Recovering Android Passwords - Android Q&A, Help & Troubleshooting

Hi all!
My GF is getting a new phone and we are having real trouble remembering her Google mail password!
We have tried all the recovery options on-line, but Google are pretty useless at recovering passwords and its driving me insane!
Now, on her old phone, it all still works, and Im just wondering if there is anyway at all as to recover or dig out the password from in the phone somewhere!
Any help would be appreciated as this is driving me insane haha
Cheers
Keith

I found this with google from another forum, password could be stored in
/data/data/com.google.android.gm/database/gmail.db
and related files to google account in
Code:
/data/system/accounts.db
/data/system/sync/accounts.xml
/data/data/com.google.android.gm/databases/gmail.db
/data/data/com.google.android.providers.calendar/databases/calendar.db
/data/data/com.google.android.providers.gmail/databases/mailstore.#######@gmail.com.db
/data/data/com.google.android.providers.talk/databases/talk.db
/data/data/com.google.android.providers.subscribedfeeds/databases/subscribedfeeds.db
Haven't tried myself cause I have no account of any type, so I dont know if passwords are plain text or hashed...
If this fails, I can share you my method anyway:
Connect both your PC and phone to the same home wifi network.
Install a POP3 server on your PC (ok this could be a pain in the @ss, I give you a hint on a easy one: Argo Mail server)
Activate and run it, then take your PCs IP (let's say it's 192.168.0.2)
Edit your Gmail account from the phone, and change the server from gmail's to 192.168.0.2, edit the ports and set it to use POP and plain authentication without encryption (default port should be 110).
Check your mail from the phone ! You just hijacked your credentials from the gmails secure server to your home mail server, that will of course give you an error because there is no account for that address. But you are then able to intercept the password because it's sent as plain text !! And should work for any email address, as long as you are able to edit the server address in the mailbox settings.
Just don't use it to bash into ur GFs email

not a clue how to get into /data/data/com.google.android.gm/database/gmail.db! haha
But i just tried you 2nd method, and i have the e-mail server setup no problem, but there isnt any options to change the Gmail address/port on the phone :s ARGH!

Keefo said:
not a clue how to get into /data/data/com.google.android.gm/database/gmail.db! haha
But i just tried you 2nd method, and i have the e-mail server setup no problem, but there isnt any options to change the Gmail address/port on the phone :s ARGH!
Click to expand...
Click to collapse
You can use adb shell to get that file, but I always use my dear QuickSSHd and get it with WinSCP on my pc. If I get any permission error, I open my Root Explorer and mount the root with r/w permission ! With that you can access any file in your phone/memory card.
As for the second, this is supposed to work only if you can change the address of the server and auth method ... if you are using an app with hardcoded server and port (and you could even hijack it that connection to your server) it will still be encrypted and you might not get the password...

Wow! Didn't realize recovering a password would be such a pain in the ass! My issue is I have been using LastPass and last night it decided to lose my Gmail info. Now I can only get to it from my DInc. I had LastPass generate a 20 digit secure password and it is too long to remember it all.
Google, being the dicks they are expect you to jump through hoops to try to get it back and will "get back to you" in 3-5 days. if you haven't tried They want the last password you remember, when you opened the account and on and on....
Reading this second method here, I am unsure exactly what to do. I am a noob at this linux based stuff and not terribly familiar with adb. I barely muddled through all it took to root my DInc and install a custom ROM.
A little more help? Maybe?
EDIT: Got QuickSSHd and WinSCP working together, but I have no idea where to look for the file to change the POP IP address to try to recover this password.
Never mind .....

Hello! I have a little bit different problem.... I have changed the password in Facebook last month and is stored in my Samsung Galaxy 5... How i can recover the password? My android app has stored the password so i can login only from this... i can't restore the password from my pc because i don't have anymore access to this email account.... is there any solution?

cloudtrax said:
Hello! I have a little bit different problem.... I have changed the password in Facebook last month and is stored in my Samsung Galaxy 5... How i can recover the password? My android app has stored the password so i can login only from this... i can't restore the password from my pc because i don't have anymore access to this email account.... is there any solution?
Click to expand...
Click to collapse
If you had added any mobile number of yours then it could help you enough or if any alternative email address.Either you got no choise to get it back.

Help me to decrypt please
in accounts.db file and accounts table I have:
1/Csd9isUuYtNpka5reHGjLshQ1nztm5YliiJlaQMjp70 2p78x01x1iRttFP70uH-tWhz as password field for com.google type
and
YUhOdmIyaHpiMjl0 as password field for com.htc.android.mail type
So can anybody help me to decrypt it?

Success!
ell3 said:
If this fails, I can share you my method anyway:
Connect both your PC and phone to the same home wifi network.
Install a POP3 server on your PC (ok this could be a pain in the @ss, I give you a hint on a easy one: Argo Mail server)
Activate and run it, then take your PCs IP (let's say it's 192.168.0.2)
Edit your Gmail account from the phone, and change the server from gmail's to 192.168.0.2, edit the ports and set it to use POP and plain authentication without encryption (default port should be 110).
Check your mail from the phone ! You just hijacked your credentials from the gmails secure server to your home mail server, that will of course give you an error because there is no account for that address. But you are then able to intercept the password because it's sent as plain text !! And should work for any email address, as long as you are able to edit the server address in the mailbox settings.
Just don't use it to bash into ur GFs email
Click to expand...
Click to collapse
Thanks ell3!! It's a really witty solution that i would never have come up with and I just used it to recover my mail password from kitkat's mail app. I used Wireshark to sniff the traffic during the authentication attempt and it worked really fine.

end_092 said:
Thanks ell3!! It's a really witty solution that i would never have come up with and I just used it to recover my mail password from kitkat's mail app. I used Wireshark to sniff the traffic during the authentication attempt and it worked really fine.
Click to expand...
Click to collapse
The method is good but you do not need to complicate yourself. Do not install mail server install wireshark and with a r73 or any wifi that can capture promiscuous you can sniff your username and password
---------- Post added at 02:47 AM ---------- Previous post was at 02:42 AM ----------
ell3 said:
You can use adb shell to get that file, but I always use my dear QuickSSHd and get it with WinSCP on my pc. If I get any permission error, I open my Root Explorer and mount the root with r/w permission ! With that you can access any file in your phone/memory card.
As for the second, this is supposed to work only if you can change the address of the server and auth method ... if you are using an app with hardcoded server and port (and you could even hijack it that connection to your server) it will still be encrypted and you might not get the password...
Click to expand...
Click to collapse
Maybe wireshark and live Kali linux ...do the job

Recover passwords of stock browser
I found an app, which can recover and edit stored browser Passwords. You can give it a try: play.google.com/store/apps/details?id=tkstudio.browserpasswordrecovery

mrhamed said:
in accounts.db file and accounts table I have:
1/Csd9isUuYtNpka5reHGjLshQ1nztm5YliiJlaQMjp70 2p78x01x1iRttFP70uH-tWhz as password field for com.google type
and
YUhOdmIyaHpiMjl0 as password field for com.htc.android.mail type
So can anybody help me to decrypt it?
Click to expand...
Click to collapse
For recovery of password from HTC Email app you unbase64 the password field, then you unbase64 the result and then you switch pair of characters like this "0123..." -> "1032..."
Following this procedure your password should be "shooshoom".
Can you please confirm this is correct?

Yes it works but I can't understand exactly how?!
I decode the "YUhOdmIyaHpiMjl0" via base64decode.net and result is: "aHNvb2hzb29t"
What is your mean about "switch pair of characters" exactly?

mrhamed said:
Yes it works but I can't understand exactly how?!
I decode the "YUhOdmIyaHpiMjl0" via base64decode.net and result is: "aHNvb2hzb29t"
What is your mean about "switch pair of characters" exactly?
Click to expand...
Click to collapse
At first you have "YUhOdmIyaHpiMjl0"
you decode base64, you get "aHNvb2hzb29t"
then you decode base64 the result, you get "hsoohsoom"
now you switch pairs of characters (first with second, third with fourth...) and you finally get "shooshoom"

