[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"project-59":3},{"id":4,"name":5,"fullName":6,"owner":7,"repo":5,"description":8,"homepage":9,"htmlUrl":9,"language":10,"languages":9,"totalLinesOfCode":9,"stars":11,"forks":12,"watchers":13,"openIssues":13,"contributorsCount":14,"subscribersCount":14,"size":14,"stars1d":14,"stars7d":13,"stars30d":15,"stars90d":14,"forks30d":14,"starsTrendScore":14,"compositeScore":16,"rankGlobal":9,"rankLanguage":9,"license":9,"archived":17,"fork":17,"defaultBranch":18,"hasWiki":17,"hasPages":17,"topics":19,"createdAt":9,"pushedAt":9,"updatedAt":20,"readmeContent":21,"aiSummary":22,"trendingCount":14,"starSnapshotCount":14,"syncStatus":13,"lastSyncTime":23,"discoverSource":24},59,"EdgeSavedPasswordsDumper","L1v1ng0ffTh3L4N\u002FEdgeSavedPasswordsDumper","L1v1ng0ffTh3L4N","Proof of concept to show that Edge stores credentials in cleartext",null,"C#",519,109,2,0,137,58.12,false,"main",[],"2026-06-11 04:00:17","## EdgeSavedPasswordsDumper\n*A small educational tool demonstrating that Edge stores credentials in cleartext in process memory.*\n\n---\n\n## Overview\nThis project is a simple C#\u002F.NET 3.5 tool created to demonstrate that Edge stores credentials in cleartext in memory. It is intended for **educational and research purposes only**, especially for understanding memory inspection, credential handling, and security design differences across software.\n\nI am **not an experienced C# developer**, so the code may contain rough edges, inefficiencies, or non‑idiomatic patterns. Contributions, improvements, and suggestions are welcome.\n\n---\n\n## Purpose\nThis tool was created to show that whenever a user stores credentials in Edge (using the Microsoft Password Manager feature, e.g. Autofill), ALL credentials are stored in plaintext in the parent Edge process memory. This is obviously problematic in a shared environment (e.g. on a terminal servers) as an attacker can access **all** Edge processes for **all** logged on and disconnected users, and dump their saved credentials.\nMicrosoft has said that this is \"by design\" and thus won't fix this.\nThe tool is meant to support learning, responsible disclosure, and security awareness — not misuse.\n\n---\n\n## Disclaimer\nThis software is provided **strictly for educational use**.\n\nBy using this project, you agree that:\n- You are solely responsible for how you use this code  \n- You will not use it to violate privacy, security policies, or any applicable laws  \n- The author provides **no warranty** of any kind  \n- The author **cannot be held liable** for any misuse, damage, or consequences resulting from this software  \n\nYou accept full responsibility for ensuring your actions comply with all legal and ethical requirements.\n\n---\n\n## Features\n- Demonstrates that Edge stores save credentials in clear text in memory\n- .NET 3.5 code in order to avoid potential future AMSI related issues\n\n---\n\n## Requirements\n- Edge 147.0.3912.98 or older\n- .NET Framework **3.5**  \n- Administrator rights (to be able to read other users Edge processes memory)  ","EdgeSavedPasswordsDumper 是一个用于演示 Edge 浏览器在内存中以明文形式存储用户凭证的小型教育工具。其核心功能在于能够读取并展示保存在 Edge 进程内存中的所有密码，这有助于安全研究人员和开发者理解软件设计中的安全缺陷。项目采用 C#\u002F.NET 3.5 编写，选择较旧版本的 .NET 框架是为了规避可能的 AMSI（反恶意软件扫描接口）相关问题。此工具适用于教育与研究场景，特别是对于那些希望深入了解内存检查、凭证处理及跨软件安全设计差异的专业人士。需要注意的是，该项目仅供学习目的使用，任何非法或违反道德的行为都是严格禁止的。","2026-06-11 02:30:38","CREATED_QUERY"]