Passwords stored in web browsers like Google Chrome and Mozilla Firefox are a gold mine for hackers. An attacker with backdoor access to a compromised computer can easily dump and decrypt data stored in web browsers. So, you'll want to think twice before hitting 'Save' next time you enter a new password.
![Cara hack fb di pc Cara hack fb di pc](https://i1.wp.com/2.bp.blogspot.com/-UK5ZIhzXt1E/TgSijq4PrTI/AAAAAAAABl8/bBZiID2mBdg/s400/6pw8k5.jpg)
√#2 Kode Script Hack FB HTML: Download + Tutorial HP&PC! #2 Cara Melihat Password FB Orang Lain di Google Chrome HP,apk,Chrome? #4 Cara Mengetahui Password Facebook Orang Lain √ Tutorial + Download Numero eSIM apk – International Virtual Phone Numbers √ Tutorial + Download Freeje Virtual SIM apk.
With a backdoor established on a target computer, hackers can perform a variety of covert attacks. It's possible to capture every keystroke typed on the computer, capture screenshots, and listen to audio through the microphone. In this article, we'll focus on how hackers can acquire your passwords stored in web browsers.
Don't Miss: How to Break into Somebody's Windows 10 Computer Without a Password
After a hacker has set up their payload and exploited the system of their choosing, in our case, a Windows 10 system, they can begin their post-exploitation attacks to hunt down passwords in Google Chrome and Mozilla Firefox, which are often regarded as being the best and most popular web browsers available. Microsoft Edge only accounts for about 4% of browsers out there, so it's not worth the trouble.
Dumping Google Chrome Passwords
![Cara Cara](/uploads/1/2/5/6/125624151/220039409.png)
Chrome utilizes a Windows function called CryptProtectData to encrypt passwords stored on computers with a randomly generated key. Only a user with the same login credential as the user who encrypted the data can later decrypt the passwords. Every password is encrypted with a different random key and stored in a small database on the computer. The database can be found in the below directory.
Don't Miss: Cryptography Basics for the Aspiring Hacker
%LocalAppData%GoogleChromeUser DataDefaultLogin Data
Next, we'll use a Metasploit module that's designed to dump passwords stored in the Chrome browser. To dump stored Chrome passwords on the target device, use the enum_chrome module as shown in the below command. This module will collect user data from Google Chrome and attempt to decrypt sensitive information.
run post/windows/gather/enum_chrome