Recent Nirsoft update

#1 Post by abc » Wed Sep 17, 2014 5:10 pm

There's quite a few updates to the Nirsoft Password utilities that have the same changes:

"Removed the command-line options that export the passwords to a file from the official version. A version of this tool with full command-line support will be posted on separated Web page."

What is going on :?:

Re: Recent Nirsoft update

#2 Post by SYSTEM » Wed Sep 17, 2014 8:59 pm

My guess is that it's related to malware being able to launch these utilities with such a command line switch, in which case the utility will export passwords silently and the user of the computer can't notice anything.

Of course this is quite poor protection:
  • Old versions of these utilities still float around the Internet. Redistributing them is legal.
  • It is possible for more sophisticated malware to launch the utility and trigger the menu option to export all passwords (maybe when user activity hasn't been detected for a while).
  • Ability to read passwords can be implemented in malware itself.
It might be that the webhost Nir Sofer is using contacted him and threatened to close the website if he didn't remove those command-line options.
Re: Recent Nirsoft update

#3 Post by the_watcher » Mon Sep 22, 2014 10:43 am

There is a post about this issue at NirBlog : Command-line options removed from the official release of my password-recovery tools
Long story short, Google is the culprit :twisted:

