Method 1. Printer Dongle Method:

Works with Portege, Satellite, Satellite Pro, Tecra and Libretto Laptops of the following model numbers :

100(1xx) 200(2xx) 300(3xx) 400(4xx) 500(5xx) 600(6xx) 700(7xx)
1000(1xxx) 2000(2xxx) 3000(3xxx) 4000(4xxx) 7000(7xxx) 8000(8xxx)
(A15-S 127) (1415-S 173) SERIES & Some DVD Models
The “xxx” above means that each x can be any number, i.e. 1xx could be 101, 103, 111, 112 etc.

* First cut a plug from an old DB25 printer cable, and open the casing of the plug. This is how the pins look:

* Now connect:
o Pin 1 to Pin 5 and to Pin 10 ( go from 1 to 5 and from 5 to 10)
o Pin 2 to 11
o Pin 3 to 17
o Pin 4 to 12
o Pin 6 to 16
o Pin 7 to 13
o Pin 8 to 14
o Pin 9 to 15
o Pin 18 to 25

It should look something like this:

Plug it in and bootup

METHOD 2. Shorting a jumper:

In order to clear a BIOS of Compal manufactured units you need to use the NO POWER method, units manufactured by Inventec need to be to be POWERED ON to rest the BIOS.

To reset Compal units:

1. Turn off the POWER
2. Remove the battery and power cord
3. Peel back any black mylar (if any) covering the jumper
4. Using a flat screwdriver, short the jumper by connecting the two jumper points
5. Reset the computer and verify the BIOS has been reset, if not then repeat steps

Inventec units can skip steps 1 and 2

METHOD 3. Challenge/Response Code:

The challenge/response code method consists of matching a Challenge code ( power the machine up,press ctrl,then tab,then ctrl, then enter) generated on your machine and matching a Response code generated by Toshiba and calling a Toshiba Tech Support Agent.

Satellite p100 and pro p100 : with laptop off,remove wifi card and short pads marked jp8 for 10 secs

satellite l10,l20,l30 and pro l20 : with laptop of short pads marked jp1 for 15 secs (l20 short pads marked g1)

satellite m100 and tecra a6 : with laptop off ,remove memory and insulation under memory and short pads marked clr1 for 15 secs

(satellite 17** series,1100,1110,1130, 1200, 1900, 2430, 3000 P20,P30, P33, A30, A70, A80, M40X, M50,M60, M70, M100)as above

tecra a3,s2,a5,a6 : pads are by memory modules and will be labeled J1, J2, J5, J7, J9 or clr1

satellite a100,tecra m7 : remove keyboard and short pads marked c88 while turning laptop on, remove short as soon as Toshiba logo appears

Satellite A100 (PSAA2A-02C01N) : Remove Memory Cover from base of machine
Release & remove right side Memory Module,Lift black plastic insulation
Locate & short PAD500 Pin 1 & 2 together,Power on machine while still shorting Pin 1 & 2
As soon as the TOSHIBA logo appears, remove short

TECRA A4 & Satellite M40

Open modem & Wi-Fi card cover,Remove mini PCI Wi-Fi card
Lift up black plastic,Locate & short C738 Pads 1 & 2 together
Power on machine while still shorting Pads 1 & 2
As soon as the TOSHIBA logo appears, remove short

tecra s1 : TECRA S1

Open palm rest cover,Remove mini PCI Wi-Fi card
Lift up black plastic,Locate & short C5071 Pin 1 & 2 together
Power on machine while still shorting Pin 1 & 2
As soon as the TOSHIBA logo appears, remove short

NOTE SOMETIMES THESE WILL TAKE A COUPLE OF TIMES TO WORK,BUT THEY WILL WORK.

GPU-Accelerated Wi-Fi Password Recovery

The latest generation of ElcomSoft’s proprietary GPU acceleration
technology supports, for the first time, both ATI and NVIDIA hardware. The
technology offloads parts of computational-heavy processing onto the fast and
highly scalable processors featured in the latest ATI and NVIDIA boards. When
one or more compatible ATI or NVIDIA graphics cards are present, the
patent-pending GPU acceleration technology kicks in automatically.

This time, ElcomSoft has used the technology to accelerate the recovery
of WPA/WPA2 PSK passwords, allowing network administrators to perform timed
attacks on their wireless networks in order to determine how secure exactly
their networks are. Considering WPA/WPA2 strong security with the minimum
password length of 8 characters, Elcomsoft Wireless Security Auditor employs
the highest-performance dictionary-attack with advanced mutations to allow
carrying out a password audit within a limited timeframe.
For more information visit: http://ewsa.elcomsoft.com

The attack, described as the first practical attack on WPA, will be discussed at the PacSec conference in Tokyo next week. There, researcher Erik Tews will show how he was able to crack WPA encryption, in order to read data being sent from a router to a laptop computer. The attack could also be used to send bogus information to a client connected to the router.

To do this, Tews and his co-researcher Martin Beck found a way to break the Temporal Key Integrity Protocol (TKIP) key, used by WPA, in a relatively short amount of time: 12 to 15 minutes, according to Dragos Ruiu, the PacSec conference’s organizer.

They have not, however, managed to crack the encryption keys used to secure data that goes from the PC to the router in this particular attack

Security experts had known that TKIP could be cracked using what’s known as a dictionary attack. Using massive computational resources, the attacker essentially cracks the encryption by making an extremely large number of educated guesses as to what key is being used to secure the wireless data.

The work of Tews and Beck does not involve a dictionary attack, however.

To pull off their trick, the researchers first discovered a way to trick a WPA router into sending them large amounts of data. This makes cracking the key easier, but this technique is also combined with a “mathematical breakthrough,” that lets them crack WPA much more quickly than any previous attempt, Ruiu said.

Tews is planning to publish the cryptographic work in an academic journal in the coming months, Ruiu said. Some of the code used in the attack was quietly added to Beck’s Aircrack-ng Wi-Fi encryption hacking tool two weeks ago, he added.

WPA is widely used on today’s Wi-Fi networks and is considered a better alternative to the original WEP (Wired Equivalent Privacy) standard, which was developed in the late 1990s. Soon after the development of WEP, however, hackers found a way to break its encryption and it is now considered insecure by most security professionals. Store chain T.J. Maxx was in the process of upgrading from WEP to WPA encryption when it experienced one of the most widely publicized data breaches in U.S. history, in which hundreds of millions of credit card numbers were stolen over a two-year period.

A new wireless standard known as WPA2 is considered safe from the attack developed by Tews and Beck, but many WPA2 routers also support WPA.

“Everybody has been saying, ‘Go to WPA because WEP is broken,’” Ruiu said. “This is a break in WPA.”

If WPA is significantly compromised, it would be a big blow for enterprise customers who have been increasingly adopting it, said Sri Sundaralingam, vice president of product management with wireless network security vendor AirTight Networks. Although customers can adopt Wi-Fi technology such as WPA2 or virtual private network software that will protect them from this attack, there are still may devices that connect to the network using WPA, or even the thoroughly cracked WEP standard, he said.

Ruiu expects a lot more WPA research to follow this work. “Its just the starting point,” he said. “Erik and Martin have just opened the box on a whole new hacker playground.”

Breaking Wi-Fi Protection with Elcomsoft Distributed Password Recovery

With growing numbers of Wi-Fi networks used by businesses and individuals all over the world, security becomes utterly important. There are currently two methods of protecting Wi-Fi networks, WEP and WPA/WPA2. Unlike enterprise, RADIUS protected networks, consumer-grade WPA and WPA2 protection methods rely on passwords and encryption to protect traffic transferred between users and network access points. However, WEP, the older protection method, is no longer considered secure even for home users, as sometimes it can be broken in less than two minutes due to security flaws discovered in the algorithm.

The newer WPA/WPA2 encryption is inherently more secure than WEP. The only way to break WPA and WPA2 encryption is to use a brute force attack, which involves trying all possible passwords in the hope to discover the only correct one. With billions of possible combinations, it can take years to break into a WPA/WPA2 protected network. However, WPA/WPA2 protected networks are not immune against distributed attacks performed with GPU-accelerated algorithms.

With the latest version of Elcomsoft Distributed Password Recovery, it is now possible to crack WPA and WPA2 protection on Wi-Fi networks up to 100 times quicker with the use of massively parallel computational power of the newest NVIDIA chips. Elcomsoft Distributed Password Recovery only needs a few packets intercepted in order to perform the attack. The new product of ElcomSoft Co. Ltd. makes it possible to quickly perform security audit of corporate Wi-Fi networks, allowing to test network security against threats such as inappropriate WLAN security policy.

Using NVIDIA Cards to Break Wi-Fi Protection Faster

Today’s video cards such as NVIDIA GeForce GTX280 can process hundreds of billions fixed-point calculations per second. Add as much as 1 GB of onboard video memory and up to 240 processing units, multiply it by two by using a couple of NVIDIA cards, and enter the whole new world of super-parallel computational power for just a few hundred dollars.

Until recently, all the power of highly parallel, super-scalar processors in 3D graphic accelerators could only be used for gaming. ElcomSoft Co. Ltd. has invented a way to utilize the massively parallel computational power of NVIDIA gaming cards for increasing the speed of password recovery . Elcomsoft Distributed Password Recovery, its flagship password recovery tool, is able to fully utilize recent NVIDIA chips used in laptop, desktop and server computers, increasing the speed of Wi-Fi password recovery up to 100 times compared to conventional CPUs.