That’s the encrypted key by using Data Protection API that encrypts the KeePass database. If we go into C:\, users, Freddie Kruger, AppData, roaming, that’s the place where we’ve got KeePass and this is the place where we’ve got to keep our settings for the user, including a ProtectedUserKeyBin file. I am logged on over here as an administrator as you see and this is a workstation of a user. This tutorial is divided into two parts: Part 1 is about the KeePass, in Part 2, we will focus on browsers. I would like to show you one of our tools that are allowing us to extract this secret, maybe passwords, maybe just an access to something like KeePass database, so that you’re able to use them as a matter of some recovery maybe or maybe not. This is something that, again, everybody talks about, but it’s so difficult that it’s quite hard to explain well so I will do my best.Īnd also good use is that our team with a lot of discoveries in data protection API, as not many teams in this world, I think I can say that. And we will discuss a very interesting subject which is data protection API. I’ll be showing you what does it mean where you store the password in the browser, what does it mean where you store the password in the KeePass. So, this was a very practical usage of what I would like to show you today.īut the most important thing on the top of everything is that when we store the password like this, is it safe or not? We’ve been doing a forensic investigation for one of the companies and because we were able to get access to administrator’s profile, we were able to also extract his passwords that he use and were able to get into some of the systems he was storing information in and this was something that allowed us to solve forensic case. Secondly, sometimes for some of the services, we store the password in the browser and that’s another question I would like to answer in this video: is it safe to store your password in the browser? When we’ve got a lot of different types of accesses to different kinds of systems, we need to keep our passwords complex and store them in different locations. It is very important because as long as we use passwords and we still do, we save them in different places and your head, in most cases it’s a worse idea because things will get repeated. If you store your password in the KeePass, is it safe? What about the browser? How are we able to get access to it?
0 Comments
Leave a Reply. |