Recovery)。它是免费提供的,没有任何类型的臃肿软件,无论是便携的还是可安装的形式。另一个积极的方面是它有几十种语言版本,而不仅仅是英语。
下载netpass.zip 文件存档(file archive)并将其解压缩到您计算机上的某个位置。该应用程序可用于从当前操作系统或安装(operating system)Windows的外部驱动器读取密码。外部驱动器也可以来自另一台 Windows 计算机(Windows computer)。
步骤 2(Step 2)。运行网络密码恢复(Run Network Password Recovery)并查看哪些Windows密码易受攻击
接下来,运行netpass.exe文件,当您看到UAC 提示(UAC prompt)要求管理权限以运行应用程序时,单击或点击(click or tap) Yes。
网络密码恢复应用程序(Network Password Recovery app)已加载。它会立即显示Windows存储的所有密码。如果要刷新显示的数据,请按键盘上的F5 键(F5 key)或工具栏中的刷新(Refresh)按钮。
对于列表中的每个项目,您会看到:Windows存储的名称、密码类型(通用、域密码(domain password)、自动登录密码)、用户名、密码、密码“上次写入”或由Windows存储的时间、内部密码别名Windows使用、Windows存储的评论或使用密码、持久值(persist value)和密码强度(password strength)的应用程序。
我们惊讶地发现Windows以(Windows)纯文本(plain text)形式存储了一些密码。例如,如果您使用本地用户帐户登录(user account)网络共享(network share),则密码以纯文本(plain text)形式存储,易于阅读。
如果您将 Windows 设置为自动登录,而无需输入密码,那么您的密码将变得不安全。无论您使用的是Microsoft 帐户(Microsoft account)还是本地用户帐户(user account),它都以纯文本(plain text)形式存储,任何人都可以轻松阅读。通常(Generally),Microsoft 帐户(Microsoft account)的密码以加密格式存储。不幸的是,自动登录使它们容易受到攻击,并且使用正确的工具易于阅读。
通过网络密码恢复(Network Password Recovery),您还可以读取Microsoft Outlook用于连接到Exchange 邮件(Exchange mail)服务器的密码,或使用远程桌面(Remote Desktop)时存储的密码。此工具显示并显示任何可以访问您的Windows 计算机(Windows computer)或其硬盘的人容易窃取的所有数据。
当您希望 Windows 忘记不安全存储的密码时该怎么办?
如果您的Windows 密码(Windows password)因为您打开自动登录而变得容易受到攻击,那么您应该关闭此功能。如果您希望 Windows 忘记您在网络中使用的某些密码以访问共享文件夹和设备,请打开凭据管理器(Credential Manager)并将其从那里删除。本教程有助于完成您需要完成的所有步骤:凭据管理器(Manager)是Windows存储密码和登录详细信息的地方。以下是如何使用它!
您找到了哪些易于阅读的密码?
网络密码恢复(Network Password Recovery)是一个强大的工具,也可以从命令提示符(Command Prompt)中使用。试一试,看看哪些密码在装有Windows的 PC 上容易受到攻击。另外,不要忘记采取纠正措施。您永远不知道您的某个密码何时被不应访问的人窃取。
How to read the passwords stored by Windows, and which are easy to crack
Windows stores the passwords that you use to log in, access network shares, or shared devices. Some of thesе passwоrds are stоred safely, in an encrypted format, while others are not. Here is how to see which passwords are insecurely stored by Windоws, and identify thosе that can be easily stolen by others:
Step 1. Download Network Password Recovery, for free
First, you need an app that knows where Windows stores passwords and reads them for you. One of the best apps for this task is Network Password Recovery. It is available for free, without bloatware of any kind, both in portable and installable forms. Another positive is the fact that it is available in dozens of languages, not just English.
Download the netpass.zip file archive and extract it somewhere on your computer. The app can be used to read passwords from the current operating system or from an external drive where you installed Windows. The external drive can be also from another Windows computer.
Step 2. Run Network Password Recovery and see which Windows passwords are vulnerable
Next, run the netpass.exe file, and when you see a UAC prompt asking for administrative permissions to run the app, click or tap Yes.
The Network Password Recovery app is loaded. It immediately displays all the passwords stored by Windows. If you want to refresh the data displayed, press the F5 key on your keyboard, or the Refresh button in its toolbar.
For each item in the list you see: its name stored by Windows, the type of password (generic, domain password, autologon password), the username, the password, when the password was "last written" or stored by Windows, the internal alias Windows uses, comments stored by Windows or the apps using the password, the persist value, and the password strength.
We were surprised to see that Windows store some passwords in plain text. For example, if you log into a network share using a local user account, the password gets stored in plain text, easy to read.
If you set Windows to log you in automatically, without having to type your password, then your password has become insecure. It does not matter whether you use a Microsoft account or a local user account, it is stored in plain text, easy to read by anyone. Generally, Microsoft accounts have their password stored in an encrypted format. Unfortunately, the automatic logon makes them vulnerable, and easy to read with the right tools.
With Network Password Recovery you can also read passwords used by Microsoft Outlook to connect to Exchange mail servers, or the passwords stored when using Remote Desktop. This tool reveals and shows all the data that is easy to steal by anyone with access to your Windows computer or its hard disk.
What to do when you want Windows to forget a password stored insecurely?
If your Windows password has become vulnerable because you turned on the automatic login, then you should turn off this feature. If you want Windows to forget some passwords that you use inside a network, to access shared folders and devices, then open the Credential Manager and remove them from there. This tutorial helps with all the steps you need to go through: Credential Manager is where Windows stores passwords and login details. Here's how to use it!
Which easy to read passwords did you find?
Network Password Recovery is a powerful tool that can also be used from the Command Prompt. Try it out and see what passwords are vulnerable on your PCs with Windows. Also, do not forget to take corrective measures. You never know when one of your passwords gets stolen by someone who should not have access to it.
