CLI during WinX Install bypasses BitLocker

    CLI during WinX Install bypasses BitLocker

    CLI during WinX Install bypasses BitLocker


    Posted: 30 Nov 2016

    Press Shift + F10 during Windows 10 Upgrade to Launch Root CLI & bypass BitLocker

    Tuesday, November 29, 2016 Swati Khandelwal

    If your computer's security relies on Windows BitLocker Hard Drive Encryption software, then Beware! Because anyone with physical access to your PC can still access your files within few seconds.

    All an attacker need to do is hold SHIFT+F10 during Windows 10 update procedure.

    Security researcher Sami Laiho discovered this simple method of bypassing BitLocker, wherein an attacker can open a command-line interface with System privileges just by holding SHIFT+F10 while a Windows 10 PC is installing a new OS build.
    Read the full article at Press Shift + F10 during Windows 10 Upgrade to Launch Root CLI & bypass BitLocker
    johngalt's Avatar Posted By: johngalt
    30 Nov 2016


  1. Posts : 2,666
    Windows 11 21H2 (22000.593)
       #1

    I use this native CLI feature to prepare HDs prior to installing when performing a clean install. I had no idea that BitLocker was disabled during upgrades, though. This is interesting.

    I wonder if you can do this with any WinX .ISO / USB to any computer?
      My Computers


  2. Posts : 171
    Windows 10 Ent, Pro & Home
       #2

    So you have to have Physical access and be logged in to do this Hack. Couldn't you just go into the Control Panel and disable Bit locker, because you are already logged on? Maybe you should always use win key + L when you walk away from your computer. I thought it was funny yesterday when Betanews had this article, too.
      My Computer


  3. Posts : 2,666
    Windows 11 21H2 (22000.593)
    Thread Starter
       #3

    No. You would need to have login access to do that.

    This is only viable while Windows is upgrading, but still a problem nonetheless. I don't know if it could also be manipulated using a WinX install disc / USB drive, but if it can, then any device that doesn't have the BIOS / UEFI set to block booting from other devices (IOW, booting only from the installed HDD is allowed) is vulnerable, as I could simply boot the WinX installer and access the data on the machine.
      My Computers


 

  Related Discussions
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 02:59.
Find Us




Windows 10 Forums