I haven't looked at Cygwin's ssh-agent but I'm sure it's possible to achieve the same thing. The unencrypted private keys have to be stored somewhere (either in memory or protected on disk). Could probably just dump…
Yep, you're correct. Not a vulnerability or an exploit. It's always going to be possible with the right privileges, I was just wanted to see and show the "how"
Cool thanks for sharing! They were all burner keys anyway, just blurred/obfuscated for "best practice"
Author here...heh nice find. All keys used were burner keys anyway. The only reason I blurred and obfuscated where I could was just for "best practice" not for real security. I knew if I didn't people would comment that…
I haven't looked at Cygwin's ssh-agent but I'm sure it's possible to achieve the same thing. The unencrypted private keys have to be stored somewhere (either in memory or protected on disk). Could probably just dump…
Yep, you're correct. Not a vulnerability or an exploit. It's always going to be possible with the right privileges, I was just wanted to see and show the "how"
Cool thanks for sharing! They were all burner keys anyway, just blurred/obfuscated for "best practice"
Author here...heh nice find. All keys used were burner keys anyway. The only reason I blurred and obfuscated where I could was just for "best practice" not for real security. I knew if I didn't people would comment that…