- How can you recover user’s passwords?

If you want to know user’s password, you can recover it from the SAM.

- How crack SHA1 hashes extracted from the CREDHIST file?

You need a password cracker for this. One option is to use the alpha-version of the cracker Nightingale that is able to crack password from a CREDHIST dumpfile.

You can get a free copy of the alpha version of Nightingale from here.

- How do I generate a test blob?

We provide a small tool for that. You can download it from the download page.

- You want to report a bug / Adding feature XXX would be cool :)

Please, use the “Contact Us” page of our site to contact us and give us feedback. You can also chose to help us and contribute by sending code you want to be integrated !

- What happens in an Active Directory environment ?

We haven’t check yet the role of the domain controler on DPAPI so we just can’t answer that question for the moment.