Skip to content

A tool to extract a KeePass master password from memory

License

Notifications You must be signed in to change notification settings

holly-hacker/KeePassHax

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

KeePassHax

KeePassHax is a managed DLL that, when injected into the KeePass process, will extract all data that makes up the CompositeKey used to decrypt the password database. This data (along with the database) could be transmitted to some server running in the cloud to then be decrypted and abused in all kinds of fun ways.

Inspired by KeeFarce, but better ;)

Building

Compile it with Visual Studio 2017 or higher ¯\_(ツ)_/¯

Usage

If you already have a managed DLL injector (like this one), you can build the KeePassHax project and inject the resulting DLL into the KeePass project. You do not need administrator permissions for this, so it can be ran from the context of any application.

Alternatively, use the KeePassHax.Injector project to build a binary that, when run, injects itself into KeePass process.

You can see it in action in this video.

Disclaimer

You probably could have guessed this, but I don't take responsibility for what you do with this. Please don't use this to actually steal passwords. This is merely a proof-of-concept to remind people to not run untrusted programs.

License

This code is licensed under the MIT license. I will always appreciate a link back to this repository :)

About

A tool to extract a KeePass master password from memory

Topics

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages