Yellowkey Bitlocker Exploit repo taken down
Posted by heavymetalusa@reddit | sysadmin | View on Reddit | 32 comments
Referencing this post from a few days back, it looks like the github repo regarding the yellowkey exploit has been removed from github. RIP Nightmare-Eclipse [*]
JamesTiberiusCrunk@reddit
Isn't it literally just a folder named FsTx at the root of the flash drive?
joedotdog@reddit
No.
Kurgan_IT@reddit
I'm sure no one will be able to use that exploit again, now it's off github. LOL.
itskdog@reddit
The author has said they had another exploit they were going to publish after the June Patch Tuesday. They appear to have some beef with Microsoft, hence the lack of responsible disclosure, and potentially some mental health issues, based on their blog.
simask234@reddit
Yeah I've been getting a really weird vibe from their blog posts
viral-architect@reddit
I'm guessig they reported the issue and were told to pound sand when it came time for Microsoft to give them the money.
fencepost_ajm@reddit
I thought I saw something about it being reported and dismissed as by design, but maybe I'm mixing it up with something like the Neverending Javascript issue unfixed since 2022.
north7@reddit
I mean, he who is without some "mental health issues" cast the first stone.
I'm guessing it's a combo of some neuro-spicisity, and trying to go through legit reporting channels and being shrugged off.
blow_slogan@reddit
I created an offline copy asap. Glad i did haha
omfgbrb@reddit
All I want to know is where was this shit when we were dealing with CrowdStrike? This would have saved us many many hours...
blow_slogan@reddit
Lol
twoyellowhammers@reddit
So, last week I foolishly moved a drive from one machine to a newer (W11) one.
I've NEVER activated Bit locker, but the drive wouldn't open.
I returned it to the original machine (W10), but it still shows as Bit locked.
My research into how to save the data on the drive has led me here, but it seems that this YellowKey thing, which might have saved me, is no longer available.
Is my drive toasty?
Help me fellow Redditors, you're my only hope!
farva_06@reddit
Sweet, I don't have to apply the mitigations now! /s
whatThePleb@reddit
Now Micro$lop Winblows is secure again.
Mind_Matters_Most@reddit
Microsoft is a security boundary /s
Tricuna@reddit
I'm pretty sure, anyone who knows what's what will have made their own backup of this for educational purposes of course.
heavymetalusa@reddit (OP)
I got mine 🙏🏾
OkDimension@reddit
I'm only surprised that it took Microsoft more than a week to delete it from their own platform.
UnknownPh0enix@reddit
“What is dead may never die”: https://web.archive.org/web/20260520184528/https://github.com/Nightmare-Eclipse
jefbenet@reddit
and archive dot org DEFINITELY doesn't have it archived... /s
dark_volter@reddit
no, the fstx file is 404ing on wayback , it didnt archive too deeply into the github page apparently
jefbenet@reddit
i just downloaded the full zip through archive with no issue
elitexero@reddit
Annnd this is why I run a local gitea instance - so I can clone github stuff that I know is going to disappear soon.
reseph@reddit
This is still up, yes? https://deadeclipse666.blogspot.com/
dark_volter@reddit
they dont host anything on their blog, just the github
-32768@reddit
Phew. Back to secure computing, finally!
Plenty-Piccolo-4196@reddit
As if it's gonna change anything at all
spyingwind@reddit
It's not like anyone could have cloned it...
RiceeeChrispies@reddit
all the threat actors rn
homeys@reddit
Don't worry! I saved it!
ifq29311@reddit
well, maybe you shouldn't shit on Microsoft using their own service to do so, lol
sceptorchant@reddit
"And that's the end of that chapter" - Microsoft