The location of the Security Accounts Manager (SAM) file is also listed using the hivelist plugin, shown in the following screenshot. The SAM file contains hashed passwords for usernames in Windows machines. The path to the SAM file is seen in the following screenshot as Windowssystem32configSAM. This file cannot be accessed by users within Windows while the system is on. This can be further used to acquire the hashed passwords in the SAM file to crack passwords using a wordlist along with password-cracking tools such as John the Ripper, also available in Kali Linux: