Tag Archives: Hacking

Google play HACKED!

Hello Google.

My name is Marcin Grygiel.
When I am bored, I do strange things…
I take a bath with my cat,
I have Nexus 5 running Windows 7
and now I accidentally hacked Google play.

I think you can hire me!

[email protected]

 

Facebook Plusone Twitter Email

Windows 8.1 Security Bug – This Is It!

This is a full story about a bug I found in September 20, 2012.
I participated in the Mitigation Bypass Bounty program and informed Microsoft about a bug in Windows Vista-8.1 and Windows Server 2008-2012 R2, but they ignored it.

Windows 8.1 Bug

You can read all my previous posts about the bug:

22/09/2012 – Marcin Evil – Windows 8 RTM Hack!
16/05/2013 – Did Microsoft not learn anything?
29/05/2013 – Keep Calm and Hack The Planet!
23/06/2013 – Mitigation Bypass Bounty
26/06/2013 – Windows 8.1 Preview Bug – First Hack Ever!
30/09/2013 – Windows 8.1 RTM – still buggy!
12/10/2013 – Windows Security Bug on eBay!
20/10/2013 – Windows 8.1 Bug Disclosure – Final Countdown!

Windows 8 and 8.1 Platform Integrity Architecture (basics)

Windows 8 and 8.1 Platform Integrity Architecture (basics)

Looking for the Weak Link 

Looking for the Weak Link

A Weak Link

A Weak Link

We can use the Narrator from the Ease of Access Center in Windows 8.1
It can use a text-to-speech voice from other installed software.

Third-party Software

I will use IVONA Software, an award winning developer and provider of Text-to-Speech (TTS). January, 24th 2013 Amazon announced that it is acquiring Ivona.
You can download a free trial version here: http://www.ivona.com/en/voices/

Looking for a Bug

We would like the third-party software to show a message window on the Login Screen. Login Screen Bypass Theory:

  1. Some programs may display error messages when you try to use them in the wrong way. For example: change the system date to see activation window.
  2. If the error messages contain links try to run web browser.
  3. In IE, press the Alt key to display the Menu bar and click:
    File > Open > Browse, or press Ctrl+O > Browse.
  4. Use web browser to browse the computer for desired program
    (Run as an Administrator)
  5. Done!

Looking for a Bug

Step-by-Step Guide

  1. Change the system date to April 1st, 2013 or at least 30 days back.
  2. Download and install the IVONA 2 Text-to-Speech from: here
  3. Set the correct system date and time on your computer.
  4. Sign Out or Restart your Windows 8.1 system.
  5. Click the “Ease of Access option” icon on the Login Screen.
  6. You will see the following messages: “Ivona 2 Voice – Click to activate!” – click on it.
    Guide 1
  7. Click on “Buy now” link, it will run a web browser (IE, Chrome or other).
    Guide 2
  8. Important! Close the “IVONA Products Activation” window.
  9. In your browser, press: Ctrl+O > Browse.
     Guide 3
  10. Browse the computer for the program you want to run (run as an Administrator). This option is available in the context menu when you right-click on an executable file.
  11. You can use Task Manager (C:\Windows\System32\Taskmgr.exe) or Command Prompt (C:\Windows\System32\cmd.exe) to start other programs.
    Guide 4
  12. It can be done remotely via Remote Desktop (i.e. TeamViewer).

The Limitations

  • Try to run only one program for better stability, if you run more this causes the programs to crash.
  • Some programs won’t start and causes an error.
    For example Control Panel (C:\Windows\System32\control.exe)
  • Some programs may work, but not as you expect.
    For example Windows Explorer (C:\Windows\explorer.exe)

Final Words

Is it Text-to-Speech Voice’s or Microsoft Narrator’s bug?

I think Microsoft overlooked that you have to pay for most of the TTS Voices. The activation window will pop up and this is not a bug!

And now a response from Microsoft:

Yes, this does appear to be a security bug in the third party speech software, which should not allow a user to leverage any function outside of the speech functionality without login.

But why Windows allows web browser (IE, Chrome or other) to start and access to data at the logon screen? Please feel free to leave your comments below!

Author: Marcin Grygiel (First Ever)

Facebook Plusone Twitter Email

Windows 8.1 Bug Disclosure – Final Countdown

As you know I sold my Windows 8.1 Security Bug on eBay: here.
This is surprise for me! The winner of the auction has agreed and
I will disclose all information about the bug on October 21, 2013!
BTW, how can I find a good doctor? 😉

Windows 8.1 Bug - Disclosure Final

Facebook Plusone Twitter Email

Windows Security Bug on eBay!

