Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Explore the security vulnerabilities of web-based password managers through a detailed case study of Bitwarden in this 53-minute conference talk from BruCON Security Conference. Examine how modern malware like Raccoon and Meduza stealers are evolving to target popular password managers as their corporate adoption increases. Learn about the specific attack techniques used against password managers, including memory parsing, function hooking, and malicious browser extensions. Discover how attackers exploit the advanced features of web password managers such as identity-based access control and cloud hosting. Understand the methodology behind developing a generic approach for password extraction from these systems. Get introduced to PwnWarden, an open-source tool designed to help red teamers simulate Bitwarden discovery and secret extraction in corporate environments, providing valuable insights for both offensive security professionals and defenders looking to better protect against this emerging threat landscape.
