Skip to content

maarasec/pyDecryptCookies

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
decrypt-cookie.py
decrypt-cookie.py
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

pyDecryptCookies

This script decrypts encryted cookies from Cookie file, with using Local State file and DPAPI.

Works for Chrome-like browsers (Chrome, Chromium, Edge, ...).

Install

This script has to be exeucted on the same machine, that browser runs on (because of usage of DPAPI).

Python install:

$ python3 -m venv venv-profile
$ source venv-profile/bin/activate
$ pip install -r requirements.txt

Usage

  • example usage for Edge with saving output to file:
$ python .\decrypt-cookie.py -c "C:\Users\USER\AppData\Local\Microsoft\Edge\User Data\Default\Cookies" -l "C:\Users\USER\AppData\Local\Microsoft\Edge\User Data\Local State" -o "output.csv"
- decrytion starts
- decrytion is complete, total number of decrypted cookies: 21
- output successfully saved to: output.csv
  • example usage for Chrome without saving output to file:
$ python .\decrypt-cookie.py -c "C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Cookies" -l "C:\Users\USER\AppData\Local\Google\Chrome\User Data\Local State"
- decrytion starts
- cookie SignInStateCookie (for site .login.microsoftonline.com):
CAXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXfaQ

- cookie Signature (for site euno-1.api.microsoftstream.com):
XXXXXXXXXXXXXXXXE%253d

- cookie Signature_Api (for site .api.microsoftstream.com):
ADXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX53d

- decrytion is complete, total number of decrypted cookies: 3
  • for more information see help:
usage: decrypt-cookie.py [-h] -c COOKIE_FILE -l LOCAL_STATE_FILE [-o OUTPUT_CSV]

This script decrypts encryted cookie file, with using "Local State" file and DPAPI. Works for Chrome-like browsers
(Chrome, Chromium, Edge, ...).

optional arguments:
  -h, --help            show this help message and exit
  -c COOKIE_FILE, --cookie-file COOKIE_FILE
                        Path to cookie db file to decrypt, for example:
                        "C:\Users\{USERNAME}\AppData\Local\Microsoft\Edge\User Data\Default\Cookies"
  -l LOCAL_STATE_FILE, --local-state-file LOCAL_STATE_FILE
                        Path to "Local State", for example: "C:\Users\{USERNAME}\AppData\Local\Microsoft\Edge\User
                        Data\Local State"
  -o OUTPUT_CSV, --output-csv OUTPUT_CSV
                        Output CSV file with all cookie attributes. If outputfile is not defined, decrypted
                        cookies will be printed on standart output.

Thanks

Core functionality is inspired by topaco and his post on StackOverflow. Thanks! ;)

About

This script decrypts encryted cookie file, using "Local State" file and DPAPI. Works for Chrome-like browsers (Chrome, Chromium, Edge etc.).

Resources

Readme

License

CC0-1.0 license
Activity

Stars

3 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages