Decrypt a Cisco VPN Password

Cisco uses relatively weak encryption to protect user and group passwords in a PCF file, and HAL-9000 of evilscientists.de discovered and posted the algorithm. This page uses cisco-decrypt.c written by Maurice Massar for the decryption.

Reference: Cisco Security Notice: Cisco IPsec VPN Implementation Group Password Usage Vulnerability

You can find the encrypted password by opening a PCF file and taking everything on the line after enc_GroupPwd= or enc_UserPassword=. For example with the following line

enc_GroupPwd=9196FE0075E359E6A2486905A1EFAE9A11D652B2C588EF3FBA15574237302B74C194EC7D0DD16645CB534D94CE85FEC4

The encrypted password would be:

9196FE0075E359E6A2486905A1EFAE9A11D652B2C588EF3FBA15574237302B74C194EC7D0DD16645CB534D94CE85FEC4

Enter the encrypted user or group password in the field below and press the Decode button to decrypt the password.

Cisco VPN Password Decryption

Leave a Reply