I followed the advice of my readers and I decided to sell all information about a bug in Windows, which allows you to bypass the login password. I wonder if someone will buy it. If not, I will disclose all information about the bug for free on my website!

Windows Bug on eBay

I would like to remind you that, I participated in the Mitigation Bypass Bounty program and informed Microsoft about a bug in Windows Vista-8.1 and Windows Server 2008-2012 R2, but they ignored it. 

If you want to take part in the auction, you can bid online at : eBay

Facebook Plusone Twitter Email

Windows 8.1 RTM – still buggy!

Personally, I like changes in Windows 8.1. Everything is clearer, but why no one from the very large company (more than 89 thousand employees) done a guide-animation in Windows 8? After a year we received a Help App, Start Screen was changed and the Start Button has been restored – HURRAY! 😛

However, it is not relevant to the subject under discussion. I informed Microsoft about a bug in Windows Vista, 7, 8 and 8.1, but they ignored it. I participated in the Mitigation Bypass Bounty Program with prizes of $ 100,000 but it was a big scam. A Microsoft employee replied and said that Microsoft is not responsible for this bug (I can bypass Windows Logon Screen). If so, who is responsible for it… Santa Claus? First of all, Microsoft has not paid the award, but the worst part was that they did not fix the bug!

I have finally decided to disclose all information about the bug. Everything will be posted on my site on October, 16th, 2013!

Hacking Windows 8.1 RTM Logon Screen as simple as usual!

Windows 8.1 RTM Hack

Facebook Plusone Twitter Email

Windows Bug – Quiz (part 6)

I present to you my sixth quiz. Try to solve all six quizzes and get the unobscured version of my guide: How to hack Windows 6.0-8.1 also know as “A Brief Guide to World Domination“.


An unobscured version of the guide is included!

  1. Download the archive file – these include all quizzes.
  2. Solve the previous quizzes: Quiz 1, Quiz 2, Quiz 3, Quiz 4Quiz 5!
  3. Open a password pretected archive (password = quiz solution)
  4. Unpack a compressed file and wait for next quiz.
  5. You should solve all six quizzes to get the answer!

Quiz 6/6

Facebook Plusone Twitter Email

Windows Bug – Quiz (part 5)

I present to you my fifth quiz. Try to solve all six quizzes and get the unobscured version of my guide: How to hack Windows 6.0-8.1 also know as “A Brief Guide to World Domination“.


An unobscured version of the guide is included!

  1. Download the archive file – these include all quizzes.
  2. Solve the previous quizzes: Quiz 1, Quiz 2, Quiz 3, Quiz 4!
  3. Open a password pretected archive (password = quiz solution)
  4. Unpack a compressed file and wait for next quiz.
  5. You should solve all six quizzes to get the answer!

Quiz 5/6

Facebook Plusone Twitter Email

Windows 8.1 Preview Bug – First Hack Ever!

Just as I predicted, bug discovered by me (September 20, 2012) has not been fixed in the latest versions of Windows Server 2012 R2 and Windows 8.1 Preview (Build 9431).
I’ll write to Microsoft, and I hope this time they will fix it! 😛

Windows 8.1 Preview (Build 9431)

Windows Server 2012 R2 (Build 9431) Bug

Windows Server 2012 R2 (Build 9431)

Windows Server 2012 R2 (Build 9431) Bug

I have a great news for you!
I can’t wait for Austin Powers 4 to be released (2013)!

Austin Powers 4

Update: Microsoft Windows 8.1 Preview Remote Hack 

Facebook Plusone Twitter Email

Windows Bug – Quiz (part 4)

I present to you my fourth quiz. Try to solve all six quizzes and get the unobscured version of my guide: How to hack Windows 6.0-8.1 also know as “A Brief Guide to World Domination“.


An unobscured version of the guide is included!

  1. Download the archive file – these include all quizzes.
  2. Solve the previous quizzes: Quiz 1, Quiz 2, Quiz 3!
  3. Open a password pretected archive (password = quiz solution)
  4. Unpack a compressed file and wait for next quiz.
  5. You should solve all six quizzes to get the answer!

Quiz 4/6

Facebook Plusone Twitter Email

Why So Serious?

Do you think it is safe to leave me alone with random terminal?
The right answer… is NO! BTW, I use built-in camera 😀
This was Windows XP with Active Directory authentication.
Do not worry if there is a bug, I will find it and use it!

  • Hacking (thinking) Time – 5 minutes
  • Make Up Time – 15 minutes

Marcin vs Terminal

“Madness is the acme of intelligence.”
― نجيب محفوظ

Facebook Plusone Twitter Email