LaZagne

LSE top 100LSE top 100LaZagne (63)LaZagne (63)

Tool and Usage

Project details

License
LGPLv3
Programming language
Python
Author
Alessandro ZANNI
Latest release
2.4.6
Latest release date

Project health

84
This score is calculated by different factors, like project age, last release date, etc.

Why this tool?

The LaZagne tool can be a good addition to the toolkit of pentesters or forensic specialists to recover sensitive details from systems. For a pentester, this typically means that limited access has been gained. By trying to find passwords from local applications, the step to other applications or privilege level might be possible. For example, a password that is shared among multiple services, or even finding an administrator password.

How it works

The tool uses several techniques to obtain the passwords. One of these techniques is by directly retrieving it from a file, which can be useful for applications that store secrets as plaintext. Other methods include the retrieval via an API, database, or by using a custom algorithm.

Usage and audience

LaZagne is commonly used for data extraction, information gathering, password discovery, or password recovery. Target users for this tool are pentesters, security professionals, and system administrators.

Features

  • Command line interface

Tool review and remarks

The review and analysis of this project resulted in the following remarks for this security tool:

Strengths

  • + More than 10 contributors
  • + More than 3000 GitHub stars
  • + The source code of this software is available

Author and Maintainers

LaZagne is under development by Alessandro ZANNI.

Installation

Supported operating systems

LaZagne is known to work on Android, Linux, Microsoft Windows, and macOS.

LaZagne alternatives

Similar tools to LaZagne:

64

Bucket Stream

Bucket Stream is a security tool to find interesting Amazon S3 Buckets by watching certificate transparency logs. See our review and learn how it works.

56

sshLooter

The sshLooter tool is a PAM backdoor written in Python to steal passwords from SSH connections. It puts itself in the authentication stack of Linux systems and intercepts provided passwords by unknowing users.

100

Buttercup for desktop

Buttercup is a cross-platform, free, and open-source password manager based on Node.js. It helps to store your passwords and secrets safely.

All LaZagne alternatives

This tool page was updated at . Found an improvement? Help the community by submitting an update.

Related tool information

Categories

This tool is categorized as a password recovery tool and password sniffing tool.

Related topics