milliways-infosec/bitlocker-attacks
7
0
Fork 0
mirror of https://github.com/Wack0/bitlocker-attacks.git synced 2026-05-26 09:10:48 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

push button decrypt: mention exploitable major windows versions now Nickel is known to work

Browse source
This commit is contained in:
zc 2023-08-18 11:45:44 +01:00
parent 9e8472bf6b
commit 9e9182b923
1 changed files with 2 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

2
readme.md
View file

@ -90,3 +90,5 @@ At this point, the on-disk BitLocker metadata will contain a plaintext VMK.
Dump it, and use that VMK to decrypt the FVEK. Dump it, and use that VMK to decrypt the FVEK.
The decrypted FVEK can be used on the disk image made previously to decrypt the partition. The decrypted FVEK can be used on the disk image made previously to decrypt the partition.
Please note: I only successfully exploited this issue on Windows 10 in very specific circumstances (TPM-only BitLocker with no recovery key).
However, [others have successfully exploited this issue using a vulnerable WinRE on Windows 11 (Nickel)](https://blog.scrt.ch/2023/08/14/cve-2022-41099-analysis-of-a-bitlocker-drive-encryption-bypass/).