Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

DPAPI Demystified - Abusing The Windows Data Protection API One Secret At A Time

BSidesMunich via YouTube

Start learning Write review
Coursera Ad

Launch a New Career with Certificates from Google, IBM & Microsoft

Learn More → Scrimba Ad

Get 20% off all career paths from fullstack to AI

Learn More →

Overview

Google, IBM & Meta Certificates — All 10,000+ Courses at 40% Off
One annual plan covers every course and certificate on Coursera. 40% off for a limited time.
Get Full Access
Explore the Windows Data Protection API (DPAPI) in this 31-minute conference talk that demystifies how this critical Windows security mechanism works and reveals methods for exploiting it. Learn about DPAPI's architecture, understand how Windows uses it to protect sensitive data like passwords and encryption keys, and discover techniques for extracting and abusing stored secrets. Examine real-world attack scenarios where adversaries can leverage DPAPI weaknesses to access protected information, analyze the security implications of DPAPI implementation flaws, and understand defensive strategies to mitigate these risks. Gain practical insights into how attackers can systematically compromise DPAPI-protected data and develop a deeper understanding of Windows credential storage mechanisms for both offensive and defensive security purposes.

Syllabus

DPAPI Demystified: Abusing The Windows Data Protection API One Secret At A Time - Daniel Küppers

Taught by

BSidesMunich

Reviews

Start your review of DPAPI Demystified - Abusing The Windows Data Protection API One Secret At A Time

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.