Harvesting Passwords from Source Code, Scripts, and Code Repositories

Presented at BSidesLV 2015, Aug. 5, 2015, 11 a.m. (55 minutes).

This presentation will discuss post-exploitation methods for harvesting passwords from source code, scripts, code repositories, shell history, log files, and other locations. Two new tools will be released during this presentation.

Presenters:

• Philippe Paquet
  Philippe has 20+ years of experience in the video game industry, developing anti-tampering, anti-debugging, and various DRM technologies. He has multiple patents and has published several papers.

Links:

• https://bsideslv2015.sched.com/event/3ukY/harvesting-passwords-from-source-code-scripts-and-code-repositories
• https://infocon.org/cons/Security BSides/BSides Las Vegas/BSides Las Vegas 2015/Harvesting Passwords from Source Code Scripts and Code Repositories Philippe Paquet.mp4
• https://www.youtube.com/watch?v=MpxeM3Sx9Qk