https://github.com/amir13872/mypassword
This project demonstrates how to extract and decrypt saved passwords from Google Chrome on Windows, using Go. It is intended for educational use only in controlled, safe environments such as red team labs, penetration testing labs, or malware analysis sandboxes.
https://github.com/amir13872/mypassword
encryption golang google google-password-manager googlepassword login-data redteam-tools windows
Last synced: about 2 months ago
JSON representation
This project demonstrates how to extract and decrypt saved passwords from Google Chrome on Windows, using Go. It is intended for educational use only in controlled, safe environments such as red team labs, penetration testing labs, or malware analysis sandboxes.
- Host: GitHub
- URL: https://github.com/amir13872/mypassword
- Owner: amir13872
- License: mit
- Created: 2025-04-13T17:42:28.000Z (about 1 year ago)
- Default Branch: main
- Last Pushed: 2025-04-14T19:58:12.000Z (about 1 year ago)
- Last Synced: 2025-04-15T09:12:36.621Z (about 1 year ago)
- Topics: encryption, golang, google, google-password-manager, googlepassword, login-data, redteam-tools, windows
- Language: Go
- Homepage:
- Size: 2.01 MB
- Stars: 0
- Watchers: 0
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# Chrome Password Decryptor (Red Team Lab)
This project demonstrates how to extract and decrypt saved passwords from **Google Chrome** on Windows, using Go. It is intended for **educational use only** in controlled, safe environments such as red team labs, penetration testing labs, or malware analysis sandboxes.
> π¨ For ethical hacking & training purposes only. Do **not** use this code outside a legal lab or test environment.
---
## π Overview
Chrome stores user credentials encrypted on disk using Windows DPAPI and AES-GCM. This tool performs:
- **Step 1**: Extracts and decrypts Chromeβs AES encryption key using DPAPI
- **Step 2**: Reads the `Login Data` SQLite database and decrypts saved credentials
---
## βοΈ Requirements
- Go 1.18+
- Kali Linux (for building)
- Windows 10+ (for running)
---
## π Usage
### π Step 1: Extract Chrome Master Key
```bash
GOOS=windows GOARCH=amd64 go build -o step1_key_extract.exe step1_key_extract.go
or
$env:CGO_ENABLED="1"; go build -o myblock.exe .\step3.go
```
Run step1_key_extract.exe on a Windows system with Chrome installed to get the decrypted AES key.
### π Step 2: Dump & Decrypt Chrome Passwords
- Replace aesKeyHex in step2_decrypt_passwords.go with your decrypted key
- Build:
```
GOOS=windows GOARCH=amd64 go build -o step2_decrypt_passwords.exe step2_decrypt_passwords.go
```
- Run on the same Windows target
### π‘ Educational Use Only
This code is not intended for illegal use. It is built for:
Certified Ethical Hacker (CEH) students
- Red Team training
- Malware simulation labs
- CRTP / OSCP practice
### π Repo Structure
```
.
βββ step1_key_extract.go # Extracts and decrypts Chrome master key
βββ step2_decrypt_passwords.go # Reads login data and decrypts saved passwords
βββ go.mod / go.sum # Dependencies
```
## π Credits
Inspired by red team lab techniques & real-world malware analysis.
Built with β€οΈ for learning, not harm.