CVE-2023-32784 PoC — KeePass 安全漏洞

Source

https://github.com/LeDocteurDesBits/cve-2023-32784

Associated Vulnerability

Title:KeePass 安全漏洞 (CVE-2023-32784)
Description:KeePass是一款开源的密码管理器。 KeePass 2.54之前的2.x版本存在安全漏洞，该漏洞源于即使工作区被锁定或不再运行，也可以从内存转储中恢复明文主密码。

Description

A CVE-2023-32784 proof-of-concept implementation in Rust

Readme

# KeePass 2.X Master Password Dumper ([CVE-2023-32784](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32784))

This is a CVE-2023-32784 proof-of-concept implemented in Rust. The code is probably ugly due to my poor coding skills, feel free to make a PR to improve it.

- Original proof-of-concept [here](https://github.com/vdohney/keepass-password-dumper)
- Python proof-of-concept [here](https://github.com/CMEPW/keepass-dump-masterkey)

# License

```
/*
 * ----------------------------------------------------------------------------
 * "THE BEER-WARE LICENSE" (Revision 42):
 * <phk@FreeBSD.ORG> wrote this file.  As long as you retain this notice you
 * can do whatever you want with this stuff. If we meet some day, and you think
 * this stuff is worth it, you can buy me a beer in return.   Poul-Henning Kamp
 * ----------------------------------------------------------------------------
 */
 ```

File Snapshot


 [4.0K]  /data/pocs/9dfdeab636807a1187e90601e9ef65f425094fe8
├── [8.4K]  Cargo.lock
├── [ 135]  Cargo.toml
├── [ 913]  README.md
└── [4.0K]  src
    └── [3.1K]  main.rs

1 directory, 4 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!