GitHub - AlessandroZ/LaZagne: Credentials recovery project
source link: https://github.com/AlessandroZ/LaZagne
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
The LaZagne Project !!!
Description
The LaZagne project is an open source application used to retrieve lots of passwords stored on a local computer. Each software stores its passwords using different techniques (plaintext, APIs, custom algorithms, databases, etc.). This tool has been developed for the purpose of finding these passwords for the most commonly-used software.
This project has been added to pupy as a post-exploitation module. Python code will be interpreted in memory without touching the disk and it works on Windows and Linux host.
Standalones
Standalones are now available here: https://github.com/AlessandroZ/LaZagne/releases/
Installation
Requirements are available here: https://github.com/AlessandroZ/LaZagne/wiki/Requirements
pip install -r requirements.txt
Usage
- Launch all modules
laZagne.exe all
- Launch only a specific module
laZagne.exe browsers
- Launch only a specific software script
laZagne.exe browsers -firefox
- Write all passwords found into a file (-oN for Normal txt, -oJ for Json, -oA for All). Note: If you have problems to parse JSON results written as a multi-line strings, check this.
laZagne.exe all -oN
laZagne.exe all -oA -output C:\Users\test\Desktop
- Get help
laZagne.exe -h
laZagne.exe browsers -h
- Change verbosity mode (2 different levels)
laZagne.exe all -vv
- Quiet mode (nothing will be printed on the standard output)
laZagne.exe all -quiet -oA
- To decrypt domain credentials, it could be done specifying the user windows password. Otherwise it will try all passwords already found as windows passwords.
laZagne.exe all -password ZapataVive
Note: For wifi passwords \ Windows Secrets, launch it with administrator privileges (UAC Authentication / sudo)
Mac OS
Note: In Mac OS System, without the user password it is very difficult to retrieve passwords stored on the computer. So, I recommend using one of these options
- If you know the user password, add it in the command line
laZagne all --password SuperSecurePassword
- You could use the interactive mode that will prompt a dialog box to the user until the password will be correct
laZagne all -i
Supported software
| Windows | Linux | Mac | |
|---|---|---|---|
| Browsers | 7Star Amigo BlackHawk Brave Centbrowser Chedot Chrome Canary Chromium Coccoc Comodo Dragon Comodo IceDragon Cyberfox Elements Browser Epic Privacy Browser Firefox Google Chrome Icecat K-Meleon Kometa Microsoft Edge Opera Orbitum Sputnik Torch Uran Vivaldi |
Brave Chromium Dissenter-Browser Firefox Google Chrome IceCat Microsoft Edge Opera SlimJet Vivaldi |
Chrome Firefox |
| Chats | Pidgin Psi Skype |
Pidgin Psi |
|
| Databases | DBVisualizer Postgresql Robomongo Squirrel SQLdevelopper |
DBVisualizer Squirrel SQLdevelopper |
|
| Games | GalconFusion Kalypsomedia RogueTale Turba |
||
| Git | Git for Windows | ||
| Mails | Outlook Thunderbird |
Clawsmail Thunderbird |
|
| Maven | Maven Apache | ||
| Dumps from memory | Keepass Mimikatz method |
System Password | |
| Multimedia | EyeCON | ||
| PHP | Composer | ||
| SVN | Tortoise | ||
| Sysadmin | Apache Directory Studio CoreFTP CyberDuck FileZilla FileZilla Server FTPNavigator OpenSSH OpenVPN KeePass Configuration Files (KeePass1, KeePass2) PuttyCM RDPManager VNC WinSCP Windows Subsystem for Linux |
Apache Directory Studio AWS Docker Environnement variable FileZilla gFTP History files Shares SSH private keys KeePass Configuration Files (KeePassX, KeePass2) Grub |
|
| Wifi | Wireless Network | Network Manager WPA Supplicant |
|
| Internal mechanism passwords storage | Autologon MSCache Credential Files Credman DPAPI Hash Hashdump (LM/NT) LSA secret Vault Files |
GNOME Keyring Kwallet Hashdump |
Keychains Hashdump |
For developers
Please refer to the wiki before opening an issue to understand how to compile the project or to develop a new module. https://github.com/AlessandroZ/LaZagne/wiki
Donation
If you want to support my work doing a donation, I will appreciate a lot:
- Via BTC: 16zJ9wTXU4f1qfMLiWvdY3woUHtEBxyriu
- Via Paypal: https://www.paypal.me/lazagneproject
Special thanks
- Harmjoy for KeeThief
- n1nj4sec for his mimipy module
- Benjamin DELPY for mimikatz, which helps me to understand some Windows API.
- @skelsec for Pypykatz
- Moyix for Creddump
- N0fat for Chainbreaker
- Richard Moore for the AES module
- Todd Whiteman for the DES module
- mitya57 for secretstorage
- All contributors who help me on this project
Recommend
-
57
README.md BeRoot Project BeRoot Project is a post exploitation tool to check common misconfigurations to find a way to escalate our privilege. It has been added to the
-
11
START GROUP_REPLICATION can now take recovery credentials as parametersFrom MySQL 8.0.21 onwards, START GROUP_REPLICATION includes new options which allow a user to specify credentials to be used for distributed recovery. You can...
-
10
本地密码查看工具LaZagne中的自定义脚本开发 0x00 前言 LaZagne是一款用于检索大量存储在本地计算机密码的开源应用程序。 因为每个软件储存密码的方式不尽相同(明文、API、定制算法、数据库等),所以该工具使用多种方法...
-
7
[RECOVERY][3.3.1-0] TeamWin Recovery Project for Xiaomi Redmi 7A [pine][UNOFFICIAL]
-
89
[RECOVERY][UNOFFICIAL] OrangeFox Recovery Project [avicii][OnePlus Nord] ...
-
11
[RECOVERY] [12] [OFFICIAL] TeamWin Recovery Project ...
-
63
[RECOVERY][UNOFFICIAL][R12.1] OrangeFox Recovery Project [OnePlus 8t] [17-July-2022] ...
-
11
DarthJabba9 Recogni...
-
19
Development [RECOVERY] [12] [taoyao] TeamWin Recovery Project For Xiaomi 12 LITE ...
-
9
[OFFICIAL][RECOVERY][ginkgo/willow] OrangeFox Recovery Project ...
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK