EvilZone
Hacking and Security => Hacking and Security => : thepacifist October 18, 2014, 12:44:58 AM
-
Imagine this, you want to get in to a computer. You don't know the windows administrator password, but KonBoot should take care of that quite easily. The real problem is that you can't coot in to KonBoot because the boot order and bios are password protected. The obvious methods are resetting the motherboard jumper, or taking out the battery and waiting a bit. But you want to do it inconspicuously without turning the PC on its side and opening it up in front of dozens of people. You have access to a basic user account. How would you gain access to that computer?
-
Many BIOS's have default passwords.
-
metasploit/other priv esculation attacks. GO introduce yourself.
That doesn't necessarily mean you can do it from within the OS. Most BIOS's can only be set/changed during boot. Some, however, like toshiba have a tool called HWSetup or something similar that can be used.
A BIOS update might remove the password, but I haven't tried it.
Simply having admin rights on a computer does absolutely nothing, and is bad advice, you should feel bad.
Resetting or removing the battery is the best and most effective option. You have to remember, the BIOS starts and controls whether or not the actual OS will boot in the first place. The OS has nothing to do with it.
-
Thanks. They're intel motherboards so I'll see if there is a default password or one of the aforementioned tools.
-
Depending on the model of the hardware their could safety precautions for example the password could be burn into the motherboard and the only way to reset it is with a passkey
-
Most BIOS can be defeated with rainbow tables attacks.
-
I have seen a device....like com port connector....you can make it yourself and can plug into your com port or VGA port to short the BIOS WITHOUT OPENING THE CASE
You can use YouTube to make this port
-
There is a jumper on the motherboard. Bridging the connection will circumvent the bios password. Physical access and its game over.
-
If using the jumper on the motherboard/removing the CMOS doesn't work, can you tell me what machine it is? Sometimes there are keyboard inputs that you can put in on boot to reset/negate BIOS passwords.
-
I think we are in the same seat on this one, but I would like to expand my problem.
My school has a system where by when you want to log into the computer you write you usr&pass and it
connects to a server from where it fetches your user.
They have the computers chassis locked and the bios has a password protect so I can't access the boot order and
boot form ... lets say Kon.
What can I do? And can Kon deal with the fetching from a server part?
-
At the risk of sounding like an idiot, is there any risk to damaging a computer by doing this?
-
At the risk of sounding like an idiot, is there any risk to damaging a computer by doing this?
Not really, but there is always a chance of corruption in files/making a mistake shouldn't be too much to worry about though :)
-
I think we are in the same seat on this one, but I would like to expand my problem.
My school has a system where by when you want to log into the computer you write you usr&pass and it
connects to a server from where it fetches your user.
They have the computers chassis locked and the bios has a password protect so I can't access the boot order and
boot form ... lets say Kon.
What can I do? And can Kon deal with the fetching from a server part?
Why do you need to do this?
-
Why do you need to do this?
Just because, I do not want to inflict damage, just wanna play around alittle. ;)
-
-.-
-
Oh, I'm sorry! What did I do wrong?
-
'I'm new'
Also, I don't really see your need, try resetting the BIOS by removing the CMOS chip? Jump switch? Or just kick it a few times.
-
'I'm new'
Also, I don't really see your need, try resetting the BIOS by removing the CMOS chip? Jump switch? Or just kick it a few times.
Oh please, you would scream noob at me either way! I will try the CMOS battery removal, just unsure due to they have the chassies locked ....
Well some of them and I do not know if I can reach the battery!
Depending on the computer model or motherboard, I know there's sometimes default passwords or default pins (And in some cases tools to generate passwords that'll work). I can't remember how those tools worked but I onced used it on my own laptop when I successfully locked myself out of BIOS :p (Might be rainbow tables, I can't really remember).
Anyway, I guess looking for default passwords or pin could be a good starting point. Otherwise I guess you could try to crack it as mentioned in previous replies. And if you have physical access to the computer you could try to reset the password by removing the cmos battery (or pin, which in most cases are being used).
Thank you very much! Will try!
:D
Staff note: dis mothafucka is double-postin' bitch!
-
If you can tell me what lock they have on the chassis I will probably be able to open it, done my fair share of lockpicking ;)