Passware Kit 2022 v4 – Evidence Discovery on macOS Ventura

by

What’s new in Passware Kit 2022 v4

  • Support for macOS Ventura
  • Password recovery and data extraction from 1Password v8
  • Faster VeraCrypt password recovery
  • Password recovery for a specified QuickBooks account
  • Improved Windows password reset for UEFI systems
  • New dictionary: Vietnamese
  • Option to disable MD5 calculation
  • Remote update of Passware Kit Agent to a compatible version
  • UI improvements

What’s New Video

For your convenience, we have included a video of all the newest features of Passware Kit 2022 v4. Take a look!

Passware Kit 2022 v4 introduces support for the highly anticipated macOS Ventura (or macOS 13): APFS disk decryption, memory analysis, T2 unlock, and Keychain data extraction.

All editions of Passware Kit 2022 v4 are compatible with both Intel- and M1/M2-based Macs running the latest version of macOS.

The new version supports 1Password 8 databases across all desktop platforms: Windows, Linux, and macOS.


Get The Latest DFIR News

Join the Forensic Focus newsletter for the best DFIR articles in your inbox every month.


Unsubscribe any time. We respect your privacy - read our privacy policy.

Passware Kit 2022 v4 detects hash types of system volumes encrypted with VeraCrypt, speeding up the password recovery process.

It also helps users to gain access to sensitive data in QuickBooks databases by brute-forcing the original passwords for QuickBooks accounts.

This new version adds a Vietnamese dictionary, makes MD5 calculation optional, and simplifies the remote management of password recovery agents.

Support for macOS Ventura

Passware products fully support the newly released macOS Ventura, including password recovery and decryption for FileVault2/APFS disk images, memory image analysis, T2 unlock, and Keychain data extraction.

The decryption capabilities for macOS vary depending on the Passware Kit edition.

Password recovery and data extraction from 1Password v8

Passware Kit 2022 v4 supports the latest version of 1Password manager – v8, for Windows, macOS, and Linux. The recovery speed on an AMD Radeon RX 6900 XT is 36,700 passwords per second.

After recovering the master password, Passware Kit extracts all the passwords and other records from the 1Password vault.

Faster VeraCrypt password recovery

Passware Kit 2022 v4 detects VeraCrypt hash types of Windows system volumes with GPT partition tables.

This helps to avoid checking irrelevant hashes and significantly speeds up the overall VeraCrypt password recovery process.

Password recovery for a specified QuickBooks account

Passware Kit decrypts QuickBooks databases instantly. However, there might be cases when some sensitive data in the database is available only with the original password. For such cases, Passware Kit 2022 v4 offers a brute-force password recovery option with a choice of accounts to recover the passwords for.

This option is available for Windows versions of QuickBooks 2006-2022.

Improved Windows password reset for UEFI systems

The latest update resets Windows account and Domain Administrator passwords for Windows systems set up in the UEFI mode, including Windows versions 10 and 11.

Also, Passware Kit now supports booting in UEFI mode directly from a WindowsKey.ISO file. There is no more need to burn the password reset ISO on a CD or USB drive to boot the locked virtual PC.

New dictionary: Vietnamese

New language sets are being added to Brute-force, Xieve, Mask, and Dictionary attacks on a regular basis. As an update, Passware Kit 2022 v4 includes a Vietnamese dictionary.

Option to disable MD5 calculation

The “Tools|Options” menu now contains an option to disable the MD5 hash calculation for encrypted and decrypted files. This reduces the time required to process large files and disk images.

Remote update of Passware Kit Agent to a compatible version

For distributed password recovery, Passware Kit now detects whether the version of its Agents is different and updates them remotely to the compatible version. This simplifies the management of the distributed password recovery processes.

UI improvements

Passware improves the usability of Passware Kit in batch mode by displaying passwords on the Passwords Found tab as they get recovered, not after the overall password recovery process is completed or stopped. Also, the Help menu now contains the relevant list of file types supported by the particular edition of the Passware Kit.

More information about this release on Passware website.

Leave a Comment

Latest Videos

Forensic Focus

Forensic Focus
Si and Desi interview Emi Polito from Amped about how to become an Amped FIVE Certified Examiner (AFCE). They discuss the exam requirements, format, timeline for certification, and Amped’s future plans. Emi explains that the certification is aimed at demonstrating competency with the Amped FIVE video analysis software after completing training. The exam consists of multiple choice questions on theory and practical exercises using the software. Emi talks about the online exam format and process for passing or failing. Emi also discusses the broader challenges many organizations face with validation and accreditation. He emphasizes Amped's commitment to developing tools that facilitate that process. The hosts reflect on the confusing accreditation landscape and Amped’s passion for improving training and certification in forensics. This episode provides an overview of Amped's new certification and perspective on challenges in the field of video forensics. Show Notes: Introducing The AFCE Certification (Amped FIVE Certified Examiner) - https://www.forensicfocus.com/news/introducing-the-afce-certification-amped-five-certified-examiner/ Video Evidence Principles With Amped Software - https://www.forensicfocus.com/podcast/video-evidence-principles-with-amped-software/ Digital Image Authenticity And Integrity With Amped Authenticate - https://www.forensicfocus.com/podcast/digital-image-authenticity-and-integrity-with-amped-authenticate/ File Analysis And DVR Conversion Training From Amped Software - https://www.forensicfocus.com/reviews/file-analysis-and-dvr-conversion-training-from-amped-software/ Amped FIVE Speed Estimation 2d Filter And Training From Amped Software - https://www.forensicfocus.com/reviews/amped-five-speed-estimation-2d-filter-and-training-from-amped-software/ Amped Software’s Martino Jerian on Key Challenges and Opportunities for Video Evidence - https://www.forensicfocus.com/podcast/amped-softwares-martino-jerian-on-key-challenges-and-opportunities-for-video-evidence/ LEVA 2023 Training Symposium - https://www.leva.org/ Forensic Collision Investigation & Reconstruction Ltd - https://www.fcir.co.uk/ Amped FIVE Certified Examiner - https://ampedsoftware.com/afce-certification Introducing the Amped FIVE Certification Program - https://blog.ampedsoftware.com/2023/10/04/introducing-the-amped-five-certification-program Amped Software YouTube - https://www.youtube.com/ampedsoftware How to Use the Validation Tool in Amped FIVE - https://blog.ampedsoftware.com/2023/03/29/how-to-use-the-validation-tool-in-amped-five

Si and Desi interview Emi Polito from Amped about how to become an Amped FIVE Certified Examiner (AFCE). They discuss the exam requirements, format, timeline for certification, and Amped’s future plans. Emi explains that the certification is aimed at demonstrating competency with the Amped FIVE video analysis software after completing training. The exam consists of multiple choice questions on theory and practical exercises using the software. Emi talks about the online exam format and process for passing or failing.

Emi also discusses the broader challenges many organizations face with validation and accreditation. He emphasizes Amped's commitment to developing tools that facilitate that process. The hosts reflect on the confusing accreditation landscape and Amped’s passion for improving training and certification in forensics. This episode provides an overview of Amped's new certification and perspective on challenges in the field of video forensics.

Show Notes:

Introducing The AFCE Certification (Amped FIVE Certified Examiner) - https://www.forensicfocus.com/news/introducing-the-afce-certification-amped-five-certified-examiner/

Video Evidence Principles With Amped Software - https://www.forensicfocus.com/podcast/video-evidence-principles-with-amped-software/

Digital Image Authenticity And Integrity With Amped Authenticate - https://www.forensicfocus.com/podcast/digital-image-authenticity-and-integrity-with-amped-authenticate/

File Analysis And DVR Conversion Training From Amped Software - https://www.forensicfocus.com/reviews/file-analysis-and-dvr-conversion-training-from-amped-software/

Amped FIVE Speed Estimation 2d Filter And Training From Amped Software - https://www.forensicfocus.com/reviews/amped-five-speed-estimation-2d-filter-and-training-from-amped-software/

Amped Software’s Martino Jerian on Key Challenges and Opportunities for Video Evidence - https://www.forensicfocus.com/podcast/amped-softwares-martino-jerian-on-key-challenges-and-opportunities-for-video-evidence/

LEVA 2023 Training Symposium - https://www.leva.org/

Forensic Collision Investigation & Reconstruction Ltd - https://www.fcir.co.uk/

Amped FIVE Certified Examiner - https://ampedsoftware.com/afce-certification

Introducing the Amped FIVE Certification Program - https://blog.ampedsoftware.com/2023/10/04/introducing-the-amped-five-certification-program

Amped Software YouTube - https://www.youtube.com/ampedsoftware
How to Use the Validation Tool in Amped FIVE - https://blog.ampedsoftware.com/2023/03/29/how-to-use-the-validation-tool-in-amped-five

YouTube Video UCQajlJPesqmyWJDN52AZI4Q_VKk-mhlae1c

Becoming An Amped FIVE Certified Examiner (AFCE)

Forensic Focus 1st December 2023 4:25 pm

Subscribe to the Forensic Focus Podcast: https://www.forensicfocus.com/podcast/ Si and Desi are joined by Brittany and Ailsa from digital forensics software company ADF Solutions. They discuss how ADF is addressing key challenges for digital forensics practitioners, including handling the massive volumes of data from mobile devices and the cloud. The guests outline ADF's focus on developing their software as an easy-to-use onsite triage tool that can help quickly identify pertinent evidence. Key features include advanced handling of video files, AI-assisted classification of images, and new screen recording capabilities for mobile devices that allow suspects to safely share relevant data. The hosts and guests also explore ADF's ongoing research into areas like facial recognition, handling new device types like games consoles and smart watches, and identifying deepfake media. 00:00 – Introduction to Ailsa and Brittany 03:00 – The challenge of vast amounts of data 05:50 – Recovering data from Chromebooks 08:50 – Triaging using ADF tools 12:30 – Benefits of using ADF Solutions’ tools 15:50 – Limitations in types of apps 17:20 – Keeping up with technological advancements 19:15 – ADF customer base 21:00 - Artificial intelligence in classifying images 30:00 – ADF Solutions’ triaging kit 37:00 – Training with ADF 40:00 – Target user 44:50 – Roadmap of future devices to examine 51:30 – Main focus for ADF Solutions going forwards Show Notes: AI-generated CSAM article on Sky News - https://news.sky.com/story/thousands-of-ai-generated-child-abuse-images-being-shared-online-research-finds-12991727

Subscribe to the Forensic Focus Podcast: https://www.forensicfocus.com/podcast/

Si and Desi are joined by Brittany and Ailsa from digital forensics software company ADF Solutions. They discuss how ADF is addressing key challenges for digital forensics practitioners, including handling the massive volumes of data from mobile devices and the cloud.

