I want to retrieve information from the registry key
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\27F43CBD97D1DB04CA142624E98D6717\features
But the values of this registry key are encrypted.. any one know how to decrypt them?
example :
value = F_FTP_COMMON
value data = ZC]++I3{!@.!lfp,?=DHHvyyfa8fj@(6d@fnEE32eWl_`4R(h@AZId-+a?DW
Jump to PostAgain referencing MS Windows Internals 5th edition, page 990
The default FEK encryption algorithm is AES The Windows AES algorithm uses 256-
bit keys Use of 3DES allows access to larger sized keys, so if you require greater key
strength you can enable 3DES encryption in one of two ways: …
Again referencing MS Windows Internals 5th edition, page 990
The default FEK encryption algorithm is AES The Windows AES algorithm uses 256-
bit keys Use of 3DES allows access to larger sized keys, so if you require greater key
strength you can enable 3DES encryption in one of two ways: either as the algorithm
for all system cryptographic services or just for EFS
Thus, it's a good chance the encryption is AES256.
Ya BobS0327 answer is correct It takes 256 bit so to decrypt that we need minimum 2 year so this will be useless
We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.