Passware Kit 2022 v4 – Evidence Discovery on macOS Ventura

by

What’s new in Passware Kit 2022 v4

  • Support for macOS Ventura
  • Password recovery and data extraction from 1Password v8
  • Faster VeraCrypt password recovery
  • Password recovery for a specified QuickBooks account
  • Improved Windows password reset for UEFI systems
  • New dictionary: Vietnamese
  • Option to disable MD5 calculation
  • Remote update of Passware Kit Agent to a compatible version
  • UI improvements

What’s New Video

For your convenience, we have included a video of all the newest features of Passware Kit 2022 v4. Take a look!

Passware Kit 2022 v4 introduces support for the highly anticipated macOS Ventura (or macOS 13): APFS disk decryption, memory analysis, T2 unlock, and Keychain data extraction.

All editions of Passware Kit 2022 v4 are compatible with both Intel- and M1/M2-based Macs running the latest version of macOS.

The new version supports 1Password 8 databases across all desktop platforms: Windows, Linux, and macOS.


Get The Latest DFIR News

Join the Forensic Focus newsletter for the best DFIR articles in your inbox every month.

Unsubscribe any time. We respect your privacy - read our privacy policy.


Passware Kit 2022 v4 detects hash types of system volumes encrypted with VeraCrypt, speeding up the password recovery process.

It also helps users to gain access to sensitive data in QuickBooks databases by brute-forcing the original passwords for QuickBooks accounts.

This new version adds a Vietnamese dictionary, makes MD5 calculation optional, and simplifies the remote management of password recovery agents.

Support for macOS Ventura

Passware products fully support the newly released macOS Ventura, including password recovery and decryption for FileVault2/APFS disk images, memory image analysis, T2 unlock, and Keychain data extraction.

The decryption capabilities for macOS vary depending on the Passware Kit edition.

Password recovery and data extraction from 1Password v8

Passware Kit 2022 v4 supports the latest version of 1Password manager – v8, for Windows, macOS, and Linux. The recovery speed on an AMD Radeon RX 6900 XT is 36,700 passwords per second.

After recovering the master password, Passware Kit extracts all the passwords and other records from the 1Password vault.

Faster VeraCrypt password recovery

Passware Kit 2022 v4 detects VeraCrypt hash types of Windows system volumes with GPT partition tables.

This helps to avoid checking irrelevant hashes and significantly speeds up the overall VeraCrypt password recovery process.

Password recovery for a specified QuickBooks account

Passware Kit decrypts QuickBooks databases instantly. However, there might be cases when some sensitive data in the database is available only with the original password. For such cases, Passware Kit 2022 v4 offers a brute-force password recovery option with a choice of accounts to recover the passwords for.

This option is available for Windows versions of QuickBooks 2006-2022.

Improved Windows password reset for UEFI systems

The latest update resets Windows account and Domain Administrator passwords for Windows systems set up in the UEFI mode, including Windows versions 10 and 11.

Also, Passware Kit now supports booting in UEFI mode directly from a WindowsKey.ISO file. There is no more need to burn the password reset ISO on a CD or USB drive to boot the locked virtual PC.

New dictionary: Vietnamese

New language sets are being added to Brute-force, Xieve, Mask, and Dictionary attacks on a regular basis. As an update, Passware Kit 2022 v4 includes a Vietnamese dictionary.

Option to disable MD5 calculation

The “Tools|Options” menu now contains an option to disable the MD5 hash calculation for encrypted and decrypted files. This reduces the time required to process large files and disk images.

Remote update of Passware Kit Agent to a compatible version

For distributed password recovery, Passware Kit now detects whether the version of its Agents is different and updates them remotely to the compatible version. This simplifies the management of the distributed password recovery processes.

UI improvements

Passware improves the usability of Passware Kit in batch mode by displaying passwords on the Passwords Found tab as they get recovered, not after the overall password recovery process is completed or stopped. Also, the Help menu now contains the relevant list of file types supported by the particular edition of the Passware Kit.

More information about this release on Passware website.

Leave a Comment

Latest Articles

Forensic Focus Digest, May 16 2025
News

Forensic Focus Digest, May 16 2025

ByForensic FocusMay 16, 2025
Introducing XRY 11.0.1 From MSAB
News

Introducing XRY 11.0.1 From MSAB

ByMSABMay 15, 2025
“You Knew What You Were Signing Up For” – A Harmful Narrative In DFIR?
ArticlesWell-being

“You Knew What You Were Signing Up For” – A Harmful Narrative In DFIR?

ByForensic FocusMay 15, 2025
Amped Authenticate Update Empowers Investigators With Expanded Tools For Deepfake Detection And Video Integrity Analysis
News

Amped Authenticate Update Empowers Investigators With Expanded Tools For Deepfake Detection And Video Integrity Analysis

ByAmpedSoftwareMay 15, 2025
Digital Forensics Round-Up, May 14 2025
News

Digital Forensics Round-Up, May 14 2025

ByForensic FocusMay 14, 2025
Detego Global Announces Sponsorship Of British Police Rugby Team’s Centenary Tour Of South Africa
News

Detego Global Announces Sponsorship Of British Police Rugby Team’s Centenary Tour Of South Africa

ByDetego Digital ForensicsMay 14, 2025