The guests outline ADF's focus on developing their software as an easy-to-use onsite triage tool that can help quickly identify pertinent evidence. Key features include advanced handling of video files, AI-assisted classification of images, and new screen recording capabilities for mobile devices that allow suspects to safely share relevant data.

The hosts and guests also explore ADF's ongoing research into areas like facial recognition, handling new device types like games consoles and smart watches, and identifying deepfake media.

00:00 – Introduction to Ailsa and Brittany
03:00 – The challenge of vast amounts of data
05:50 – Recovering data from Chromebooks
08:50 – Triaging using ADF tools
12:30 – Benefits of using ADF Solutions’ tools
15:50 – Limitations in types of apps
17:20 – Keeping up with technological advancements
19:15 – ADF customer base
21:00 - Artificial intelligence in classifying images
30:00 – ADF Solutions’ triaging kit
37:00 – Training with ADF
40:00 – Target user
44:50 – Roadmap of future devices to examine
51:30 – Main focus for ADF Solutions going forwards

Show Notes:
AI-generated CSAM article on Sky News - https://news.sky.com/story/thousands-of-ai-generated-child-abuse-images-being-shared-online-research-finds-12991727

YouTube Video UCQajlJPesqmyWJDN52AZI4Q_4z-EgH54KZk

The Power Of Digital Forensics: How ADF Solutions Is Revolutionizing The Digital Forensics Industry

Forensic Focus 30th November 2023 2:57 pm

Si and Desi talk to Gavin Prue and Selim Kang about their non-traditional paths into cybersecurity careers. They share their diverse educational backgrounds, from vocational college courses to returning to school later in life, and the hands-on training that helped prepare them for incident response roles. Gavin and Selim provide advice for aspiring cybersecurity professionals on the importance of networking, asking questions, having a positive attitude, and being willing to put in extra time learning new skills. They discuss the value of university degrees versus certifications, the pros and cons of accredited cybersecurity programs, and the need for continued education in this rapidly evolving field. Whether starting from scratch or changing careers, their stories demonstrate that resilience and motivation can overcome lack of formal qualifications.

Si and Desi talk to Gavin Prue and Selim Kang about their non-traditional paths into cybersecurity careers. They share their diverse educational backgrounds, from vocational college courses to returning to school later in life, and the hands-on training that helped prepare them for incident response roles.

Gavin and Selim provide advice for aspiring cybersecurity professionals on the importance of networking, asking questions, having a positive attitude, and being willing to put in extra time learning new skills. They discuss the value of university degrees versus certifications, the pros and cons of accredited cybersecurity programs, and the need for continued education in this rapidly evolving field. Whether starting from scratch or changing careers, their stories demonstrate that resilience and motivation can overcome lack of formal qualifications.

YouTube Video UCQajlJPesqmyWJDN52AZI4Q_eFAnfQtuRI8

Hacking Your Future: Education Choices For A Cybersecurity Career

Forensic Focus 29th November 2023 2:43 pm

Load More... Subscribe
This error message is only visible to WordPress admins

Important: No API Key Entered.

Many features are not available without adding an API Key. Please go to the YouTube Feed settings page to add an API key after following these instructions.

Latest Articles

Detego Global Achieves City & Guilds Assured Status For The Detego Ultimate Training Programme
News

Detego Global Achieves City & Guilds Assured Status For The Detego Ultimate Training Programme

ByDetego Digital ForensicsDec 5, 2023
Experience The Power Of Binalyze AIR, Live At Black Hat Europe
News

Experience The Power Of Binalyze AIR, Live At Black Hat Europe

ByBinalyzeDec 4, 2023
The Power Of Digital Forensics: How ADF Solutions Is Revolutionizing The Digital Forensics Industry
Podcast

The Power Of Digital Forensics: How ADF Solutions Is Revolutionizing The Digital Forensics Industry

ByForensic FocusNov 30, 2023
Digital Forensics Round-Up, November 30 2023
News

Digital Forensics Round-Up, November 30 2023

ByForensic FocusNov 30, 2023
Turning The Tide Against Wildlife Crime With Detego Global’s Cutting-Edge Digital Forensics Tools
News

Turning The Tide Against Wildlife Crime With Detego Global’s Cutting-Edge Digital Forensics Tools

ByDetego Digital ForensicsNov 30, 2023
Hacking Your Future: Education Choices For A Cybersecurity Career
Podcast

Hacking Your Future: Education Choices For A Cybersecurity Career

ByForensic FocusNov 29, 2023