Decryption of IOS Passwords/Secrets: an IOS method!

It’s very regular issue who works for support team, who have the router/IOS configuration files but can’t retrieve the password. Even I don’t know how you faced the issue guys but it was very regular headache for me until i didn’t know this simple method to decrypt the IOS secrets! No, its by any tool or by any code on C/C++! It’s from the IOS itself!! Now let’s see how it works….

Let’s the username/password string we got from IOS is:

‘username cisco password 7 0822455D0A16554745’

Now we need to find out what’s the actual password encrypted to ‘7 0822455D0A16554745’. Now we will need to take help from another router and follow the command chains like below:

R3#conf t
R3(config)#key chain ?
WORD Key-chain name

R3(config)#key chain decryption
R3(config-keychain)#key ?
<0-2147483647> Key identifier

R3(config-keychain)#key 1
R3(config-keychain-key)#key-string 7 0822455D0A16554745
R3(config-keychain-key)#do sh key chain decryption
Key-chain decrypt:
key 1 — text “cisco007”
accept lifetime (always valid) – (always valid) [valid now]
send lifetime (always valid) – (always valid) [valid now]
R3(config-keychain-key)#

So the actual secret was ‘cisco007’! 🙂

Special thanks to Ivan Pepelnjak, CCIE#1354 an his blogs where I found this tip.

Advertisements

About Mijanur Rahman
Mijanur started blogging to save and share his study and research notes. A deep diver in technologies and loves to participate in technical brainstorming. Proud father of two wonderful daughters loves to spend time with them. He writes about the topics that people deal with every day mainly on technology arena. To get in touch contact him at bilashece@gmail.com

One Response to Decryption of IOS Passwords/Secrets: an IOS method!

  1. Kazuko says:

    Wonderful, what a blog it is! This webpage provides useful
    data to us, keep it up.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: