HackBrowserData icon indicating copy to clipboard operation
HackBrowserData copied to clipboard
verified publisher icon moonD4rk

not work and dump password chrome

Open blackjoker99 opened this issue 7 months ago • 3 comments

Note for Developers:

This tool does not dump or extract saved passwords from Google Chrome.

Starting with recent Chrome updates, Google has significantly tightened its password storage security. The saved passwords are now encrypted using OS-level APIs (like Windows DPAPI tied to the user account or macOS Keychain), and Chrome has restricted access to the internal Login Data database.

Attempts to read or decrypt this data programmatically will fail unless running in the context of the authorized user with proper system-level permissions. Additionally, Chrome may use profile-bound encryption keys that further prevent extraction by external tools.

Please restore the tool to its previous state, which was used to extract active cookies and retrieve saved passwords. Please focus on implementing process injections, as the ChromeKatz tool does.

In summary, due to enhanced browser protection and encryption mechanisms, password dumping is no longer feasible through typical means.

blackjoker99 avatar May 11 '25 00:05 blackjoker99

Image

still very much possible, if you know what to do ;)

aamaanaa avatar Aug 20 '25 19:08 aamaanaa

still very much possible, if you know what to do ;)

"if you know how to paste from github", fixed it for you, https://github.com/runassu/chrome_v20_decryption/blob/main/decrypt_chrome_v20_cookie.py

lostaccesstomygithub avatar Aug 22 '25 19:08 lostaccesstomygithub

still very much possible, if you know what to do ;)

"if you know how to paste from github", fixed it for you, https://github.com/runassu/chrome_v20_decryption/blob/main/decrypt_chrome_v20_cookie.py

  1. the screen above was a screen runned from linux, with latest patches and chrome. i could have made that more clear.
  2. linux does not have v20 encrypted content. the master key is saved in secret storage only for v11 content, and v10 that uses a standard pass.
  3. fuck python.
  4. that code does only cookies, where is pass word functions ? etc ?
  5. if i where to copy paste it would not work on linux for a multitude of reasons i will not get into.
  6. code of this repo runs into a padding error on both linux and windows. some changes are needed and i did not needed to look at that repo to find it out, and again would not work in my usecase. it does not take to much brain cells to open the chrome databases in sqlite browser and see how the byte blob is structured.
  7. the fact u assume i copy pasted from and used python is bullshit.

aamaanaa avatar Aug 24 '25 21:08 aamaanaa