These tasks can include executing command lines or URLs and exporting the active database, which can be risky for the user. Attackers could exploit this option by using it as an event to trick victims into opening the application and initiating the trigger feature to export data and carry out malicious activitiesĪnd The Action option is used to perform specific tasks based on the specified Conditions and Events. This gives an attacker an advantage in running the trigger without enabling it and are more customizable options available such as Event, Condition, and Actionīy looking at each option in more detail, I realize that there were numerous options that could be used for malicious purposes, such as the Application started and ready feature. The interesting thing here is that Triggers are enabled by default in KeePass, and there is an 'Initially on' option that causes the trigger to run every time KeePass starts. To explore this feature, let's take a look at the options toolbar in the KeePass application. We will use also tools like Burp Suite as an HTTP proxy to inspect the traffic.īased on this PoC the attack vector was through the configuration file located at C:\Program Files\KeePass Password Safe 2\, using the Trigger feature In this scenario, the victim machine will be running Windows 10. ![]() Go to install KeePass v2.53 from this archive site with the default configuration installation and create a database_file and set the master_key to be ready as in the following picture.įor the attacker machine, I recommend using Kali Linux, which can be downloaded from the official website at kali. KeePass is widely used as a free open-source password manager that stores sensitive information locally ,providing some advantages over cloud-based options and making it user-friendly ![]() CVE-2023-24055 is a vulnerability discovered in KeePass version 2.53 The vulnerability allows an attacker with write access to the XML configuration file on a system to steal vault credentials.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |