On Fri, Apr 24, 2009 at 12:52 PM, Kurt Buff <[email protected]> wrote: > http://piotrbania.com/all/kon-boot/
Interesting indeed. It basically looks equivalent to a bootable debugger with included pre-made macros to crack logon checks. The technology existed before, but this is the first freely downloadable thing I've seen that will make it a point-and-click operation. In a Windows domain, I don't think this would bypass domain security. So you'd be in on the local computer, but you wouldn't have a valid security token/ticket from a DC, so other network hosts would reject you. I *think*. (Cached credentials might complicate matters; I dunno.) Of course, once you're in to the local machine, you're most of the way there. Disabling booting from external media, and password protecting the BIOS to prevent the user from changing it, should be an effective countermeasure. If this tool works and becomes well-known, I suspect such countermeasures will become more commonly used. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
