System-Software-Password-Cracking

System Software Password Cracking

Leave a Comment / CHFI, Knowledge Base / By

System software password cracking refers to the process of cracking the OS and all other utilities that enable a computer to function. The system creates passwords for the software to avoid access to system files and other secured information used during the booting of the system. Following are the ways by which one can access the system:

  • Bypassing the BIOS password
  • Using tools to reset the admin password

1. Bypassing BIOS Passwords

Basic Input Output System (BIOS), a type of boot loader, is a firmware code run that runs first when the users switch on the system. The main function of BIOS is to identify and initialize system component hardware, such as the hard disk, floppy drive, and video display card.

A BIOS password protects the computer system from others and restricts access to sensitive information.

Methods to bypass/reset the BIOS password:

  • Using a manufacturers’ backdoor password to access the BIOS password
  • Using password-cracking software
  • Resetting the CMOS using the jumpers or solder beads
  • Removing the CMOS battery for at least 10 minutes
  • Using a professional service
  • Overloading the keyboard buffer

Related Product : Computer Hacking Forensic Investigator | CHFI

Using Manufacturer’s Backdoor Password to Access the BIOS

Manufacturers provide a backdoor password to provide access to the BIOS setup if the user loses password. The passwords provided by the manufacturers are case-sensitive. If a particular backdoor password does not work, then users can try various case-sensitive combinations of the password. The combinations may include alphanumeric characters, numbers, and alphabets. Before trying the backdoor passwords, it is advised to read manufacturers’ documentation because BIOS combinations will lock the system completely, if the user types wrong password three times.

Some manufacturers and the backdoor passwords they provide are as follows:

  • VOBIS & IBM – merlin
  • Dell – Dell
  • Biostar – Biostar
  • Compaq – Compaq
  • Enox xo11nE
  • Epox – central
  • Freetech – Posterie
  • Iwill-iwill
  • Jetway spooml
  • Jetway spooml
  • QDI – QDI

Using Password Cracking Software

The following software will help the investigators to either crack or reset the BIOS on many chipsets:

1. CmosPwd

Source: http://www.cgsecurity.org

CmosPwd is CMOS/BIOS password recovery tool. It decrypts passwords stored in CMOS used to access BIOS SETUP. CmosPwd works and compiles under Dos-Win9x, Windows NT/W2K/XP/2003, Linux, FreeBSD, and NetBSD.

CmosPwd decrypts the password stored in CMOS used to access BIOS SETUP. It works with the following BIOS:

  • ACER/IBM BIOS
  • AMI BIOS
  • AMI WinBIOS 2.5
  • Award 4.5x/4.6x/6.0
  • Compaq (1992)
  • Compaq (New version)
  • IBM (PS/2, Activa, Thinkpad)
  • Packard Bell
  • Phoenix 1.00.09.AC0 (1994), a486 1.03, 1.04, 1.10 A03, 4.05 rev 1.02.943, 4.06 rev 1.13.1107
  • Phoenix 4 release 6 (User)
  • Gateway Solo—Phoenix 4.0 release 6
  • Toshiba
  • Zenith AMI CmosPwd can also backup, restore, and erase cmos.

2. Dave Grohl

Source: http://davegrohl.org

Dave Grohl is a multi-threaded distributed password cracker aiming at brute-forcing OS X user passwords. Initially created in early 2011 as a password hash extractor and companion tool but has since evolved into a standalone or distributed password cracker. It supports the entire standard Mac OS X user password hashes (MD4, SHA-512, and PBKDF2) used since OS X Lion and also can extract them formatted for other popular password crackers such as John the Ripper. The latest stable release is designed specifically for Mac OS X Lion and Mountain Lion.

Also Read : Understand Microsoft Authentication

Resetting the CMOS using the Jumpers

The motherboard features a set of jumpers or DIP switches that clear the 13105/CIVIOS settings, allowing them to reset.

To reset the CMOS using the jumpers, follow the steps below:

  • Check the computer or motherboard manufacturer’s documentation to locate the jumpers/DIP switches.
  • If the document is not available, by default, the jumper position is across pins 1 and 2.
  • Shut down the system and unplug the power cord.
  • Move the jumper from its default position so that it is across pins 2 and 3; this clears the BIOS/CMOS settings.

Resetting the CMOS using the Solder Beads

To reset the CMOS using the solder beads, follow the steps below:

  • By connecting or jumping specific solder beads on the chipset, it is possible to reset the CMOS.
  • By going through the computer and motherboard’s documentation for details, as there are too many chipsets to break down of which points to jump on individual chipsets and solder beads location can vary by manufacturer.

Tool to Reset Admin Password: Active@ Password Changer

Active@ Password Changer is designed for resetting local administrator and user passwords on Windows XP/Vista/2008/2003/2000, and Windows 7 systems in case an administrator’s password is forgotten or lost. Forgotten password recovery software has a simple user interface, supports multiple hard disk drives, detects several SAM databases (if multiple OS were installed on one volume), and provides the opportunity to pick the right SAM before starting the password recovery process. Active@ Password Changer displays a list of all local users. The software user simply chooses the local user from the list to reset the password, With Active@ Password Changer you can log in as a particular user with a blank password.

Tool to Reset Admin Password: Windows Password Recovery Bootdisk

Windows Key creates a password reset CD or USB Flash Drive that works during the boot process and instantly resets Administrator or other account passwords and Windows security settings that prevent you from logging in.

Features:

  • Resets passwords with a bootable CD or USB drive
  • Burns a password reset CD
  • Resets Domain Administrator password
  • Resets local Administrator password
  • Resets local policy settings
  • Resets secure boot options
  • Displays account properties
  • Supports RAID/SCSI/SATA drives

Tool to Reset Admin Password: Windows Password Recovery Lastic

Windows Password Recovery Lastic is a password recovery tool used to recover the password in Windows OSs. This tool requires rebooting into another OS. Run the tool on another computer to create a bootable USB stick or CD/DVD disk and then Boot from it on the computer and the program lists all user accounts it finds, thereby offering an easy way to remove a password of any of them.

Once Windows Password Recovery Lastic loads its boot part from a bootable, it offers the user a choice to either remove a password of some particular Windows user account or to save its hash. Removing a password is done instantly; therefore, this is a preferable way to access the computer.

Questions related to this topic

  1. How does the cracking program actually crack the password?
  2. Is password cracking illegal?
  3. Which tool is used to crack the password?
  4. What is meant by a password hack?

This Blog Article is posted by

Infosavvy, 2nd Floor, Sai Niketan, Chandavalkar Road Opp. Gora Gandhi Hotel, Above Jumbo King, beside Speakwell Institute, Borivali West, Mumbai, Maharashtra 400092

Contact us – www.info-savvy.com

https://g.co/kgs/ttqPpZ

Leave a Comment