Anyone Have a Copy of Bit-Unlocker?

By Daniel Miessler on March 3rd, 2008: Tagged as Encryption | Information Security

I’m looking to do a POC of the encryption attack recently put out by Purdue.

If you guys know of a way of getting a hold of a copy of the tool they used (bit-unlocker), or any other methods of easily dumping and searching the RAM from a system, do let me know.

  • Digg
  • Reddit
  • HackerNews
  • StumbleUpon
  • DZone
  • Google Bookmarks
  • Twitter
  • Facebook
  • del.icio.us
  • FriendFeed
  • Posterous
  • RSS
  • email
  

View Comments

  • jeff

    do you have any idea how to adapt the command for windows or macs?

  • I got this working guys.


    http://mcgrewsecurity.com/projects/msramdmp/


    I've dumped RAM from a Windows machine and pulled all kinds of crazy stuff, including Google searches performed previously and even a slightly mangled version of an AD password.


    And this is without doing any cooling...


    Very "cool" stuff.

  • just sent an e-mail to some colleagues; i'll let you know what i hear.

  • The researchers at Princeton have instructions on how to conduct a simple experiment testing memory remanence of your own system using a simple Python script:


    http://citp.princeton.edu/memory/exp/


    It's cool, but is mostly for illustrative purposes.

  • D

    http://mcgrewsecurity.com/projects/msramdmp/


    I think he wrote it as a weekend project to replicate the functionality of Bit-Unlocker. Probably not as polished, but it looks effective.

blog comments powered by Disqus

 

twitter_icon

Sample Original Content


Information Security

Tutorials and Primers

Culture & Society

Technology & Science

Politics

Philosophy & Religion

Miscellaneous

Tools & Projects


Blog Archives