January 21, 2020

Bypassing Windows Password via USB

dharavsamani
Share
steelwool-458840_1920

Bypassing Windows Password via USB

Requirements:

  1. Kon-Boot for Windows 2.5.0
  2. USB drive
  3. Victims computer (It Can Bypass Windows XP,  Windows Vista, Windows 7, Windows 8, Windows 8.1 and Windows 10 offline mode)

Steps:

  • Download “Kon-Boot for Windows 2.5.0” - Google what's in the quotation marks << and you'll find some great sources. (Note: If you download from somewhere else, it might cause some error like "menu.lst file not found". In such case, go to the folder: Kon-Boot for Windows 2.5.0Kon-Boot for Windows 2.5.0kon-bootUSBUSBFILES rename konboot.lst to menu.lst)
  • After downloading extract the .rar file somewhere on your computer drive.
  • Insert USB drive to be used for bypassing.
  • Double click “KonBootInstaller.exe
  • Click “OK” (Note: USB drive will be formatted)
  • Select the Available USB drive from the drop-down (Note: Better to unplug any other USB drives connected except the target USB drive). Click on “Install to USB stick (with EFI support)
  • Click “Yes” on the next screen
  • The DiskPart utility will start in cmd, let the process get completed
  • Voila!!!!
  • Now insert this USB drive on your victim's computer and restart.
  • Pay close attention to the first screen that appears. Look for a message that indicates which key you need to press in order to access the BIOS. That key is likely to be:
  • A Function key (such as F1, F11, or F12)--The Esc key--The Delete key
  • On the BIOS menu, select USB drive to boot from
  • Once the KON-BOOT gets started, the KON-BOOT loading screen will appear.
  • After this, windows login screen will appear. Just hit enter without typing password and you are done.
  • After your work is done, just unplug the USB drive and let the computer book from itself. The user password will be there. You can easily access your victim’s PC without getting caught :p
  • You can also reset the password of your victim's computer for a kind of DoS (Denial of Service) attack:
  • Log in to the computer via KON-BOOT. Open cmd and hit the “Shift" key 5 times. Your cmd will be run as administrator.
  • Now use the following command:
  • >net user {username} {password}
  • For removing the password, keep the password field blank:
  • >net user ABC “”
  • You can try various “net user” options. If you're wondering what these are, go ahead and Google it. ;)

Happy "Hacking" Everyone!

Start learning with Cybrary

Create a free account

Related Posts

All Blogs
Building a Security Team
June 27, 2023

Digital Forensics and Incident Response: What It Is, When You Need It, and How to Implement It

A quick guide to digital forensics and incident response (DFIR): what it is, when it’s needed, how to implement a cutting-edge program, and how to develop DFIR skills on your team.

Read More
Building a Security Team
June 28, 2023

How to Build a Red Team

An overview of what a red team is (and isn’t), and practical tips on how to build a Red Team and develop offensive security skills in your team.

Read More
Tools & Applications
June 7, 2023

How to Make the Most of Blending Learning with Cybrary Live

Learn how to get the most from your cybersecurity training platform by blending on-demand learning with virtual, live courses led by industry experts.

Read More
News & Events
June 7, 2023

Introducing the New Cybrary Learner Experience

Cybrary is launching a key update to the Cybrary Learner experience to elevate hands-on learning and measurement as guiding tenets of Cybrary’s mission.

Read More