Monday 13 April 2020

a1ive grub2 File Manager v1.40 now available

To update run "\e2b\Update agFM\Download and update agFM.cmd" from the USB drive.

  • New initial startup menu
  • Latest agFM grub2
  • Improve French
  • Add "\e2b\Update agFM\Download and update agFM_v2.cmd" for improved update experience so no 7z.exe and 7z.dll errors on update, etc.

The new startup menu is "\boot\grubfm\startup_default.cfg".  It has no timeout set and is in English.

If you create or have your own "\boot\grubfm\startup_menu.txt" file then the default startup_default.cfg file will not be used.

The new startup menu just lists the non-empty menu folders in \_ISO\ so the user can quickly access any of the files in each folder. If you have switched in a .imgPTN file, then the 'Restore E2B Partitions.cfg' file will also be listed.

Let me know if you like it. If you prefer to have no startup menu and just see a list of all the partitions as before, then just make an empty "\boot\grubfm\startup_menu.txt" file.

Note that the F1-F6 hotkeys will still work in this menu even though the small icons are not displayed.


If you want to 'tweak' this menu, just copy the startup_default.cfg file to startup_menu.txt and then edit the startup_menu.txt file.

Do NOT edit the startup_default.cfg file or the config file because the next time you update, they will be replaced!
Posted by at 1 comment:

Excellent new Decomputo YT video series in Spanish


In the past Decomputo has provided some excellent videos on E2B. Here is his latest one on E2B v2.

He promises more to come...
Posted by at No comments:

Saturday 11 April 2020

Are you French, Korean, Japanese or Vietnamese? Please help!

The a1ive grub2 File Manager menu system is now available in more languages, thanks to some users adding translations in Crowdin. However, we still need your help.

Please refer to the previous blog for details of how to add a translation.
Posted by at No comments:

Friday 10 April 2020

ChocBox.cmd script seems to be broken!

The ChocBox.cmd script allows you to make Chocolatey offline packages for the SDI_CHOCO install process.

This allows you to install Chocolatey packages without needing an internet connection.

You could run ChocBox.cmd (after installing chocolatey) on a Win10 system and it would download and make the package files.

It seems to be a powershell SSL issue and the ChocolateStore developer does not seem to be active, so I am a bit stuck!



UPDATE: The dev has fixed ChocolateStore.exe. Please update to E2B v2.02a Beta if you want to use ChocBox.cmd.



Posted by at 1 comment:

Hack into any Windows User Account from a UEFI Secure Boot

A cheaper (i.e. free, but less convenient) alternative to Kon-Boot, is to use the well-known UtilMan.exe hack to create a new Admin account.

Easy2Boot contains two XML files which allow you to semi-automate the hack process which works even on Windows 10 systems. It will backup the hacked files for you and automate the creation of a new ADMIN account. By using a different XML file, it will also undo the hack.

This should work on UEFI32, UEFI64 and MBR\Legacy systems.

Since we can usually Secure UEFI64 Boot to the agFM menu system, this means we can even hack a Secure Boot-enabled system (as long as the Kaspersky efi shim is not blacklisted in the target systems DBx UEFI firmware list!).

All we need is a WinPE or Windows Install ISO. I use a standard Windows 10 Install ISO because it will have the latest chipset and USB drivers in it and I can use the same ISO to re-install or repair Windows if I need to.

Requirements

  1. E2B+agFM USB drive
  2. \_ISO\WINDOWS\WIN10\Windows10_x64.iso  (any WinPE\Win ISO should work)

Method

We first need to reboot the Windows target system and configure it so that it will restart in Safe Mode on the next boot.

This is for two reasons:
  1. To ensure that Windows is not in a sleep (fast boot) or hibernate state.
  2. To boot to Windows in Safe Mode which temporarily disables Windows Defender and so prevents it from un-doing the UtilMan.exe file hack.
This can be done without needing to log in to any Windows account on the target system.

Once the Windows target system is set to boot into Safe Mode on the next boot, then we just need to UEFI-boot to E2B+agFM and select the Windows\WinPE ISO and the Load UtilMan - Hack Windows XML file...


After the files have been patched under WinPE, you will then reboot to Windows and type [WinKey]+U after booting into Safe Mode and then type 2 quickly...


Besides creating a new Admin account, it also launches the Window Control Panel password app. to allow you to change any account password.

For full step-by-step instructions, see the UtilMan Hack page on the E2B website.

P.S. The way to avoid this hack is to set a BIOS password, do not allow USB booting in the BIOS options or/and use BitLocker.

Posted by at No comments:

Thursday 9 April 2020

How to UEFI64 Secure Boot to Kon-Boot and break into a Windows account without needing a password


The good thing about Kon-Boot is that is does not change any files on the target system disk - it is all done in memory.

However, the current  previous Kon-Boot licensing system restricted you  into making licensed bootable USB Flash drive of only 16GB or less. 

This 16GB limitation is apparently applied because some BIOSes will not successfully MBR-boot to grub4dos if the USB drive capacity is larger than 16GB. This was true on some very old systems about 20 years ago, but AFAIK, it is not required for systems that are in service today. So the limitation makes no practical sense to me, except to prevent more sales of Kon-Boot licences so that it can be installed onto larger USB drives including large Easy2Boot USB Flash drives and USB hard-disk drives! In fact, what is more important, is that they should create a second Primary partition on the USB drive because there are still systems about which require this for MBR\Legacy booting!
Note: later versions now have no 16gb restriction after I asked them to remove the restriction 😉

 

Since Kon-Boot v2.7 one purchased license allows user to install on one and only one selected USB pendrive. Meaning the newest version will be installed only on this one selected USB pendrive (newest Kon-Boot files will be generated only for this device and they will not be visible in the installation package). For usability purposes, older versions of Kon-Boot will be allowed to be installed on a separate USB pendrive.
In short the BIOS part version can be older, the UEFI kon-boot part gets updated and locked to the USB drive on installation.

Kon-Boot does not, per se, support Secure Boot...

However, we can make a E2B+agFM USB Flash drive which can Secure Boot and break into Windows without needing a user password (as long as they don't use a Domain account and have USB Booting enabled in the BIOS settings).

I have included full details of how to make a Secure Boot version of Kon-Boot on an E2B+agFM USB drive in version 1.4 of eBook #4. So just use your confirmation email link to download the new version of the PDF.


Tip: You know it has worked if it takes 1-2 minutes to boot to Windows after this message!

If it boots very quickly then it hasn't worked (check there were no error messages displayed).

If you get a red 'Guru meditation' text screen, then you are not using the correct USB drive that you originally licensed - see FAQ.

P.S. I find that using a hacked Windows system can sometimes cause security issues with some apps and browsers, etc. So whether I use Kon-Boot or the UtilMan XML hack in Easy2Boot, once I get into Windows the first thing I do is make a new Admin account and then reboot (and undo any hack if required). I then have full admin access on an unhacked (unmodified) Windows system. The new Admin account can be removed after I have finished fixing the system or retrieving files, etc.
Posted by at No comments:

Wednesday 8 April 2020

agFM v1.38 is now available

If you boot on a Secure Boot UEFI64 system, you may sometimes get a Secure Boot error when booting certain ISOs - e.g. Parrot OS.


The way to avoid this is to use the F4 Settings menu and 'Install override security policy' just before you boot from the ISO...


The latest version of E2B's agFM now does this for you automatically when you select the (partnew/Easy2Boot) or (map) boot options.

Parrot OS can thus be given the .isodef file extension and it should secure boot without needing to use F4 - Install override security policy first.

Update agFM

To update to the current released version of agFM, run the .cmd file on the agFM partition:


Posted by at No comments:

Monday 6 April 2020

DrWeb LiveDisk (with non-persistent updates!)

I have updated the blog for DrWeb here and also provided a downloadable .imgPTN23 image file which can be used by E2B and agFM for UEFI64 booting. It seems however that the updates are not persistent even using a flash drive made with their utility!
Posted by at 2 comments:

Sunday 5 April 2020

eBook #4 PDF on agFM has now been revised

Download the latest version using the URL in your confirmation email from Payhip.

As well as some typos, it has updated and added information to be consistent with the latest version of agFM.


Posted by at No comments:

agFM v1.37 available with Ukrainian language + updates and new agFM video uploaded


I have uploaded a new video demonstrating agFM v1.37 and the best way to add ISOs for AV, Windows Install, WinPE, Linux, etc.
  1. Latest agFM build
  2. Update languages - add Ukrainian uk_AU
  3. Change bootup message
  4. Add \agFM_version.txt file to hold agFM version number
  5. Update the SAMPLE_startup_menu.txt file and add in new variables
  6. Add .isowin type
  7. Add sample .cfg files for DLCBoot and nbrt.
  8. Fix UEFI not booting as drive 0 issue
Download from Alternate Downloads area for a1ive grub2 File Manager.

Don't know why, but the volume is fine before I upload it to YT, but then it's always too quiet when streaming from YT - it's very annoying!
Posted by at 6 comments:
Subscribe to: Posts (Atom)