Jump to content











Photo
- - - - -

KON-BOOT


  • Please log in to reply
40 replies to this topic

#1 was_jaclaz

was_jaclaz

    Finder

  • Advanced user
  • 7101 posts
  • Location:Gone in the mist
  •  
    Italy

Posted 18 May 2009 - 08:04 AM

Rootman just posted on 911CD about this little app:
http://www.911cd.net...showtopic=23014

http://www.piotrbani...m/all/kon-boot/

;)

:: About Kon-Boot
Kon-Boot is an prototype piece of software which allows to change contents of a linux kernel (and now Windows kernel also!!!) on the fly (while booting). In the current compilation state it allows to log into a linux system as 'root' user without typing the correct password or to elevate privileges from current user to root. For Windows systems it allows to enter any password protected profile without any knowledge of the password. It was acctually started as silly project of mine, which was born from my never-ending memory problems :D Secondly it was mainly created for Ubuntu, later i have made few add-ons to cover some other linux distributions. Finally, please consider this is my first linux project so far ;) Entire Kon-Boot was written in pure x86 assembly, using old grandpa-geezer TASM 4.0.


:: Hot Updates - Kon-Boot for Windows!!! HOT
As one of my past projects for KryptosLogic Kon-Boot was moved to Windows platforms. So now it provides support for Microsoft Windows systems and also the Linux systems listed in the next sections. Kon-Boot for Windows enables logging in to any password protected machine profile without without any knowledge of the password. This tool changes the contents of Windows kernel while booting, everything is done virtually - without any interferences with physical system changes. So far following systems were tested to work correctly with Kon-Boot (however its quite possible other versions of listed Windows systems may be suitable as well):


Tested Windows versions

Windows Server 2008 Standard SP2 (v.275) 

Windows Vista Business SP0

Windows Vista Ultimate SP1

Windows Vista Ultimate SP0

Windows Server 2003 Enterprise

Windows XP

Windows XP SP1

Windows XP SP2

Windows XP SP3

Windows 7

You can download this Kon-Boot version below in the download section.

No special usage instructions are required for Windows users, just boot from Kon-Boot CD/Floppy, select your profile and put any password you want. You lost your password? Now it doesnt matter at all :-)



;)

:D

jaclaz

#2 was_JFX

was_JFX

    Frequent Member

  • Advanced user
  • 483 posts
  •  
    Germany

Posted 18 May 2009 - 09:46 AM

That's great a must have for every bootcd :D

#3 Lancelot

Lancelot

    Frequent Member

  • .script developer
  • 5013 posts
  • Location:Turkiye/Izmir
  • Interests:*Mechanical stuff and Physics,
    *LiveXP, BartPE, SherpyaXPE,
    *Basketball and Looong Walking,
    *Buying outwear for my girlf (Reason: Girls are stupid about buying bad stuff to make themselves uglier :))
    *Girls (Lyric: Girl,...., You will be a womann, Soon)
    *Answering questions for "Meaning of life",
    *Helping people,

    Kung with LiveXP, Fu with Peter :)
  •  
    Turkey

Posted 18 May 2009 - 10:18 AM

:D :D ;)

#4 Joshua

Joshua

    Silver Member

  • Advanced user
  • 526 posts
  • Location:Germany
  • Interests:Computer, Bikes, and many others
  •  
    Germany

Posted 18 May 2009 - 11:41 AM

;)

:D
jaclaz

Tested, and works great!!! :D

Joshua

#5 agni

agni

    Frequent Member

  • Tutorial Writer
  • 270 posts
  • Location:Bengaluru (Bangalore)
  •  
    India

Posted 18 May 2009 - 12:22 PM

Anybody knows how to make it boot from usb?

#6 Icecube

Icecube

    Gold Member

  • Team Reboot
  • 1063 posts
  •  
    Belgium

Posted 18 May 2009 - 12:40 PM

Install syslinux or grub4dos on the USB stick:

syslinux.cfg (for syslinux):
LABEL konboot

KERNEL memdisk

APPEND initrd=FD0-konboot-v1.1-2in1.img
menu.lst (for grub4dos):
title KONBOOT v1.1

map --mem /FD0-konboot-v1.1-2in1.img (fd0)

map --hook

chainloader (fd0)+1

rootnoverify (fd0)


#7 sanbarrow

sanbarrow

    Silver Member

  • Developer
  • 788 posts
  • Location:Germany - Sauerland

Posted 18 May 2009 - 04:43 PM

works nice on Ubuntu 9.0.4

wow - most useful 110 kb of code I have seen in a while :D

#8 pscEx

pscEx

    Platinum Member

  • Team Reboot
  • 12707 posts
  • Location:Korschenbroich, Germany
  • Interests:What somebody else cannot do.
  •  
    European Union

Posted 18 May 2009 - 04:49 PM

Nobody afraid that it may be malware?

Peter

#9 was_jaclaz

was_jaclaz

    Finder

  • Advanced user
  • 7101 posts
  • Location:Gone in the mist
  •  
    Italy

Posted 18 May 2009 - 08:51 PM

Nobody afraid that it may be malware?


YES. :D
http://homepages.tes...no-answers.html

jaclaz

#10 Sonny

Sonny

    Member

  • Members
  • 74 posts
  •  
    United States

Posted 18 May 2009 - 11:09 PM

Worked ok on XP, but ruined my Win7 install

Note that win7 is installed to a vhd file on my XP c: drive.

Sonny

#11 maanu

maanu

    Gold Member

  • Advanced user
  • 1134 posts
  •  
    Pakistan

Posted 19 May 2009 - 07:03 AM

Worked ok on XP, but ruined my Win7 install

Note that win7 is installed to a vhd file on my XP c: drive.

Sonny


HOW it ruined ur 7 ? i mean what it did ?

#12 pscEx

pscEx

    Platinum Member

  • Team Reboot
  • 12707 posts
  • Location:Korschenbroich, Germany
  • Interests:What somebody else cannot do.
  •  
    European Union

Posted 19 May 2009 - 07:11 AM

YES. :D
http://homepages.tes...no-answers.html

jaclaz

Sorry, my question was not exact enough:

Should have been:

Anybody besides me afraid that it is malware?

Peter :D

#13 maanu

maanu

    Gold Member

  • Advanced user
  • 1134 posts
  •  
    Pakistan

Posted 19 May 2009 - 10:02 AM

Sorry, my question was not exact enough:

Should have been:

Anybody besides me afraid that it is malware?

Peter :D


well i understand why u r considering it a malware , it is BEHAVING like malware but it is not actually malware . we can say it is malware for the good :D

#14 dog

dog

    Frequent Member

  • Expert
  • 236 posts

Posted 19 May 2009 - 11:46 AM

Anybody besides me afraid that it is malware?

Or, how many of us tested this on a production system?
My vote doesn't really count - I run most things in a VM now...

#15 Sonny

Sonny

    Member

  • Members
  • 74 posts
  •  
    United States

Posted 19 May 2009 - 12:13 PM

HOW it ruined ur 7 ? i mean what it did ?


Reboots after post boot and before/durring hardware detection.
Startup repair cannot fix with the error that files have been corrupt.
I will try again with a normal install to see if its caused by the vhd install

Sonny

#16 pscEx

pscEx

    Platinum Member

  • Team Reboot
  • 12707 posts
  • Location:Korschenbroich, Germany
  • Interests:What somebody else cannot do.
  •  
    European Union

Posted 19 May 2009 - 05:11 PM

My concern, theoretical but possible, is:

Here is somebody who can inject some code into a running boot sequence.
  • For me it is possible that this somebody at the same time injects some code into some app / service etc. which at a given time like ET tries to telephone home ...
  • Is here any (trusted) member knowing the author and give us a 'You can trust him'
Posts speaking about 'Only in VM' are logically not relevant.
Imagine, that there is really (what I do NOT assume) malware in the app:
A new member, trusting the post on this board, trying in real OS, is ????

Peter

#17 Icecube

Icecube

    Gold Member

  • Team Reboot
  • 1063 posts
  •  
    Belgium

Posted 19 May 2009 - 06:29 PM

For me it is possible that this somebody at the same time injects some code into some app / service etc. which at a given time like ET tries to telephone home ...

Then you should have the same concern for each other tool that runs before the actual operating system or which runs when the installed operating system isn't active (bootable linux/windows CDs, ...). They can also modify data on the disk.

#18 fxscrpt

fxscrpt

    Frequent Member

  • .script developer
  • 328 posts
  •  
    Germany

Posted 19 May 2009 - 07:38 PM

Good or bad? I'm in doubt.

