CmosPwd
CmosPwd is a cross-platform tool to decrypt passwords stored in CMOS used to access a computer's BIOS setup. It works out of the box on most modern systems, though some esoteric BIOSes may require additional steps.
Description
CmosPwd recovers BIOS passwords by decrypting those stored in the CMOS memory. This is useful for accessing BIOS setups on systems where the password has been forgotten, enabling configuration changes or further system analysis in penetration testing or recovery scenarios.
The tool supports various BIOS types, including Award BIOS where recovered passwords differ from originals but still function. It operates on Linux systems like Kali, targeting the CMOS chip that retains BIOS settings across reboots.
Use cases include forensic analysis, system administration, and security assessments where BIOS access is locked. Note that while effective on modern systems, compatibility varies with BIOS implementations.
How It Works
CmosPwd reads CMOS memory contents, either directly from the system or from backups, and applies decryption modules specific to BIOS vendors. It supports keyboard layouts for certain BIOS types (French AZERTY, German QWERTZ) and executes targeted modules (e.g., /m0010011 for modules 3,6,7). For Award BIOS, it generates functional equivalents of original passwords. Additional functions include dumping CMOS, killing CMOS settings, or handling CMOS backup files for write/load/restore operations.
Installation
sudo apt install cmospwdFlags
Examples
cmospwd -hcmospwd /kfrcmospwd /kde /dcmospwd /w cmos_backup_filecmospwd /l cmos_backup_filecmospwd /r cmos_backup_filecmospwd /kcmospwd /m0010011