Personal website of Dave Hope » C# http://davehope.co.uk Open source projects, sysadmin stuff and general geekage Tue, 18 May 2010 11:46:44 +0000 en hourly 1 Decrypting DPAPI (aspnet_setreg) stored credentials http://davehope.co.uk/Blog/decrypting-dpapi-aspnet_setreg-stored-credentials/ http://davehope.co.uk/Blog/decrypting-dpapi-aspnet_setreg-stored-credentials/#comments Tue, 26 Aug 2008 17:01:09 +0000 Dave http://davehope.co.uk/?p=85 I came across a problem at work where I needed to recover credentials that had been stored in the registry using .Net’s DPAPI (aspnet_setreg). Thankfully the open source NCrypto library came to the rescue.

Here’s a simple bit of code making use of the NCrypto.Security.Cryptography assembly to decrypt the data:

<%@ Page Language="C#" Debug="true" %>
<script language="C#" runat="Server">
protected void Page_Load(object sender, System.EventArgs e)
{
byte[] regUsername;
byte[] regPassword;
string strUsername;
string strPassword;
Microsoft.Win32.RegistryKey reg;

reg = Microsoft.Win32.Registry.LocalMachine.OpenSubKey(@"SOFTWARE\NWtraders\Login\ASPNET_SETREG");

regUsername = (byte[])reg.GetValue("username");
regPassword = (byte[])reg.GetValue("password");

strUsername = Encoding.Unicode.GetString( NCrypto.Security.Cryptography.ProtectedData.Unprotect( regUsername ) );
strPassword = Encoding.Unicode.GetString( NCrypto.Security.Cryptography.ProtectedData.Unprotect( regPassword ) );

System.Web.HttpContext.Current.Response.Write( strUsername );
System.Web.HttpContext.Current.Response.Write( strPassword );
}
</script>

Throw the .dll in your bin folder or GAC and you’re good to go. Make sure you’ve got access to the relevant registry keys used though.

]]> http://davehope.co.uk/Blog/decrypting-dpapi-aspnet_setreg-stored-credentials/feed/ 0