However, IE8 reports the ISO download as 'unsafe download'.
I think MS will classify the method as security risk and react.
Then there will be more encryption, more secrets and
more restrictions for developers.

Peter

#19 TheHive

TheHive

    Platinum Member

  • .script developer
  • 4198 posts

Posted 19 May 2009 - 08:20 PM

Nice!

#20 risolutore

risolutore

    Frequent Member

  • Advanced user
  • 311 posts
  •  
    Italy

Posted 19 May 2009 - 08:51 PM

also ESET report as a TSR malicious, but YOU have to suppress and add it to safe list!!
the the Comodo also report as unsafe..
YES they are unsafe, but very useful :D))

#21 dog

dog

    Frequent Member

  • Expert
  • 236 posts

Posted 20 May 2009 - 12:47 PM

Posts speaking about 'Only in VM' are logically not relevant.

Of course they are. If people post "wow it works" but actually they've used a disposable VM, then the "trust" that you're concerned about isn't there. But should people put such disclaimers on every post? It would get tedious to read.

#22 was_jaclaz

was_jaclaz

    Finder

  • Advanced user
  • 7101 posts
  • Location:Gone in the mist
  •  
    Italy

Posted 20 May 2009 - 06:38 PM

By the same "line of reasoning", I cannot see how anyone could have trusted Winbuilder and any of his projects.

When you start working with Winbuilder, basically you:
  • download a closed source executable
  • the executable connects spontaneously to a number of servers (on <xxx>.boot-land.net, or at least that is what it shows)
  • it downloads an awful amount of stuff for which there is no documentation about (from within the app)
  • it connects to an unknown board (boot-land to gather latest posts)
  • an antivirus often pops up saying that a virus is detected
  • when you run a project a number of actions is performed, running a number of programs that may theoretically completely destroy your computer
  • then, when you try running the build, in the rare event that it is succesful, you are effectively running on your PC another OS that has, or at least has in a number of projects:
    • internet access
    • no firewall
    • no antivirus
    • full access to files on your hard disk
  • if the build is not successful, unfortunately in a great number of occasions, you post on boot-land, where you are told:
    • to post your log (fair enough, should have read the stickies)
    • to use a path without spaces in the names (as well fair enough, but still cannot say why it cannot be written in LARGE FRIENDLY LETTERS as Warning #0, at least for newbies)
    • (sometimes) to disable your Anti-virus/Firewall and try again ;)

:D

Ooh, baby, baby, it's a wild world
It's hard to get by just upon a smile

Or, if you prefer:
If you don't want to risk some burns DO NOT PLAY WITH MATCHES!

:D

jaclaz

#23 joakim

joakim

    Silver Member

  • Team Reboot
  • 912 posts
  • Location:Bergen
  •  
    Norway

Posted 20 May 2009 - 06:59 PM

There's probably a few million reasons to get paranoid out of nothing when thinking to much..

Mr. Common Sense is sometimes a good friend to have on the journey.. Don't know what kon-boot's up to yet..

Joakim

#24 Brito

Brito

    Platinum Member

  • .script developer
  • 10616 posts
  • Location:boot.wim
  • Interests:I'm just a quiet simple person with a very quiet simple life living one day at a time..
  •  
    European Union

Posted 23 May 2009 - 06:30 PM

I've tested this nifty tool inside virtualbox with password protected accounts.

Windows XP SP2 - worked
Windows 7 RC1 - BSOD

This tool has also been around the web for about a year so it seems. The employed method might be related to these documents:
http://www.nvlabs.in...g-registry.html
http://www.nvlabs.in...and-videos.html

:D

#25 was_jaclaz

was_jaclaz

    Finder

  • Advanced user
  • 7101 posts
  • Location:Gone in the mist
  •  
    Italy

Posted 23 May 2009 - 06:54 PM

I think they are two separate projects, though most probably the approach is the same.

At least on the original piotrmania page, compatibility is stated to "Windows 7", whilst on the Kryptoslogic one:
http://www.kryptoslo...2&item=2&page=1
compatibility is specified to "Windows 7 Beta".

RC must have changed something.

The vbootkit has been released as GPL in version 2 ONLY compatible with Windows 7:
http://www.nvlabs.in...PL-license.html

Would this include RC? :D

jaclaz




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users