Decryption of IOS Passwords/Secrets: an IOS method!

It’s very regular issue who works for support team, who have the router/IOS configuration files but can’t retrieve the password. Even I don’t know how you faced the issue guys but it was very regular headache for me until i didn’t know this simple method to decrypt the IOS secrets! No, its by any tool or by any code on C/C++! It’s from the IOS itself!! Now let’s see how it works….

Let’s the username/password string we got from IOS is:

‘username cisco password 7 0822455D0A16554745’

Now we need to find out what’s the actual password encrypted to ‘7 0822455D0A16554745’. Now we will need to take help from another router and follow the command chains like below:

R3#conf t
R3(config)#key chain ?
WORD Key-chain name

R3(config)#key chain decryption
R3(config-keychain)#key ?
<0-2147483647> Key identifier

R3(config-keychain)#key 1
R3(config-keychain-key)#key-string 7 0822455D0A16554745
R3(config-keychain-key)#do sh key chain decryption
Key-chain decrypt:
key 1 — text “cisco007”
accept lifetime (always valid) – (always valid) [valid now]
send lifetime (always valid) – (always valid) [valid now]

So the actual secret was ‘cisco007’! 🙂

Special thanks to Ivan Pepelnjak, CCIE#1354 an his blogs where I found this tip.


About Mijanur Rahman
I have started blogging to save and share my study notes, findings and research notes as I have already lost some important! Wish you find something helpful from my blogs, if you have anything to ask you are always welcome to comment or contact me directly. Thanks, Md. Mijanur Rahman

One Response to Decryption of IOS Passwords/Secrets: an IOS method!

  1. Kazuko says:

    Wonderful, what a blog it is! This webpage provides useful
    data to us, keep it up.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: