Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Certificate store

from [David Howe] Network Security [Permanent Link]
Subject: Re: Certificate store
Date: Tue, 8 Apr 2008 10:19:45 +0100
Pierre Cassimans wrote: 
Hi,

Some questions about the microsoft certificate store:

- is there a way to extract (or export) certificates from a microsoft
certificate store when the certificates are marked as &quot;not
exportable
- is there a way to extract the certificates from within a linux environment?

From a bit of research i did the other day, the private keys appear to be stored at C:\Documents and Settings\<username>\Application Data\Microsoft\Crypto\RSA for the user concerned. Further searches seemed to indicate that they were secured with a user specific "master key" derived from the machine's SID, the users name (or SID) and the password used for that user's login.

I haven't researched this one any further, but I understand the same mechanism is used for the EFS certificates (for obvious reasons) so examination of http://www.lostpassword.com/efs.htm may yield some useful clues.

David Howe
Senior SysCare  Engineer

david.howe@ansgroup.co.uk
Office number: 0161 227 1010
Fax: 0161 227 1020

ANS group plc
Synergy House
Manchester Science Park
Manchester
M15 6SY
www.ansgroup.co.uk

The information contained in this communication from david.howe@ansgroup.co.uk is confidential and may be legally privileged. It is intended solely for use by pen-test@securityfocus.com and others authorised to receive it. If you are not pen-test@securityfocus.com you are hereby notified that any disclosure, copying, distribution or taking action in reliance of the contents of this information is strictly prohibited and may be unlawful.

ANS group plc 2007 - Privacy Policy - Registered Office is Synergy House, 
Manchester Science Park, Manchester, M15 6SY. Reg No. 3176761. (Registered in 
England & Wales)


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------


[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Microsoft RDP Priv. Escalation, Mark Owen
Next by Date:  RE: Microsoft RDP Priv. Escalation, Thor (Hammer of God)
Previous by Thread:  Re: Certificate store, ilaiy
Next by Thread:  Microsoft RDP Priv. Escalation, Yousif
Indexes:  [Date] [Thread] [Top] [All Lists]