Floppies, CD-ROM’s and USB Drives Oh my!
I’m going be doing a bit of an insight to physical password attacks as in sat in front of your computer.
I’m going to show you two tools, those tools are Ophcrack and Konboot
the reason I have chosen these two is because firstly it’s incredibly easy to use these tools and also the two have different features of the common goal (compromising the machine/account) .
So whats the difference?
Ophcrack will try to crack your password so that you know it – this could be handy for trying that username and password on other machines/Accounts this uses rainbow tables something I wont be discussing today but will include links for those who want to understand what is actually happening
Konboot is even more impressive …
From there website…
“Kon-Boot is an prototype piece of software which allows to change contents of a linux kernel (and now Windows kernel also!) on the fly (while booting). In the current compilation state it allows to log into a linux system as ‘root’ user without typing the correct password or to elevate privileges from current user to root. For Windows systems it allows to enter any password protected profile without any knowledge of the password. It was actually started as silly project of mine, which was born from my never-ending memory problems 🙂 Secondly it was mainly created for Ubuntu, later i have made few add-ons to cover some other linux distributions. Finally, please consider this is my first linux project so far 🙂 Entire Kon-Boot was written in pure x86 assembly, using old grandpa-geezer TASM 4.0”
So if you missed any of that the skinny is that Kon-Boot will pretty much ignore the authentication part for you on a windows (and some linux) operating system – Sick.
Let’s Look at Ophcrack first
Before we start I’m using VMware so I can Screencast this… so what you see here can be applied to an actual machine you will need some CD burning software to put the Ophcrack image to a CD (and kon boot) I’ll provide links – altho it’s virtualized there is no difference to a physical machine.
probably best to watch the video full screen.[youtube=http://www.youtube.com/watch?v=UeWznQ4NoXI&fs=1&hl=en_US&hd=1]
I hope the screencast wasn’t to much of a roller-coaster for you
Ophcrack – http://ophcrack.sourceforge.net/
Kon-Boot – http://www.piotrbania.com/all/kon-boot/
ISO burner for windows – http://isorecorder.alexfeinman.com/isorecorder.htm
Full Disk encryption – speak to our guys at pentura.