Skip to content
/ sparkim-passview Public

Tool to decrypt Spark IM client saved passwords

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

rdndnl/sparkim-passview

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
sparkim-passview
sparkim-passview
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 

Repository files navigation

##Spark IM Password Decrypter

This is a simple tool to decrypt saved passwords used by the Spark IM client. Seeing as Spark if often deployed within companies, and integrates with Active Directory for authentication - the stored credentials can be quite valuable during a pentest.

This tool was written to demonstrate the inherent weakness in the Spark saved password feature - and thus this feature should not be used.

###Usage

To gather passwords saved on a local system, just execute sparkim-passview.exe directly. For remote systems, just pass the workstation name - like this: sparkim-passview.exe wk01

When accessing remote systems, this application will attempt to use the remote administration share (C$), this will fail if you don't have access to this.

###Assumptions

This is a .NET project, so thus requires the framework to be installed to work. To maximize compatibility, it's targeting the 2.0 framework.

###Warning

This is a pentesting tool, as should only be used with proper authorization. Do not, ever, run this on a system you don't own, or have authorization to perform penetration tests against.

About

Tool to decrypt Spark IM client saved passwords

Resources

Readme
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published