Dumping Personal Passwords from Windows

by Jul 25, 2019

Windows has a protected password vault where it can store your secret passwords so you don’t have to always enter them manually in Internet Explorer or Edge.

If you get used to automated password managers, you may occasionally forget the original passwords. Here is a super simple PowerShell way to dump all of your passwords stored in the Windows password vault:

# important: this is required to load the assembly

(New-Object Windows.Security.Credentials.PasswordVault).RetrieveAll() | 
ForEach-Object { 
} | 
Select-Object -Property Username, Password, Resource |

Note that you won’t get any results if you never stored credentials in Internet Explorer or Edge. Note also that this code works as designed: you and only you can retrieve the passwords, just as if you were visiting a website in your browser and asking the browser to fill in your credentials for you.

Dumping all stored passwords illustrates why it is so important to always lock your machine when you are away. Anyone could run this PowerShell code to dump your personal passwords if you leave your machine unattended.

Twitter This Tip! ReTweet this Tip!