Robert Alaniz 28 July 2014 Different ways to use Kon-Boot This project consists of different ways of using Kon-Boot to bypass authentication on a windows machine. Kon-Boot is a toll that can bypass the authentication process my using a floppy image or an ISO. The different ways I have discovered you can boot with Kon-Boot were using a DVD with the ISO burnt in, thumb drive with a script, and a PXE over the network. With the PXE server, I have used a physical machine with Ubuntu 12.04 server and I have used a mobile device as a PXE server. The following are the different ways to use Kon-boot and the steps to achieve what you want to accomplish. Booting Kon-boot from a PXE server- Step 1 You will want to install Ubuntu Server 12.04 on your workstation that picked out for your PXE server. This link will help you get started. http://www.ubuntu.com/download/server.
Step 2 : Installing Ubuntu Server 12.04 LTS. You want to choose Install Ubuntu Server. -Choose English for the Language and the keyboard Layout. -Make sure if you want to configure from scratch, keep your Ethernet cable detached from your NIC.
- This screen will appear that the Network Auto-configuration has failed. Just continue for you will be configuring it when the server is up and running.
- Select to configure the network manually. Alaniz
- On this page you are going to set an IP address for your server. On the following pages it will ask for your subnet mask, your default gateway, and you named server address which should be the same as the IP address that you gave the server.
- You now have to choose how you will use your disk space. For this project I selected the Guided use entire disk and set up LVM. - Next you will pick the hard drive you want to configure. Then it will ask if you want to write the changes, select yes.
- Choose amount of the volume group you want to use for the guided portioning. I used 20.0 GB of my hard drive. Once you chose your amount and press continue, you will write the changes to the disk. - The next page will ask if you need an HTTP proxy. You can skip this for now since we are just configuring a machine for the inside network only. - The next page will ask if you want to install security updates automatically. I chose update automatically.
- The software selection page lets you choose what you want services you want to install for the server. Since we are just using it for a TFTP and DHCP server, we will not need any of these services. - The following page will ask if you want to install the GRUB boot loader to the master boot record. You will want to install it. - Ubuntu will finish its install. STEP 2: Downloading the Kon-Boot image.
- Kon-boot cost $15.00 for the personal version which supports 64-bit. If you are running 32 bit you can find a free version on a trusted site. When you obtain one of the versions that you need, then you will need to save it on the windows machine. We will come back to it when we transfer it over to the server using WinSCP. STEP 3: Installing and setting TFTP and DHCP on the server. - First thing you want to do is sign in as the user that you created. - After you sign in as the user, you will need to create a root password to give you access to the root. (As shown above)
- You need to verify that your Ethernet port is configured with the IP address that you assigned earlier during installation. To check, type ifconfig and verify. - If not the follow command will enter a address to the Ethernet port that u want to assign. - Next we will install the DHCP server with the command shown below. - After the DHCP installs, you will need to locate the DHCP configurations. Enter cd /etc/dhcp. Once you in that path you will enter nano dhcp.conf and you will see this output.
- This configuration you will edit the block for an internal subnet. Here you will add your network number, subnet (net-mask), a domain name, option routers, and your broadcast address. You option router for this project will be the address for your server. After you edit this file press control Z to save it. In order for this set up to work you must remove the # on the lines you edited. - The next thing you want to do is install you TFTP server which is a simple command. At the same time you will install a few extra services that you will need. This is the command to install all of them. apt-get install tftpd-hpa syslinux vim-nox openssh-server This command not only installed the TFTP, but also installed a version to edit text files and a SSH server. - The next thing you are going to want to do is to create this directory structure and you will been to copy it to the TFTP root.
mkdir /var/lib/tftpboot/pxelinux.cfg cp /usr/lib/syslinux/memdisk /var/lib/tftpboot # used to boot a floppy image cp /usr/lib/syslinux/pxelinux.0 /var/lib/tftpboot # the PXE boot file cp /usr/lib/syslinux/vesamenu.c32 /var/lib/tftpboot # for the PXE menu The TFTP server should be running after this command but to make sure you can enter: service tftp-hpa status to verify it is running. Step 4- Installing WinSCP on you windows machine (client) then transferring files to your Ubuntu server with ease. - Once you finish installing this software, a prompt will appear if you want to run it. You will want to run it for the this screen to appear.
- Before you continue wilt h this screen, you will need to enter the command prompt and insure that the client is receiving DHCP from the server. Then ping the server to insure connectivity with the server. - The only thing you will need to do here is on the host name line, you need to enter root@x.x.x.x Server address. Once you do that login. You will see that it is trying to connect. It will then ask you for the root password to continue with the connection between the 2 machines.
- Once you connect with the server, this will be the next screen. - On the left side is all the files on your windows machine and the right side is you Ubuntu server. On your windows machine you will need to find the Kon-Boot
image. On the server side, you will need to select the destination that you want to transfer it at. In this case it will be the var/lib/tftpboot. - Once the path is set and the kon-boot file is chosen, then you can hit the copy button to transfer. Step 5: Editing the text file for the PXE boot. - You will been to enter this path on the server to get where you will need to edit the file for PXE-boot. /var/lib/tftpboot/pxelinux.cfg. Then you will want to type nano default. You will not need this. Set to your Password.
You will need to write this file in order for the file to be retrieved from the PXEserver to the client. After you are done you will need to load into the boot sequence on startup. Different machines have different keys to do this. On the windows machine I had, the key was F10. - Once you boot on to the network you should see a screen that you edited saying Kon-boot floppy image. Once you chose kon-boot, it will ask you for a password which you configured with the text file you edit earlier. - After the password has been entered you will see this screen. - Once this screen has past, it will start loading windows. Once the password screen appears, all you would have to do is press enter and you should be able to access the users account.
Kon-Boot over a mobile device- - I used a Samsung galaxy3 phone (noted- you have to root the phone before you can continue the project.) - You will need a micro usb to a usb connection for your phone. - USB with kon-boot floppy image. Step1: Rooting your mobile device. I look on the internet to see the process of rooting my Samsung galaxy 3 phone. http://www.droidviews.com/root-verizon-galaxy-s3-android-4-3-vrucml1-firmware/ Step 2: On your mobile device, enter the google store and download. You will need to download BukerPXE. Step 3: After BukerPXE is downloaded, you will need to attached your USB w/ Kon-boot into your phone. You need to go to my file folder on the phone and locate bukerpxelite. Once in the folder, enter the tftp folder and insert the kon-boot file in here. Step 4: In order for this project to work you will need to be connected to the WIFI and the client needs to be in the same LAN subnet. Step 5: You will need to boot the client s computer over the network and should connect to the mobile device and should receive the payload from the phone. Using the Disc - You will been a copy of Kon-boot s ISO on disc and the clients machine.
Step1: Turn on the client s machine, open the disc tray, and insert the disc. During boot up you will need to hit the combination to choose where you want to boot to. You will choose the DVD drive. Step 2: It will show the Kon-Boot menu and then start loading the password screen. All you have to do is hit enter and you will gain access to the machine. Kon-Boot on USB - You will need a USB and the latest version of Kon-Boot. Step1: When you obtain the Kon-Boot software on your machine you will have downloaded a few versions of the tool. The ISO image for DVD, Floppy for Floppy discs or PXE boot files, and a USB version which has an application that will help setup you USB. Step 2: Plug in you USB and remember which drive it is located on. You will click the USB install application and will prompt you what you need to do. It will ask is the drive the correct drive your USB is located on. Once you choose yes it will take a few seconds and prompt you a successful USB install. Step 4: You will follow the same instructions that was posted on the DVD boot with Kon- Boot. http://www.droidviews.com/root-verizon-galaxy-s3-android-4-3-vrucml1-firmware/