public static void decryptLogins(string loginsJsonPath, byte[] privateKey)
{
// Decrypt credentials in logins.json using private key
Asn1Der asn = new Asn1Der();
Login[] logins = ParseLoginFile(loginsJsonPath);
if (logins.Length == 0)
{
Console.WriteLine("No logins discovered from logins.json\n");
return;
}
foreach (Login login in logins)
{
Asn1DerObject user = asn.Parse(Convert.FromBase64String(login.encryptedUsername));
Asn1DerObject pwd = asn.Parse(Convert.FromBase64String(login.encryptedPassword));
string hostname = login.hostname;
string decryptedUser = TripleDESHelper.DESCBCDecryptor(privateKey, user.objects[0].objects[1].objects[1].Data, user.objects[0].objects[2].Data);
string decryptedPwd = TripleDESHelper.DESCBCDecryptor(privateKey, pwd.objects[0].objects[1].objects[1].Data, pwd.objects[0].objects[2].Data);
Console.WriteLine("\r\n----- Mozilla Credential -----\r\n");
Console.WriteLine("Hostname: {0}", hostname);
Console.WriteLine("Username: {0}", Regex.Replace(decryptedUser, @"[^\u0020-\u007F]", ""));
Console.WriteLine("Password: {0}", Regex.Replace(decryptedPwd, @"[^\u0020-\u007F]", ""));
}
}
public byte[] Compute()
{
byte[] GLMP; // GlobalSalt + MasterPassword
byte[] HP; // SHA1(GLMP)
byte[] HPES; // HP + EntrySalt
byte[] CHP; // SHA1(HPES)
byte[] PES; // EntrySalt completed to 20 bytes by zero
byte[] PESES; // PES + EntrySalt
byte[] k1;
byte[] tk;
byte[] k2;
byte[] k; // final value conytaining key and iv
// GLMP
GLMP = new byte[this.GlobalSalt.Length + this.MasterPassword.Length];
Buffer.BlockCopy(this.GlobalSalt, 0, GLMP, 0, this.GlobalSalt.Length);
Buffer.BlockCopy(this.MasterPassword, 0, GLMP, this.GlobalSalt.Length, this.MasterPassword.Length);
// HP
HP = new SHA1Managed().ComputeHash(GLMP);
// HPES
HPES = new byte[HP.Length + this.EntrySalt.Length];
Buffer.BlockCopy(HP, 0, HPES, 0, HP.Length);
Buffer.BlockCopy(this.EntrySalt, 0, HPES, this.EntrySalt.Length, HP.Length);
// CHP
CHP = new SHA1Managed().ComputeHash(HPES);
//PES
PES = new byte[20];
Array.Copy(this.EntrySalt, 0, PES, 0, this.EntrySalt.Length);
for (int i = this.EntrySalt.Length; i < 20; i++)
{
PES[i] = 0;
}
// PESES
PESES = new byte[PES.Length + this.EntrySalt.Length];
Array.Copy(PES, 0, PESES, 0, PES.Length);
Array.Copy(this.EntrySalt, 0, PESES, PES.Length, this.EntrySalt.Length);
using (HMACSHA1 hmac = new HMACSHA1(CHP))
{
// k1
k1 = hmac.ComputeHash(PESES);
// tk
tk = hmac.ComputeHash(PES);
// tkES
byte[] tkES = new byte[tk.Length + this.EntrySalt.Length];
Buffer.BlockCopy(tk, 0, tkES, 0, tk.Length);
Buffer.BlockCopy(this.EntrySalt, 0, tkES, tk.Length, this.EntrySalt.Length);
// k2
k2 = hmac.ComputeHash(tkES);
}
// k
k = new byte[k1.Length + k2.Length];
Array.Copy(k1, 0, k, 0, k1.Length);
Array.Copy(k2, 0, k, k1.Length, k2.Length);
this.Key = new byte[24];
for (int i = 0; i < this.Key.Length; i++)
{
this.Key[i] = k[i];
}
this.IV = new byte[8];
int j = this.IV.Length - 1;
for (int i = k.Length - 1; i >= k.Length - this.IV.Length; i--)
{
this.IV[j] = k[i];
j--;
}
byte[] decryptedCiphertext = TripleDESHelper.DESCBCDecryptorByte(this.Key, this.IV, cipherText);
// Trim decrypted password-check - we only need the first 24 bytes
byte[] clearText = new byte[24];
Array.Copy(decryptedCiphertext, clearText, clearText.Length);
return(clearText);
}
