To do a password recovery of BackTrack 5 VM image
1. Power off the image and edit the .vmx file for the vmware image in notepad and add a 15 second delay for the bios prompt.
Add bios.bootDelay = “15000″ to the end of the file.
2. Power on the image and press ESC to show the boot menu.
3. Insert your BT5 Live CD or configure VM to use an ISO image as the CD. Other Ubuntu Linux Live CDs may work.
4. Select Boot CD from the boot menu
5. Boot the Live CD in Text mode
6. Once the bash prompt shows, use fdisk -l to show your drives. Usually /dev/sda1
7. Make a mount point – mkdir /mnt/vmdisk
8. Mount the vm disk - mount /dev/sda1 /mnt/vmdisk (replace /dev/sda1
with your drive’s info)
9. Change shell root – chroot /mnt/vmdisk
10. Change the root password – passwd root
11. Confirm the change is saved to disk – sync
12. Reboot the image – reboot
Now you should boot into your VM and be able to use the new password.
After this is working, you may want to change the .vmx file to reduce the
boot delay down to a smaller value like 5 seconds (5000)