Scribd
Upload
23 views1 page

HKEY

The Security Account Manager (SAM) is a Windows database that stores user account information, including usernames and password hashes, located at C:\\Windows\System32\config\SAM. It is secured while Windows is running, accessible only by the Local Security Authority (LSA) service. Users can interact with SAM using tools like 'net user', 'Get-LocalUser', and 'lusrmgr.msc'.

Uploaded by

amanuel
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
23 views1 page

HKEY

The Security Account Manager (SAM) is a Windows database that stores user account information, including usernames and password hashes, located at C:\\Windows\System32\config\SAM. It is secured while Windows is running, accessible only by the Local Security Authority (LSA) service. Users can interact with SAM using tools like 'net user', 'Get-LocalUser', and 'lusrmgr.msc'.

Uploaded by

amanuel
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 1

HKEY_LOCAL_MACHINE\SAM\SAM

SAM stands for Security Account Manager.

It is a database in Windows that stores user account information, including usernames, password
hashes, and security settings. The SAM database is located at:

C:\Windows\System32\config\SAM

Since it contains sensitive security data, it is locked while Windows is running. Only the Local
Security Authority (LSA) service can access it directly.

To interact with SAM, you can use tools like:

net user (Command Prompt)

Get-LocalUser (PowerShell)

lusrmgr.msc (Local Users and Groups GUI)

You might also like