太帅气了!仅仅6KB的Kon Boot写到grub里引导,就能绕过win7的开机密码!本人亲自试过!而且这种破解windows7开机密码的方法非常简单,如果你不小心忘记了windows7的开机密码。那么这个方法一定很实用——别不当使用哦,本人不服法律责任。下面是我破解的方法:
之前看到Kon Boot Help Guide里的一段话:
1.5 How it works
Kon Boot boots from external media such as floppy, CD, or USB removable drives.
When a PC running Windows is started with Kon Boot, the BIOS of the PC will then be
hooked by Kon Boot.
After hooking the BIOS, Kon Boot will modify the Windows kernel to allow a user to bypass
the step of Windows authentication procedure during Windows Logon.
The changes made to the Windows kernel are temporary only. Rebooting the PC will restore
the functionality of the Windows kernel and its corresponding authentication procedures.
一开始觉得他说得很玄,还半信半疑,现在自己试出来了,很激动的想同大家分享。Kon Boot其实有三个版本:iso版(110KB),img版(1440KB)和img版(6KB)。(下载地址:http://u.115.com/file/clgb5jaz#konboot.rar)前两个版本我没试过,但可以参考http://www.piotrbania.com/all/kon-boot/。
===========================
All CD-ISO’s are working in so called Floppy Emulation mode, which should be handled correctly by 100% of Bioses which support the El-Torito bootable CD format. The ISO images were created by some really basic utilitty created by me, however you can convert the floopy images to iso’s by using programs like mkisofs etc. etc.
===========================
6KB的这样使用:
- 准备一个用FbinstTool.exe写入的可引导U盘(推荐“天意U盘维护系统 1.5网络增强版”)。
- 打开FbinstTool,进入(ud)–>BOOT–>IMGS,在右侧窗格内右击,选“扩展分区导入文件”,把6KB的kon.img导入进来。
- 通过工具栏按钮进入”Grldr菜单“,在最后添加
==============================
title 【11】Kryptos Logic: Kon-Boot v1.1
map –mem (bd)/BOOT/IMGS/kon.img (fd0)
map –hook
chainloader (fd0)+1
map (hd1) (hd0)
map –hook
rootnoverify (fd0)
===============================
右击,选“保存菜单(UTF8)”。
4、开机重启,从USB-HDD引导,选第11项,闪过一个画面,进入windows7系统。
5、选一个有密码的账户,随便敲入几个字符,回车,顺利进入win7系统。
很简单把,仅仅几下就破解了windows7开机密码,这就是黑客精神!你微软的系统开机密码算法再复杂,再保密,又有啥用?我们绕过你!(文:SmilingSun 转载请注明出处http://mtoou.info/kon-boot-windo7-pojiemima/)