KeePass Password Manager
KeePass is a free and open-source password manager. The source code is available for download in each release.
- KeePass can be extended through plugins π².
- Multiple forks exist. Refer to awesome-keepass (0.4k β).
KeePass is storing passwords locally in a .kdbx database.
KeePass Pentester Notes β οΈ
FootHold
- You can try to brute force the master password:
$ keepass2john xxx.kdbx > myhash
$ john myhash --wordlist=wordlist
$ hashcat -a 0 -m 13400 myhash --wordlist=wordlist
Well-Known CVEs
- CVE-2023-32784: if we have memory dump when keepass was unlocked and running, we are able to dump almost all the cleartext password (aside from first char). There are many PoC below:
keepass-password-dumper (0.6k β) in .NET. There is also keepass-dump-masterkey (0.1k β) or keepass_dump (0.01k β) both in Python.
π» To-do π»
Stuff that I found, but never read/used yet.
$ kpcli
kpclip:/> open xxx.kdbx
kpclip:/> ls
kpclip:/> cd xxx
kpclip:/> ls
kpclip:/> show <kid> -f