How To Install Bkhive on Kali 2

Bkhive and pwdump2 work together to extract Windows password hashes from the SAM and SYSTEM files.

As noticed by another user, bkhive is not included in Kali 2.

It's in the archives, so you can see the appearance of installing it with these commands:

apt-get update
apt-get install bkhive

That runs without errors, but does not install anything that works.

I found this workaround to get older, working versions of bkhive and pwdump2:

apt-get purge bkhive apt-get purge samdump2 curl http://http.us.debian.org/debian/pool/main/s/samdump2/samdump2_1.1.1-1.1_i386.deb > samdump2_1.1.1-1.1_i386.deb dpkg -i samdump2_1.1.1-1.1_i386.deb curl http://http.us.debian.org/debian/pool/main/b/bkhive/bkhive_1.1.1-1_i386.deb > bkhive_1.1.1-1_i386.deb
dpkg -i bkhive_1.1.1-1_i386.deb

Now they work! Here are password hashes extracted from a Windows 7 box:

Posted by Sam Bowne on 10-21-15