CuberX said:
For recovery of password from HTC Email app you unbase64 the password field, then you unbase64 the result and then you switch pair of characters like this "0123..." -> "1032..."
Following this procedure your password should be "shooshoom".
Can you please confirm this is correct?
Click to expand...
Click to collapse
Hi!!! I have the same problem! I forget my password on mail app but is a imap account ... how i find this file? I have HTC m9 plus with android 6.0
Tks!

eduaf1 said:
Hi!!! I have the same problem! I forget my password on mail app but is a imap account ... how i find this file? I have HTC m9 plus with android 6.0
Tks!
Click to expand...
Click to collapse
if your device is rooted then navigate to "data/data/com.htc.android.mail/databases" and copy the file "mail.db". Then open given file in some program that can open sqlite database for example SQLiteStudio. Then locate the table with name "accounts" in which are the _password and _outpassword values obfuscated in a way that was described above. If your device is not rooted, then you can extract the file through ADB backup.

nice one bro
ell3 said:
I found this with google from another forum, password could be stored in
/data/data/com.google.android.gm/database/gmail.db
and related files to google account in
Code:
/data/system/accounts.db
/data/system/sync/accounts.xml
/data/data/com.google.android.gm/databases/gmail.db
/data/data/com.google.android.providers.calendar/databases/calendar.db
/data/data/com.google.android.providers.gmail/databases/mailstore.#######@gmail.com.db
/data/data/com.google.android.providers.talk/databases/talk.db
/data/data/com.google.android.providers.subscribedfeeds/databases/subscribedfeeds.db
Haven't tried myself cause I have no account of any type, so I dont know if passwords are plain text or hashed...
If this fails, I can share you my method anyway:
Connect both your PC and phone to the same home wifi network.
Install a POP3 server on your PC (ok this could be a pain in the @ss, I give you a hint on a easy one: Argo Mail server)
Activate and run it, then take your PCs IP (let's say it's 192.168.0.2)
Edit your Gmail account from the phone, and change the server from gmail's to 192.168.0.2, edit the ports and set it to use POP and plain authentication without encryption (default port should be 110).
Check your mail from the phone ! You just hijacked your credentials from the gmails secure server to your home mail server, that will of course give you an error because there is no account for that address. But you are then able to intercept the password because it's sent as plain text !! And should work for any email address, as long as you are able to edit the server address in the mailbox settings.
Just don't use it to bash into ur GFs email
Click to expand...
Click to collapse
mate in defalt email in glacsy s5 i just used imap insted of pop but gave me no security options and boom wiershark i was going to try ssl srtip or some **** u saved me the head ake thanks bro

Hello I bump this old thread I got similar Problems. I wonder if there is an app that can do this job?

Tks!!!!
CuberX said:
if your device is rooted then navigate to "data/data/com.htc.android.mail/databases" and copy the file "mail.db". Then open given file in some program that can open sqlite database for example SQLiteStudio. Then locate the table with name "accounts" in which are the _password and _outpassword values obfuscated in a way that was described above. If your device is not rooted, then you can extract the file through ADB backup.
Click to expand...
Click to collapse
Thats works!!!!! Thanks so much!!!!!

Can anyone help me, I lost my yahoo mail password, i cant recovery because is a old account and the number that they have on file is from another country , im been looking for help everyone, i have the email on my android phone but i dont receive mail for some reason, i try to reade the database of the samsung.mail but all i see is the email that im trying to recovery and at the password field i see a code encryted i think . 4fLOS0UXlNkBh1Uc8kDW6g== ..
how do i decrypt that no idea someone help i really need this email back

Related

Importing Certificates

I need to import a certificate for my WIFI. I can get this as a PEM or DER format certificate from our admins, which I can use on anything else from a laptop to a pda.
On the Nexus the certificate needs to be .p12 files (PKCS#12). I do not have one of these, nor can I get one, nor can I find a way to convert the current PEM/DER to one of these.
How do I do this? It seem pointless if the nexus requires a different format than that provided to people to work with all other devices. Admins are not going to start issuing a special format, just for nexus users, Especially when that format seems to need a private key in addition and/or another password too.
Anyone else managed to do this?
I installed a certificate (a .crt file) by opening it with the web browser (via HTTP). You could also try opening it in Astro or another file manager.
A lot of people have complained about this. Apparently you have to import it from the web browser. File and gmail apps don't seem to know how to handle the certs.
You can forward it to your gmail account then use the web browser to get to gmail and import it from there.
Hi Guys,
I don't mean to hijack the thread, I've been trying to find the full encryption standards and protocols supported by the nexus one and have not had much luck. I presume you guys might have an idea.
Anyone got a link ? Thanks for your help. Ash.
robert-qfh said:
I installed a certificate (a .crt file) by opening it with the web browser (via HTTP). You could also try opening it in Astro or another file manager.
Click to expand...
Click to collapse
UmbraeSoulsbane said:
A lot of people have complained about this. Apparently you have to import it from the web browser. File and gmail apps don't seem to know how to handle the certs.
You can forward it to your gmail account then use the web browser to get to gmail and import it from there.
Click to expand...
Click to collapse
I've tried opening with a few file browsers, no luck as they refuse to open them, tried various ways of opening with web browsers, no luck as all they want to do is save them, and then the file browsers dont want to open. Also tried email and opening through the web or client. No luck.
Can you guys break it down how you got it to work ?
Thanks
Ash.
Anyone know how to load a .crt and .ca certificates on the nexus one ?
I've tried doing everyway with and without the certificates.
Thanks
Ash.
Just tried uploading a .DER cert to my personal FTP and goto it via the browser and it simply opened it like a text file. .P12 files are recognised by the browser fine and the user is prompted for the passkey but that is expected as .P12 seem to be the only type of cert that works on Android.
You could try to manually modify wpa_supplicant.conf . Depending on the network configuration this may vary. This is the same way you would do it in Linux. I remember I did this in my G1 ( I dunno if you need root, my G1 was rooted anyway), but the location of the file was not in /etc like it is usually in most Linux. My conf looked like this:
network={
ssid="somenetworkWPA"
proto=RSN
key_mgmt=WPA-EAP
pairwise=CCMP
eap=PEAP
identity="[email protected]"
password="pass"
phase2="autheap=MSCHAPV2"
ca_cert="/sdcard/mycert.der"
}
There are plenty of samples and explanations around the net about changing this file. Hope this helps.
janfsd said:
You could try to manually modify wpa_supplicant.conf . Depending on the network configuration this may vary. This is the same way you would do it in Linux. I remember I did this in my G1 ( I dunno if you need root, my G1 was rooted anyway), but the location of the file was not in /etc like it is usually in most Linux.
Click to expand...
Click to collapse
It's /data/misc/wifi/wpa-supplicant.conf. It's owned by wifi:wifi with permissions 770. So it appears you'll need to be root.

[Q] Using O1 behind a proxy server

Here, I have access to internet by wifi network and it is behind a Squid proxy server with authentication. how can i use wifi network here?!
Are u trying to connect your phone through a public network?
Yes... it is a corporation network that i am within.
pymebrahimi said:
Yes... it is a corporation network that i am within.
Click to expand...
Click to collapse
Then, you can't, you need to have an username and password..
yukinok25 said:
Then, you can't, you need to have an username and password..
Click to expand...
Click to collapse
I have a username and password of course...! I don't trying to hack!! I am here and have a username and password and internet access legally...now i want to be able to use it on my phone... so i write this post....
how can i use my phone behind a proxy server with authentication...! please help
pymebrahimi said:
I have a username and password of course...! I don't trying to hack!! I am here and have a username and password and internet access legally...now i want to be able to use it on my phone... so i write this post....
how can i use my phone behind a proxy server with authentication...! please help
Click to expand...
Click to collapse
If I understood correctly, you can try downloading "orbot" app from the market.
I found something else here:
http://android-proxy.blogspot.com/
i tryed that... not working on our phone?
I'm not trying to breaking the filtering! just easyly access to web! so orbot is not the answer... but i saw the link you shared before... not working on our phone!
any other way including the iptables way would be great
pymebrahimi said:
i tryed that... not working on our phone?
Click to expand...
Click to collapse
If you are talking about Orbot, you need to have root to use it.
Sorry, I don't get it, if you have username and password why can't you access to the internet?
What kind of message or error do you get?

[Q] Mint App/Account (Android) Recovery Help

Not really related to TP, sorry, but I really need the help.
I signed up with Mint.com via the app, I must've put in the wrong email address while signing up, Mint.com does not see my email address (says is does not exist).
Now my device is rooted, is there a way I can open the mint data via the text/db viewer and get the email address that I signed up with? Anyone know where the Mint data is stored?
Thanks.

Installing certificates.

My friends who I play an online game use a mumble server for voice chat so I downloaded the mumble client for android beta. I try to install the certificate I backed up from my laptop but I am asked for a password when I know the certificate is not password protected.
If I try to install the certificate with no password the settings screen just dims until I hit the back key send the certificate will not install, anyone have any suggestions on how to get the certificate installed?
I am using settings > security > install certificate from device storage to install it.
Sent from my GT-I9300 using xda app-developers app
when I know the certificate is not password protected.
Click to expand...
Click to collapse
Are you asked a certificate password or asked to set a device password?
Have you checked if the certificate doesn't say encrypted in the raw text?
d4fseeker said:
Are you asked a certificate password or asked to set a device password?
Have you checked if the certificate doesn't say encrypted in the raw text?
Click to expand...
Click to collapse
The password it asks for is to extract the certificate files, and I know it is not encrypted because the pc mumble client doesn't encrypt exported certificates and I import the same certificate every time I reinstall windows and don't get asked for a password.
Sent from my GT-I9300 using xda app-developers app
Afaik the certificate is an RSA private key.
So the second line, when opened in the text editor of your choice, should not contain any Text with the literal string "encrypted".
Since Windows and Linux have different methods of Line endings, you might have to convert it to UNIX style.
E.g. the Windows Application Notepad++ is capable of doing it.
Blank passwords are the standard for non-decryption, so it should work...
Are you sure you need to install the certificate in Android and not in the app?
What ROM are you on?
d4fseeker said:
Afaik the certificate is an RSA private key.
So the second line, when opened in the text editor of your choice, should not contain any Text with the literal string "encrypted".
Since Windows and Linux have different methods of Line endings, you might have to convert it to UNIX style.
E.g. the Windows Application Notepad++ is capable of doing it.
Blank passwords are the standard for non-decryption, so it should work...
Are you sure you need to install the certificate in Android and not in the app?
What ROM are you on?
Click to expand...
Click to collapse
I don't see any encryption if I open it in notepad, and there is nowhere in the mumble for android beta app to install a certificate.
I am on stock LFB.
According to a quick Google, it seems that (at least for the ones I found, there are several - each based upon each other) Certificate Login is not yet supported. Maybe there are versions where it works, you'll have to search.
Any luck on getting this to work?
It seems like mumble uses certificate as a form of "password" for user logging in to mumble server with registered nick.
I've export a cert to my phone but was unable to install it as well, it says "no certificate to install" when i attempt to install the cert from mumble pc.
tishfire said:
Any luck on getting this to work?
It seems like mumble uses certificate as a form of "password" for user logging in to mumble server with registered nick.
I've export a cert to my phone but was unable to install it as well, it says "no certificate to install" when i attempt to install the cert from mumble pc.
Click to expand...
Click to collapse
Not yet, I'm running out of ideas, all I can think of is creating a new certificate rather than using one automatically generated by mumble, I haven't done this yet because I don't want to bother my mumble server guys with taking me off the server then putting me back on.

Any way to retrieve stored wifi password from Android device without root and ADB??

