@@Endermanch Thats not True. If you use OOBE. You can still bypass it. After you did the OOBE bypass nro, and you are now creating the user. Fill in the username and No password, in that case you dont get it. You can later set the password after the installation.
@@corey7219 You totally missed the point.... your answers can be read by any software running on the machine that can read the registry keys. Meaning your account can be compromised.
@@corey7219 Some years ago when I set up some computers at a place, I used imaginary answers for the security questions and I wrote them down into a txt on another computer then saved it onto the admin's pendrive.
The way I get around it: I don't set any password during OOBE, yes you can just press enter to continue, it accepts no password too, and set a password later on manually with net user through the Command Prompt.
Another way to avoid it may inquire that you use a Microsoft Account, bc I didn’t have to set up security questions when linking my acc to Windows, but it did show the security questions for a local account
When installing windows don't set a password, leave it blank. After the OS finishes installing, open cmd as admin and run "net user (yourusername) (password)"
That will set a password for your account with no security questions.
@@najwiekszypechowiec They pretty much mastered windows at windows 7, after that it has been downhill enshittification since :/
If the windows releases after 7 were like windows 7 but with the multiple desktop feature, giving more user choice to customise the GUI and some additional features(that users could switch off/choose not to install) then it would have been the best...but as nope we got windows 10 and especially windows 11 now with all this horrible telemetry and other "features" forced down us....
You forgot to mention one thing, to access the SAM key, you need higher permission level, a regular administrator account isn't enough, You can access it in two ways, either by using Windows PE, or by executing regedit with the NT AUTORITY/SYSTEM account (you can do that with a tool called "Process Hacker"), then you're good to go lol
@@throwaway6478 tho I think they mentioned this in the full video... And well, in case you didn't know, all the things You have mentioned here aren't the "whole operating system", they are just "security" features.
It's their bread and butter to not mention these things. If they didn't disable Syskey, Kerberos, BitLocker, MS accounts, THE WHOLE OPERATING SYSTEM etc., there wouldn't be a video.
If bitlocker isn't enabled you can just load the SAM file through an recovery stick and do stuff like enabling the admin account which has at default no password.
If you make an account, set it up without a password and Windows will not ask for the security questions! Then after you first install, immediately set a password using command prompt as admin and type “net “your_user_name” password” and there you go! Of course remove the quotations. That’s how I’ve been doing it for years.
The most insulting part is you're forced to use security questions in the OOBE, and the only way out of it is to not create a password until you get out of OOBE.
The way you can avoid the security questions is by adding a password to your user AFTER you installed Windows. If you do this, you will only have a password hint.
I didn't have the option when buying a new PC, it wouldn't let me connect to wify and I had to ask questions if or if, then I already added Microsoft account when I had wifi.
So what? Why should an attacker do that? That would be atupid from an attacker perspective, making a bat that logs the user out at startup does the same, with less hassle, not rly a problem
could they maybe be randomized with a random string on each boot so that a attacker has a harder time if also using bitlocker? but why bother the cmd trick is still not patched.
All it takes is someone with enough time to look in the registry and copy down the security answers. Assuming the managed to log in or it was left logged in. With this and Microsoft trying so hard to force us to the cloud I think it i time to ditch them! They were lazy or sloppy with the security in Windows and now they also have that Recall that they want to use to see everything that was ever on our screen. It becomes obvious to me that this is no good at all! Who in their right mind would give up system resources like CPU time and disk space just so that someone could spy on us? Those who actually accept it knowingly are the ones who I imagine are the easiest to brainwash and gaslight and for their heresies they probably deserve the misery!!
I dont enjoy using Linux at all but is Windows made by complete morons?! It's the only OS that just works but underneath it it's such a Frankenstein build.
Windows has never been a secure os, I'm not surprised. This doesn't really matter though, if you are going through the effort to do this, you can just change the password hash to a new one and log in. I hope this is patched in active directory though, even though important businesses probably use bit locker.
Unfortunately you're forced to set them when configuring an account password. The best solution is to just set them to long random strings that nobody will ever be abge to guess.
although i don't really know what's the risk here, yes sure it's in plain text, but it's not exactly "right there", it's sort of hidden and if you know howwhere it is and how to compile a program to extract them, why are you wasting time on something that can be changed or disabled when you can spend it on, idk, getting saved passwords from browsers. if you're a hacker and and want to break in in someone's pc, you need either physical access or the password, even if you knew where to find the security questions, you still need to access the system to access and it's not an issue if the attack is from inside the system because if they want your passwrd, they would use a keylogger or whatever, and then encrypt it to lock you out. why would you need to know where the person's parents first met if you can just access the computer in other ways. this is also something that was basically just discovered recently and now we might actually have a bit more hackers trying to get people's security questions, instead of keeping this a sort of a secret and reporting it to MS like you should. let's go back to when no one knew that you could steal kias with a usb lead, you're the first person to discover that, you wouldn't just film a video on how to do it and then go back to doing whatever you were doing, no, you contact kia and tell them like a proper, normal, likeable person
they are optional?! last time i installed windows it didnt give me a choice..
620 likesReplies (20)
@@Endermanch Thats not True. If you use OOBE. You can still bypass it. After you did the OOBE bypass nro, and you are now creating the user. Fill in the username and No password, in that case you dont get it. You can later set the password after the installation.
1 like@@idkShiba today helping someone install windows and i see what you mean
0 likes@@corey7219 You totally missed the point.... your answers can be read by any software running on the machine that can read the registry keys. Meaning your account can be compromised.
0 likes@@Fredomnomyes but not to niche audiences
1 like@@corey7219 Some years ago when I set up some computers at a place, I used imaginary answers for the security questions and I wrote them down into a txt on another computer then saved it onto the admin's pendrive.
0 likesJust type in an answer with a whole bunch of random numbers and letters that don't mean anything
0 likes@@teknixstuff Exactly what I meant. Security questions won't even pop up if the password is left empty.
0 likesLeave the password empty to skip it.
1 likeSecurity questions are not required when you make the account without password.
0 likes@@supergamerisawesome6158 net user YourUserName YourPassword
0 likes@@3angleboi What’s the full cmd to do it / instructions?
0 likesThe way I get around it: I don't set any password during OOBE, yes you can just press enter to continue, it accepts no password too, and set a password later on manually with net user through the Command Prompt.
7 likesAnother way to avoid it may inquire that you use a Microsoft Account, bc I didn’t have to set up security questions when linking my acc to Windows, but it did show the security questions for a local account
3 likes@@idkShiba Don’t set a password when you first set up Windows (OOBE). After you get to the desktop, press ctrl-alt-del and select Change a password.
0 likesyeah idk how to skip them its annoying
4 likesWhen installing windows don't set a password, leave it blank. After the OS finishes installing, open cmd as admin and run "net user (yourusername) (password)"
0 likesThat will set a password for your account with no security questions.
Lol@@ahmetdenizsezgin
3 likesim not sure if you were trying to say windows was threatening you or your install experiences didnt have more options?
15 likesDoes Windows even give you a choice anymore? 💀
94 likesThey are mandatory in a default OOBE FRX, if the OOBE is customized, they may be optional. The NTLM specification does not make them mandatory.
207 likesIt got cut off to "DO NOT use Windows" lol
216 likesstill true
Replies (7)
Shut up, idiot
0 likes@@proximalelk6186 still better than linux
0 likeswin 10 long term support was peak windows
1 likeFr win7 was last good windows
2 likes@@najwiekszypechowiec They pretty much mastered windows at windows 7, after that it has been downhill enshittification since :/
10 likesIf the windows releases after 7 were like windows 7 but with the multiple desktop feature, giving more user choice to customise the GUI and some additional features(that users could switch off/choose not to install) then it would have been the best...but as nope we got windows 10 and especially windows 11 now with all this horrible telemetry and other "features" forced down us....
@@najwiekszypechowiec and use any other version of Windows? I have to disagree
2 likesit should be "do not use windows 11".....
6 likesI just found this short 4 minutes after it released lol.
100 likesReplies (2)
@@Arctic123YT Your life has now peaked
1 likeI just found this comment 12 minuted after it got published lol.
2 likesYou forgot to mention one thing, to access the SAM key, you need higher permission level, a regular administrator account isn't enough, You can access it in two ways, either by using Windows PE, or by executing regedit with the NT AUTORITY/SYSTEM account (you can do that with a tool called "Process Hacker"), then you're good to go lol
116 likesReplies (7)
@@throwaway6478 tho I think they mentioned this in the full video... And well, in case you didn't know, all the things You have mentioned here aren't the "whole operating system", they are just "security" features.
0 likes@@WinDGDevnot basically they ARE the same thing
0 likesWIndows PE/RE are useless with BitLocker, except of course you have the recovery key, then you are admin of course.
0 likesIt's their bread and butter to not mention these things. If they didn't disable Syskey, Kerberos, BitLocker, MS accounts, THE WHOLE OPERATING SYSTEM etc., there wouldn't be a video.
5 likes@@DamariobrosWindows RE and Windows PE are basically the same thing, but yeah (I'm not talking about the modified versions of windows pe tho lol)
3 likesYou can use Regedit in WinRE on a recovery drive to access it as well
1 likeWatch the full video!
32 likesArent you obligated to add them if you use an offline windows account?
66 likesReplies (6)
@@windestruct Yeah, naw bud. That's like putting a stick in your own bike tire spokes and calling it an upgrade when you land on your face.
0 likesLeave the password box empty.
0 likesSet the password in the control panel, and then you don't need to set these questions.
1 likeJust use net user
5 likesDon’t set a password when you first set up Windows (OOBE). After you get to the desktop, press ctrl-alt-del and select Change a password.
15 likesyup, i use an offline account and as far as i can tell i cannot skip it :(
5 likesMicrosoft marketing so much about "security". Looks very secure to me!
12 likesLast thing I expected was for them to be stored in plaintext
3 likesHave you reported this security issue to microsoft?
21 likesReplies (4)
@@321JarnNo, they don't give a s឵឵h឵឵឵i឵឵t.
0 likesthey know already and don't care
6 likes@@alekslevet don't really think they care but they are forced to because they don't want the risk of negative PR.
2 likesDo you think they will care?
12 likesIf bitlocker isn't enabled you can just load the SAM file through an recovery stick and do stuff like enabling the admin account which has at default no password.
1 likeooh, you should make a new creepypasta malware with this script combined with whatever you've already done
5 likesIf you make an account, set it up without a password and Windows will not ask for the security questions! Then after you first install, immediately set a password using command prompt as admin and type “net “your_user_name” password” and there you go! Of course remove the quotations. That’s how I’ve been doing it for years.
17 likesReplies (2)
@@TheCoder55 I forgot about that way as well!
0 likesYou can also go the Ctrl+Alt+Delete menu to change the password without having to set those questions
3 likesI forgot what it was called but those “there is no escape” security questions were a reference to an older video I think.
1 likeThe most insulting part is you're forced to use security questions in the OOBE, and the only way out of it is to not create a password until you get out of OOBE.
0 likes"Don't use Windows" fixed that for you.
1 likeThe second short ever made on this channel
0 likesThe way you can avoid the security questions is by adding a password to your user AFTER you installed Windows. If you do this, you will only have a password hint.
0 likesReplies (1)
I mean yeah a lot of ppl aren't gonna use unattended install anyways if that what you're talking about
0 likesWhen any password or security text is in plaintext you know there’s an issue
0 likesrare footage of enderman posting shorts
0 likesbold of you to assume i actually use security questions at all
0 likesUnfortunately Windows security is not designed to support "tech-savvy" people, just a little privacy in homes and offices.
0 likesI didn't have the option when buying a new PC, it wouldn't let me connect to wify and I had to ask questions if or if, then I already added Microsoft account when I had wifi.
0 likesHey so how about you update no escape to have the security questions as THERES NO ESCAPE?
0 likesAlright but then what security settings do you recommend
0 likesoh I'm gonna have a lot of fun with this
0 likesSo what? Why should an attacker do that? That would be atupid from an attacker perspective, making a bat that logs the user out at startup does the same, with less hassle, not rly a problem
1 likewhat is the site for process hacker
0 likesmy security questions are just “1” “2” and “3” so it doesn’t matter
0 likescould they maybe be randomized with a random string on each boot so that a attacker has a harder time if also using bitlocker?
0 likesbut why bother the cmd trick is still not patched.
Can we avoid using them? OOBE\BYPASSHIT
0 likesOtherwise can't i simply delete this key? Or is it going to leave blink valid since the json is null
I just used security questions when setting up windows 10, and yet I don't think there is a way to bypass it.
0 likesI'm stupid
Just input 1, 2, 3
0 likesThat's why i am using CMD to set the password
0 likesReally shouldn't even have it stored at all like that
4 likesGotta tell my mum she has to remove it 😂
0 likesAre you from Lithuania?
0 likesBruh, why should I need to skip this OOBE Setup??
0 likesvoice revel here yay
0 likes"Good" "security" MICROSOFTTT
0 likesDon't know what else to say or if it means much but thanks for showing this Andrew
What? This is the dumbest way to save answers to a security questions. The answers need to be save as a hash, like a password.
0 likesYOU HAVE A VOICE , LIKE A DANIEL MYSLIVETS?
1 likeAll it takes is someone with enough time to look in the registry and copy down the security answers. Assuming the managed to log in or it was left logged in. With this and Microsoft trying so hard to force us to the cloud I think it i time to ditch them! They were lazy or sloppy with the security in Windows and now they also have that Recall that they want to use to see everything that was ever on our screen. It becomes obvious to me that this is no good at all! Who in their right mind would give up system resources like CPU time and disk space just so that someone could spy on us? Those who actually accept it knowingly are the ones who I imagine are the easiest to brainwash and gaslight and for their heresies they probably deserve the misery!!
0 likesI just spammed something random to it.. LOL
0 likesbro this shit is NOT optional
0 likesnoespace mentioned?!?!
0 likeshow to skip them in oobe
0 likeswow a short
0 likesi have my hint set to " " :^)
0 likesi didn't know you sausages to use your voice in videos!
0 likesI use uefi passwords mate
0 likesVideo zu 20/28 geschaut... Wo ist das gottlose Gespräch?
0 likesi was there in the stream
0 likesthat's crazy
0 likeshey can you help me with something
0 likesi just enter random stuff or "a" so who cares
0 likesI dont enjoy using Linux at all but is Windows made by complete morons?! It's the only OS that just works but underneath it it's such a Frankenstein build.
0 likesUhm my password hint is too ez
0 likesWindows has never been a secure os, I'm not surprised. This doesn't really matter though, if you are going through the effort to do this, you can just change the password hash to a new one and log in. I hope this is patched in active directory though, even though important businesses probably use bit locker.
1 likeCool :O
0 likesIt doesn't really matter since you can bypass a users passwords in ~10 minutes anyways
1 likeReplies (1)
*if they don't encrypt their files
2 likesBetter yet if you are able to:
2 likesDon’t ever use windows
Period
hello
0 likesNice
0 likesHello
0 likesWaduhek?
0 likesFirst 15 mins
Unfortunately you're forced to set them when configuring an account password. The best solution is to just set them to long random strings that nobody will ever be abge to guess.
0 likesDon't use Windows period, use Linux lol
1 likeThis is the main reason that I am going to go through tiny 11 just because of this reason security
0 likesdont tell us that the last part of the vid was a no escape update
0 likesDude stop posting videos in the wrong format, don't use portrait mode
0 likesReplies (1)
its a short video watch the full video if you dont want portrait
0 likesEven "security" is not secured
0 likesWindows is too much garbage through the years being held by cheap tape trying to not fall into hundred pieces.
0 likesAnd when somebody will tell them this they'll just answer "well, you should've made an online account"
0 likesReplies (1)
Or used BitLocker, or Syskey, or Kerberos - or any of the other security features of Windows you have to disable for these "tricks" to work.
1 likeHonestly at this point just don’t use windows 😂
0 likesNah i just dont use windows altogether
0 likesLinux is best
2 likesReplies (1)
b-b-b-but security, b-b-but the trust of Microsoft in Edge
0 likesBut what if Windows won't let continue without setting the security questions when setting a password?! 🤨
1 likeReplies (2)
@@YesThatBoyIsAJoJo It's Microsoft, what do you expected?
0 likesIn my head it doesn't make sense on how they just don't make it optional 😑
1 likeToday’s lesson is ‘don’t use Windows’
0 likesHere's a better lesson we learned. Don't use windows at any cost.
0 likes28 minutes old video
0 likesLooks like theresnoesape.exe virus remade or homemade
0 likes- BitLocker joins this group
0 likes- Enderman left the chat
although i don't really know what's the risk here, yes sure it's in plain text, but it's not exactly "right there", it's sort of hidden and if you know howwhere it is and how to compile a program to extract them, why are you wasting time on something that can be changed or disabled when you can spend it on, idk, getting saved passwords from browsers. if you're a hacker and and want to break in in someone's pc, you need either physical access or the password, even if you knew where to find the security questions, you still need to access the system to access and it's not an issue if the attack is from inside the system because if they want your passwrd, they would use a keylogger or whatever, and then encrypt it to lock you out. why would you need to know where the person's parents first met if you can just access the computer in other ways. this is also something that was basically just discovered recently and now we might actually have a bit more hackers trying to get people's security questions, instead of keeping this a sort of a secret and reporting it to MS like you should. let's go back to when no one knew that you could steal kias with a usb lead, you're the first person to discover that, you wouldn't just film a video on how to do it and then go back to doing whatever you were doing, no, you contact kia and tell them like a proper, normal, likeable person
1 likeTodays lesson! Don’t use Windows! (Is joke pls don’t cancel me on every platform)
0 likesOh fucking shit
0 likes