Unlock the user screen without changing password

[secret4all]

I'm a penetrater. I just bought Rubber Ducky. My situation I want to test is: the user ran out and his screen is locked. I need to unlock the PC without change his password (I dont know his password). Is it possible to use ducky for this purpose? Is yes, any guide to do it?

[Mr-Protocol]

I dont think so. That would be more of a USB Switchblade type attack which no longer works (as far as I know). There is however a firewire exploit which works similar to how USB Autorun worked that can be used to run scripts to kill the lock screen I would imagine.

[br0k3nilluzion]

You could something like Konboot.. even the free one should work if its windows 7 and under...;p

[Mr-Protocol]

You could something like Konboot.. even the free one should work if its windows 7 and under...;p

As far as I know, Konboot is a boot cd. Doesn't really fit for a running system.

[secret4all]

You can use konboot as USB to bypass, except that it require to reboot for BIOS injecting. Rebooting is not enough as it make user suspect.

[crackruckles]

The only thing i could think of is a firewire attack something like project inception www.breaknenter.org/projects/inception/ you could put this on a pi with a usb to firewire adapter cable and attack that way, ive been using that for a while now but i can tell you it is not easy getting the pi version of linux to like the old firewire module as the code for firewire got updated a while back for linux and renders this attack impossible at the moment.