Winpirate – Automated sticky keys hack, Post exploitation it grabs browser passwords, history, & network passwords.
WInpirate – Automated sticky keys hack, Post exploitation it grabs browser passwords, history, & network passwords.
Here’s the plan;
1. We create a way to automate doing the sticky keys windows hack from a bootable USB.
2. Then, we automate getting as many saved passwords as possible, drop a listener, and delete all traces that we were there.
3. All without being detected by antivirus
4. we should add a mimikittenz option if the computer was found running and unlocked, otherwise we can just run it later remotely
Google Chrome saves it’s password in an annoying sqlite databse in “Appdata\Local\Google\Chrome\User Data\Default\Login Data” They’re encrypted with the Windows CryptProtectData function. https://github.com/chromium/chromium/blob/trunk/chrome/browser/password_manager/encryptor_win.cc