MCB Systems » kon-boot http://www.mcbsys.com/techblog Custom Software and I.T. Services Mon, 06 Feb 2012 18:58:19 +0000 http://wordpress.org/?v=2.9.2 en hourly 1 Kon-Boot vs. Windows 7 BitLocker http://www.mcbsys.com/techblog/2009/10/kon-boot-vs-windows-7-bitlocker/ http://www.mcbsys.com/techblog/2009/10/kon-boot-vs-windows-7-bitlocker/#comments Mon, 19 Oct 2009 10:33:58 +0000 Mark Berry /mark/post/Kon-Boot-vs-Bitlocker.aspx I’ve been running Windows 7 with BitLocker for a couple months and am quite pleased with it. BitLocker encrypts the hard drive so that if my laptop is lost or stolen, it should not be possible to access the data on the drive even if you remove the drive and attach it as a second drive to another system.

Recently though I read about a password “bypass” program called Kon-Boot that dynamically replaces the Windows kernel during bootup and allows logging in with any password. I wondered if BitLocker was vulnerable to this kind of program. If a thief could simply log on to my BitLocker-protected system, the encryption would be useless.

So I decided to give it a try.

Caveat:  I have no idea if Kon-Boot can harm a computer and/or upload data. Even with a full backup, there is a risk that it might corrupt the BIOS or otherwise make the computer unusable. Use at your own risk.

BitLocker Kicks Kon-Boot

So I booted Windows 7 with the Kon-Boot disk in the CD drive. BitLocker promptly reported that “the system boot information has changed”:

BitLocker 001

When I pressed Enter to continue, BitLocker prompted me for my password (Label and ID blacked out):

BitLocker 002

I didn’t want to actually change the BIOS, so I didn’t provide the password. I got this screen:

BitLocker 003

After rebooting without the Kon-Boot CD, I got this heart-stopping message:

BitLocker 004

Had Kon-Boot in fact damaged my system? Fortunately after another reboot, Windows 7 came up fine.

]]> http://www.mcbsys.com/techblog/2009/10/kon-boot-vs-windows-7-bitlocker/feed/ 0