How to Add, Backup, Restore User Credentials using Windows Vault

7 Comments

  1. This is not safe to do even under the best and safest circumsatnces and why it is being posted here when it is ill advised all over the web is confusing to me.

    Automatic log in to any server or site is the worst thing anyone can do with all the security holes that are constantly being found not only in IE but Windows also. It only takes 15 seconds to punch in your user/pass to any site or server. If you want to back up your user names and passwords that is ok but do it on something external. By doing what is written above you are only asking for trouble.

  2. Well ED first of all you might be right in your own respect but this feature is still quite handy. Passwords are encrypted and it uses DPAPI for the. The feature mentioned is just for the sake of simplicity for end users and this is aren’t that bad which you think. Saving the passwords in cookies makes you more vulnerable.

  3. Sorry, I did not mean for it to sound like I was discrediting what you had wrote. If anyone is comfortable doing this then by all means do it.
    As for me I do not store ANY usernames or passwords on any of my devices, I also make a habit of entering all that info manually when I visit sites or servers. And if I happen to forget a username or password, it is backed up on a thumb drive stored in a safe place.
    Even though you say the passwords are encrypted and uses DPAPI it would be interesting to see if a program something like Trinity would be able to crack it because it DOES crack Windows logon passwords which is supposed to be encrypted the same way.

  4. As per my knowledge, user name and passwords are stored in an electronic vault and this stuff is encrypted. Exact name of the algorithm I still don’t know. But i believe they are encrypted using AES algorithm i.e. Rijndael which provides 256 bit encryption as .Net framework has support for it. AES passwords are hard to break. If you find any tool which breaks the security of Windows Vault then please share with us.

Leave a Reply

Your email address will not be published. Required fields are marked *


1 + 3 =