DriveCrypt Security Model bypass
Synopsis
The password checking routine of DriveCrypt fails to sanitize the BIOS keyboard buffer before AND after reading passwords.
McAfee SafeBoot Device Encryption Plain Text Password Disclosure
The password checking routine of SafeBoot Device Encryption fails to sanitize the BIOS keyboard buffer after reading passwords, resulting in plain text password leakage to unprivileged local users.
(more…)
How Google Chrome Stores Passwords
Every browser released in the last decade has some sort of password management system, and Google Chrome is no different. Sift through the Chrome source code, released under the open source project Chromium, and you’ll found out how they do it.
Let’s start at the top and work our way down. Any time a password is saved, you’re first prompted with the save password bar.
(more…)
Recovering Internet Explorer Passwords: Theory and Practice
Brief introduction on how Internet Explorer stores its passwords
