LaZagne

by AlessandroZ

AlessandroZ /LaZagne

Credentials recovery project

5.8K Stars 1.5K Forks Last release: about 1 year ago (2.4.3) GNU Lesser General Public License v3.0 782 Commits 19 Releases

Available items

No Items, yet!

The developer of this repository has not created any items for sale yet. Need a bug fixed? Help with integration? A different license? Create a request here:

The LaZagne Project !!!

Description

The LaZagne project is an open source application used to retrieve lots of passwords stored on a local computer. Each software stores its passwords using different techniques (plaintext, APIs, custom algorithms, databases, etc.). This tool has been developed for the purpose of finding these passwords for the most commonly-used software.

The LaZagne project

This project has been added to pupy as a post-exploitation module. Python code will be interpreted in memory without touching the disk and it works on Windows and Linux host.

Standalones

Standalones are now available here: https://github.com/AlessandroZ/LaZagne/releases/

Installation

Requirements are available here: https://github.com/AlessandroZ/LaZagne/wiki/Requirements

pip install -r requirements.txt

Usage

  • Launch all modules

    laZagne.exe all
    
  • Launch only a specific module

    laZagne.exe browsers
    
  • Launch only a specific software script

    laZagne.exe browsers -firefox
    
  • Write all passwords found into a file (-oN for Normal txt, -oJ for Json, -oA for All). Note: If you have problems to parse JSON results written as a multi-line strings, check this.

    laZagne.exe all -oN
    laZagne.exe all -oA -output C:\Users\test\Desktop
    
  • Get help

    laZagne.exe -h
    laZagne.exe browsers -h
    
  • Change verbosity mode (2 different levels)

    laZagne.exe all -vv
    
  • Quiet mode (nothing will be printed on the standard output)

    laZagne.exe all -quiet -oA
    
  • To decrypt domain credentials, it could be done specifying the user windows password. Otherwise it will try all passwords already found as windows passwords.

    laZagne.exe all -password ZapataVive
    

Note: For wifi passwords \ Windows Secrets, launch it with administrator privileges (UAC Authentication / sudo)

Mac OS

Note: In Mac OS System, without the user password it is very difficult to retrieve passwords stored on the computer. So, I recommend using one of these options

  • If you know the user password, add it in the command line
    laZagne all --password SuperSecurePassword
    
  • You could use the interactive mode that will prompt a dialog box to the user until the password will be correct
    laZagne all -i
    

Supported software

| | Windows | Linux | Mac | | -- | -- | -- | -- | | Browsers | 7Star
Amigo
BlackHawk
Brave
Centbrowser
Chedot
Chrome Canary
Chromium
Coccoc
Comodo Dragon
Comodo IceDragon
Cyberfox
Elements Browser
Epic Privacy Browser
Firefox
Google Chrome
Icecat
K-Meleon
Kometa
Opera
Orbitum
Sputnik
Torch
Uran
Vivaldi
| Brave
Chromium
Dissenter-Browser
Google Chrome
IceCat
Firefox
Opera
SlimJet
Vivaldi
WaterFox | Chrome
Firefox | | Chats | Pidgin
Psi
Skype| Pidgin
Psi | | | Databases | DBVisualizer
Postgresql
Robomongo
Squirrel
SQLdevelopper | DBVisualizer
Squirrel
SQLdevelopper | | | Games | GalconFusion
Kalypsomedia
RogueTale
Turba | | | | Git | Git for Windows | | | | Mails | Outlook
Thunderbird | Clawsmail
Thunderbird | | | Maven | Maven Apache
| | | | Dumps from memory | Keepass
Mimikatz method | System Password | | | Multimedia | EyeCON
| | | | PHP | Composer
| | | | SVN | Tortoise | | | | Sysadmin | Apache Directory Studio
CoreFTP
CyberDuck
FileZilla
FileZilla Server
FTPNavigator
OpenSSH
OpenVPN
KeePass Configuration Files (KeePass1, KeePass2)
PuttyCM
RDPManager
VNC
WinSCP
Windows Subsystem for Linux | Apache Directory Studio
AWS
Docker
Environnement variable
FileZilla
gFTP
History files
Shares
SSH private keys
KeePass Configuration Files (KeePassX, KeePass2)
Grub | | | Wifi | Wireless Network | Network Manager
WPA Supplicant | | | Internal mechanism passwords storage | Autologon
MSCache
Credential Files
Credman
DPAPI Hash
Hashdump (LM/NT)
LSA secret
Vault Files | GNOME Keyring
Kwallet
Hashdump | Keychains
Hashdump |

For developers

Please refer to the wiki before opening an issue to understand how to compile the project or to develop a new module. https://github.com/AlessandroZ/LaZagne/wiki

Donation

If you want to support my work doing a donation, I will appreciate a lot: * Via BTC: 16zJ9wTXU4f1qfMLiWvdY3woUHtEBxyriu * Via Paypal: https://www.paypal.me/lazagneproject

Special thanks

We use cookies. If you continue to browse the site, you agree to the use of cookies. For more information on our use of cookies please see our Privacy Policy.