Windows Password Bypass

[TzurSoffer]

This payload breaks into Windows from the login screen and creates an admin account that gives full access to the PC.

How it works:

1. It reboots into safe mode
2. It opens a cmd from safe mode
3. It changes the Utilman.exe to be a cmd.exe
4. It boots back into windows
5. It opens the help menu which has been replaced with a cmd instance
6. It creates a new admin account named rubberDucky with the password 1234
7. It logs into the new account

IMPORTANT NOTE:
This payload has been tested on the pico-ducky and not an official hak5 rubberDucky as I do not own one. I would appreciate it if you could test this script; however, if you are unable to merge this pull request due to this, please let me know.

[TzurSoffer]

I completely agree with you and have modified the code accordingly.

Note: This morning, I found out that this code only works on machines with a local account. I have modified the readme to note this, but if you test the payload, please make sure it's on a machine with a local account.

[TzurSoffer]

I think I fixed it. I apologize in advance if it's still wrong; however, I don't have a way to verify it.