Getting NTLM password from hash
Tested on Windows 8
1. Extracting the hash
cd /path/to/C/Windows/System32/config/
samdump2 SYSTEM SAM > ~/Desktop/hash.txt
2. Use hashcat
to extract password
hashcat -m 1000 -a 0 hash.txt wordlist.txt
Misc
You can use rules to generate passwords https://github.com/hashcat/hashcat/blob/master/rules/best64.rule
hashcat -m 1000 -a 0 hash.txt wordlist.txt -r best64.rule