Anyone Have a Copy of Bit-Unlocker?

By Daniel Miessler on March 3rd, 2008: Tagged as Encryption | Information Security

I’m looking to do a POC of the encryption attack recently put out by Purdue.

If you guys know of a way of getting a hold of a copy of the tool they used (bit-unlocker), or any other methods of easily dumping and searching the RAM from a system, do let me know.

  • D

    http://mcgrewsecurity.com/projects/msramdmp/

    I think he wrote it as a weekend project to replicate the functionality of Bit-Unlocker. Probably not as polished, but it looks effective.

  • D

    http://mcgrewsecurity.com/projects/msramdmp/

    I think he wrote it as a weekend project to replicate the functionality of Bit-Unlocker. Probably not as polished, but it looks effective.

  • http://anthony.vance.name/ Tony

    The researchers at Princeton have instructions on how to conduct a simple experiment testing memory remanence of your own system using a simple Python script:

    http://citp.princeton.edu/memory/exp/

    It’s cool, but is mostly for illustrative purposes.

  • http://anthony.vance.name Tony

    The researchers at Princeton have instructions on how to conduct a simple experiment testing memory remanence of your own system using a simple Python script:

    http://citp.princeton.edu/memory/exp/

    It’s cool, but is mostly for illustrative purposes.

  • http://www.commonabnormality.com/ hot carl

    just sent an e-mail to some colleagues; i’ll let you know what i hear.

  • http://www.commonabnormality.com/ hot carl

    just sent an e-mail to some colleagues; i’ll let you know what i hear.

  • http://dmiessler.com/ Daniel Miessler

    I got this working guys.

    http://mcgrewsecurity.com/projects/msramdmp/

    I’ve dumped RAM from a Windows machine and pulled all kinds of crazy stuff, including Google searches performed previously and even a slightly mangled version of an AD password.

    And this is without doing any cooling…

    Very “cool” stuff.

  • http://dmiessler.com Daniel Miessler

    I got this working guys.

    http://mcgrewsecurity.com/projects/msramdmp/

    I’ve dumped RAM from a Windows machine and pulled all kinds of crazy stuff, including Google searches performed previously and even a slightly mangled version of an AD password.

    And this is without doing any cooling…

    Very “cool” stuff.

  • jeff

    do you have any idea how to adapt the command for windows or macs?

  • jeff

    do you have any idea how to adapt the command for windows or macs?

  • CellGeek

    If I could apply this to protected cell phone memory, there would be no more carrier locks to speak of. Very interesting stuff. All smart phones have ram, just like pc’s nowadays, and if we could bypass the mem protection and do a binary dump into say.. winhex, we’d have a universal way to recover qualcomm lock codes. AKA, we could play GOD. lol


Top

Popular

Information Security / Technology

Politics

Philosophy & Religion

Technology & Science

Culture & Society

Miscellaneous

Arguments

Projects

Collections

Twitter

What I'm Reading

Favorite Books and Essays

Top Blog Categories

Inputs