My attempt to re-write the original KeePass 2.X Master Password Dumper (CVE-2023-32784) POC in python.
Please head over to Original POC for more details about the vulnerability and exploitation process.
What this script does:
- Checks if KeePass process is running, otherwise it spawns the KeePass
- Dumps KeePass process using WerFault (code snippet adapted from LSASSY)
- Search process dump for password