Penetration Testing mailing list archives
Re: Stealing Password from BIOS
From: "Sandeep Cheema" <51l3n7 () live in>
Date: Fri, 26 Jun 2009 18:43:26 +0530
It actually depends upon the BIOS make and build. Like for the Dell latitude there's Latitude_MasterPW.exe. What BIOS are you trying to get across?
Regards, Sandeep -------------------------------------------------- From: "Jon Kibler" <Jon.Kibler () aset com> Sent: Friday, June 26, 2009 16:00 To: <pen-test () securityfocus com> Subject: Stealing Password from BIOS
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, A couple of years back I saw a tool illustrated at a conference that would pull the encoded password from BIOS. However, Google fails to show any such tool. Note that I am not trying to clear/reset the password. What I want to do is to recover a BIOS password during a pen-test so I can reboot the box at will without making any changes to the box. Any pointers greatly appreciated. Jon - -- Jon R. Kibler Chief Technical Officer Advanced Systems Engineering Technology, Inc. Charleston, SC USA o: 843-849-8214 c: 843-813-2924 (NEW!) s: 843-564-4224 http://www.linkedin.com/in/jonrkibler My PGP Fingerprint is: BAA2 1F2C 5543 5D25 4636 A392 515C 5045 CF39 4253 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkpEoy4ACgkQUVxQRc85QlN5HQCfb2jT41sK1Mcden1wxIPUxE7U xm4AniAmWA0RV8pgXSltasRkEfPW8Iws =fUGe -----END PGP SIGNATURE----- ================================================== Filtered by: TRUSTEM.COM's Email Filtering Service http://www.trustem.com/ No Spam. No Viruses. Just Good Clean Email.
------------------------------------------------------------------------This list is sponsored by: Information Assurance Certification Review BoardProve to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.http://www.iacertification.org------------------------------------------------------------------------
------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review BoardProve to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.
http://www.iacertification.org ------------------------------------------------------------------------
Current thread:
- Stealing Password from BIOS Jon Kibler (Jun 26)
- Re: Stealing Password from BIOS Sandeep Cheema (Jun 26)
- Re: Stealing Password from BIOS Tim (Jun 26)
- Re: Stealing Password from BIOS Jerome Athias (Jun 26)
- RE: Stealing Password from BIOS Password Crackers, Inc. (Jun 26)
- Re: Stealing Password from BIOS Marcus Vinicius (Jun 29)