Hi Guys...
I have a GS3 connected to a wifi network. I want to reteive the wifi network password from it. I know we can do it if the device is rooted. I also dont have access to ADB. Is there any other way to retrieve the password from the device without Root and ADB??
Just bringing UP one time.. Expecting some replies..
AW: Any way to retrieve stored wifi password from Android device without root and ADB
amith007 said:
I also dont have access to ADB.
Click to expand...
Click to collapse
Everybody have access to ABD!
Just activade it at developers settings
Pull with ABD the file
/data/misc/wifi/ wpa_supplicant.conf
to your PC. There are saved all wifi-passwords
Gesendet von meinem Nexus 4
ha ha.. thanks for the reply.. but by telling "i dont have access to ADB", i meant that i am not able to connect that phone into a PC with ADB.. its a test device in my work place..
amith007 said:
Hi Guys...
I have a GS3 connected to a wifi network. I want to reteive the wifi network password from it. I know we can do it if the device is rooted. I also dont have access to ADB. Is there any other way to retrieve the password from the device without Root and ADB??
Click to expand...
Click to collapse
Try using an app from the play store they will save the password for you if you have already entered it before.:laugh:
amith007 said:
ha ha.. thanks for the reply.. but by telling "i dont have access to ADB", i meant that i am not able to connect that phone into a PC with ADB.. its a test device in my work place..
Click to expand...
Click to collapse
If you need to recover the pass directly from the device, you need root. There aren't any other way.
Sounds suspicious to me!
If it's a work phone why do you need the wifi password?
If it's already connected why do you need to know the password?
Why don't you just ask your network admin the password if you are allowed access?
Please explain yourself before I report you..
CtrlAltDelIrl said:
Sounds suspicious to me!
If it's a work phone why do you need the wifi password?
If it's already connected why do you need to know the password?
Why don't you just ask your network admin the password if you are allowed access?
Please explain yourself before I report you..
Click to expand...
Click to collapse
Oh ho.. cool man.. we are in need to test an application which needs internet.. earlier we got the password for a wireless network used by the adjacent team in one of our device.. now my manager is reluctant again going back to them begging for the password.. so he asked me any other way.. even i know how to do it when the device is rooted, but unfortunately the device is not rooted and i cant root it since its not mine.. and there is no adb setup available as well..anyways we got the password..this time he sent me to beg for it..
Use this APP
WiFi Pass Recovery & Backup Best app just showed the password but ROOT required.
Just download the file attached
Marcus_1997 said:
WiFi Pass Recovery & Backup Best app just showed the password but ROOT required.
Just download the file attached
Click to expand...
Click to collapse
the program works great. Thanks
It works !!
Marcus_1997 said:
WiFi Pass Recovery & Backup Best app just showed the password but ROOT required.
Just download the file attached
Click to expand...
Click to collapse
Thanks Marcus
It works
Thank you
Well done Marcus. It works
kelsim100 said:
Well done Marcus. It works
Click to expand...
Click to collapse
It worked well till Android 4.2.2
Since I updated to 4.3, it shows "No password needed"
Sure my S4 is rooted
Hope it will work again.
Mobydick
Wifi passwords are encrypted on my S4 4.3!
Am I the only person that has thier Wifi passwords are encrypted in thier "wpa_supplicant.con" file by default. If not does anyone know how to have it decrypted by default so I could see my wifi passwords. Thanx
worked like a charm on my original tab 1
Used Wifi Key Recovery and never had problems, got the HTC M8 and now when i open the app it show zero protected networks, even though i am on wifi, changed over to Wifi Password Recovery, this one does show all the networks i have logged into but when i press on one of them to get the password, i get HTC=ENCRYPTION:then bunch of letters, non of which are the passwords. Can this be disabled in the HTC, or is it a 4.4.2 issue. Thanks in advance for your help.
Wifi passwords are encrypted on my S5 :crying:
Any solution ?
JCS666 said:
Wifi passwords are encrypted on my S5 :crying:
Any solution ?
Click to expand...
Click to collapse
I've yet to find any solution to be able to see the passwords, even is i use /data/misc/wifi/wpa_supplicant.conf, they are still encrypted btw, love the motogp avatar
I found the keys but they are in Hex format. Even with the usage of a an escape (0x) the wireless card fails to connect using these 24 long passwords.
Does it mean they are encrypted? if so how to decrypt.
privatewarrior1 said:
I found the keys but they are in Hex format. Even with the usage of a an escape (0x) the wireless card fails to connect using these 24 long passwords.
Does it mean they are encrypted? if so how to decrypt.
Click to expand...
Click to collapse
Yes, they are encypted. How to decrypt? hard to know before know what type of encryption they use, the result of encryption is a number show in hex... maybe transforming into pure binary and then transforming on something could work... but I really dont know... maybe is just a new type of encryption and the only way to decrypt is to create multiple password you know the result and compare the hex tags.
Hope someone could help us to avoid that kind of work xD

Categories

Resources