Recover Windows and program passwords with ExtPassword

ExtPassword is a portable application by Nirsoft that is designed to recover passwords from Windows and applications that run on Windows. Designed primarily for the restoring of passwords from external drives, e.g., an old copy of Windows on a non-system drive or on USB devices, it may also be run on the active system, but the output may be limited.
ExtPassword is compatible with all versions of Windows starting with Windows XP and including Windows 11. The program may recover a wide range of passwords from Windows and certain programs:
- Windows Credential files passwords, which store remote computer passwords.
- Windows 10 and 11 security questions and answers.
- Microsoft Account cache file.
- Web browser passwords, including Chrome, Chromium, Firefox, Brave, Vivaldi, Microsoft Edge, Opera and Internet Explorer.
- Dialup and VPN passwords.
- Email client passwords, including Outlook, Thunderbird and Windows Mail App on Windows 10 and 11.
- Wireless network keys.
- DPAPI passwords on Windows 10.
All it takes is to download the program archive from the Nirsoft website, extract the content, and run the application with elevated rights. Note that Windows may display a SmartScreen warning prompt when you run the application. The program is not malicious and warnings may also be displayed if it is not known by Microsoft's SmartScreen service.
The application displays a configuration window on start. Select the external device that you want it to scan, and supply Windows passwords or Firefox master passwords if you have them. The passwords are optional, but some data may not be recovered if they are not supplied.
The extraction takes just a second or two to complete. Data is displayed in a table and columns highlight program names, user names and passwords, storage, the user profile and more information. A click on a column header sorts the table accordingly; there is also a search option to find strings quickly by selecting Edit > Find.
You can export data in several ways. Select any number of rows in the table and select the save/copy selected items options to either copy the date to the clipboard or save it to the local system.
You may also export the entire list of user names and passwords to several different formats, including plain text, CSV or XML.
A tap on F7 displays the log file, which may reveal why a particular password is not displayed.
Closing Words
ExtPassword is a useful program for Windows administrators and users who want to retrieve passwords from the running system or an old system. The program returns the data in a matter of seconds and works best if you can supply Windows passwords (and the Firefox master password if you need to retrieve data from the browser).
ExtPassword is limited to scanning full drives only at this point; there is no option to scan specific folders only using it at this point. Lastly, read access is required to retrieve the data.
All in all, ExtPassword is a useful password recovery software for the Windows operating system.
Now You: have you used password recovery software in the past?






I love auto-playing videos. It saves me a thousand clicks a day.
And probably costs your a good amount of data, if you don’t have a good plan. Better would be an opt-in than opt-out.
I hate auto-playing videos. Never click on them. Never watch them. Just one more manic marketing/advertising ploy that is rampant on the internet, to grab your attention intrusively, greedily, and glaringly obnoxiously. Second worst is those stupid timed pop-ups to get you to sign-up for something. No wonder so many people have screwed up attention spans.
Telegram is introducing Telepathic Videos, they play in your head and can’t be stopped unless you turn off the app, put the device in your freezer (no signal, batteries die quickly) then go outside into reality. Scary proposition but definitely worth trying.
I appreciate the tip, Ashwin — thanks!
i fucking hate autoplaying videos
YESSSS! :))))
Thanks!
Quick, concise and effective instructions!
Thank you so much!
You saved my life. Thank you! =)
Thanks a lot for the tip!
Unfortunately there’s still no way to stop an autoplaying video once you’ve started it. So you get to choose; either don’t watch it at all… or watch it looping for all eternity.
More great UI design from your friendly neighbourhood Telegram devs. The people who brought you “no scrollbars on OSX” and “allowing other people to remotely delete data on your devices”
Not true, at least not on my Telegram desktop PC setup; I started playing a video that I couldn’t find a way to stop playing in a loop over and over again, which led me to find this article.
I followed the article’s instructions and toggled off the autoplay for videos and GIFs for all three categories, Private, Group and Channel, and once I did that and saved the settings the previously perma-looping video stopped and the UI was replaced with a blank window and a ‘Play’ symbol.
Thanks a lot!
Thank you, someone posting some disturbing surgery stuff in a group and I’m not keen on having it replay over and over.
Thank you! They really went out of their way to hide this setting, didn’t they. I wonder if that was just incompetence, or outright malice.
Hmm, on the website it states: “There’s no shady stuff as 100% of the website is open source.” No, it required some scripts for the basic website to even load… It can be classified as untrustworthy and poor quality design.
Martin, where do you predict this post will be sent today, will it reach the correct thread or be redirected to some random thread on AI, Social media fads, or be tapped onto a long debate on browser bug comments. Your visitor comments database is kaput! :-/
Martin, the [#comment-4572556] post did weirdly redirect to: [https://www.ghacks.net/2023/08/14/is-beeper-safe/] and now it seems to be back in the correct “.sexy” thread. Maybe it’s a homing pigeon.
However, the last (currently) visible response to the “Wi-Fi” thread, instead nested in the “beeper” one. It also looks like the other posts people made in that “wireless” thread, migrated south and flew into others threads. It’s like Russian roulette with replies trying to reach the right destination nowadays – around here.
privacy.sexy may not be a great resource – for example, one of the scripts in the ‘configure programs’ scripts for Firefox enables ‘privacy.firstparty.isolate’ – FPI is obsolete and has been replaced with dFPI which can be enabled in ‘preferences > privacy & security > enhanced tracking protection’ by selecting the ‘strict’ option
another script disables WebRTC to prevent IP leakage (VPN, etc.) – this is apparently no longer necessary (see ‘[SECTION 2000]’ of the arkenfox js)
Somebody should really do something about the comments chaos. Random dates and topics. Is AI running gHACKS?
Yet another topic with unsynced responses. I sure hope a solution is found soon.
Martin, if this website is really yours, perthaps, we need some “command decisions” from you to get it back on track??
I have reached out to Martin personally and to his credit he replied very quickly. He has informed me that they are aware of the problems and are attempting to fix it.
Martin is no longer involved in the technical management of the site so I imagine if we want to ask someone then our comments would perhaps be better directed towards Softonic.
Love stuff like this.
PORTMASTER
I stopped using this because it doesn’t prevent DNSAPI.dll from allowing the PC to make sneaky connections to Micro$oft. I put my Acrylic M$ blocklist into the Custom Filter option but it Micro$oft URLs would still bypass it (and of course the regular Hosts file).
Back to Acryllic and Tinywall! Most people don’t care about M$ spying on them, but some of us still do. So even though Portmaster ‘owns’ port 52, it still let’s DNSAPI.dll over-ride one’s privacy options.
Oh, the irony!
*Sorry- Port 53 of course, and Acrylic!!
@Martin Brinkmann,
I am the first posted to this (2023/09/09: Notepad++ 8.5.7 fixes 4 security issues) article.
All of the existing comments are about other articles unrelated to “This article published on 2023/09/09: Notepad++ 8.5.7 fixes 4 security issues.”
Should relink them all properly.
@Martin Brinkmann,
You mentioned that comment associations have been “fixed”. but The actual situations are still associated with other articles.
Below is my case,
Posted to:
Notepad++ 8.5.7 fixes 4 security issues: 2023/09/09:
>> ghacks.net/2023/09/09/notepad-8-5-7-fixes-4-security-issues/#comment-4573427
Linked to:
How to disable autoplay videos in Telegram Desktop: 2020/01/02
>> ghacks.net/2020/01/02/how-to-disable-autoplay-videos-in-telegram-desktop/#comment-4573427
Disheartening news for me, as I really rely on SUMO for the updates for the last 5 years or so.
Others I tried–even ones with big brand names–are junks compared to how extensive and useful SUMO’s features are.
Anyone can recommend a list of 2-3 softwares at par with SUMO? Thank you.
That’s very sad news.
I’ve always been a fan of SUMO and DUMO but I’ve not used any of their other applications.
I purchased a lifetime license of Sumo in 2018 and I was very satisfied with this program.
There are not many alternatives and those that exist are not as effective.
See alternatives here : https://alternativeto.net/software/sumo/
Secunia was also abandoned some time ago.
Odd . . . many of their programs were updated within 2023:
https://www.kcsoftwares.com/?download
I haven’t used any of their products, but I have a bookmark to the site. Chances are good that Major Geeks will archive all the products, a sort of repository for KC Software.
Bummer!
There in no alternative to SUMo which scans for software on all drives and support portable apps.
There are many alternatives to SUMO.
https://alternativeto.net/software/sumo/
Whether they cover as many programs is the problem.
Patch My PC Home Updater: https://hiberhernandez.com/descargas/patch-my-pc-updater/
Zero Install: https://hiberhernandez.com/descargas/zero-install/
Sad news indeed. Been using SUMo for a long time.
As mentioned, an article about alternatives would be welcome.
Kaspersky will be happy, they’ve been flagging SUMo as “incompatible software” for years, only because it competes with their KIS’s Software Updater junk. No “Ignore” option for their blatant anti-competitive deceit. Of course.
—
What’s with all the old unrelated posts crap? @Martin Brinkmann can you please get rid of that time-wasting nonsense, it makes reading and finding genuine comments a serious PITA!
Very sad news indeed.
Before SUMo I was using WebMon, a free software which was monitoring web sites for changes and it was very good, but the software was discontinued and stopped working correctly on https sites for which it was not programmed.
I think that I will return to this kind of software, I am actually trying the free version of “WebSite-Watcher” which is a shareware, and I’ll try to find some other softwares of this kind.
Actually this is the only kind of software which would be able to “find” new versions for installed softwares but also for portable softwares.
Under: https://www.ghacks.net/2023/09/11/kc-softwares-maker-of-sumo-and-other-apps-is-shutting-down/
to:Sputnik
>Before SUMo I was using WebMon, a free software which was monitoring web sites for changes and it was very good, but the software was discontinued and stopped working correctly on https sites for which it was not programmed.
There is modern recreation of WebMon, which support https (and a number of other additional features), called WebChangeMonitor:
https://sourceforge.net/projects/webchangemon/
Also, in addition, I can recommend a somewhat similar program Ketarin (HP: ketarin org) – it has not been updated for quite a while (but not as long as WebMon), but is fully functional. Its plus is that it can also download files (in fact, this is its main function – after detecting changes, like WebMon, download a given updated file). Everything must be configured manually, as in WebMon, so as an alternative to SUMO may not be for everyone, but for someone who used WebMon – very much so.
@Lemegeton
Thank you very much for this info, I will check both of these programs !
I prefer alert of new versions rather than manual updating so the installer/portable app can be scanned via VirusTotal before installation. SUMO gave the alert and a right-click option to open the app folder, which was all I ever used.
Wingetui is an alternative to SUMO but it is not as comprehensive. It misses seeing some of my software. The article above mentions ‘several good alternatives’. Alternativeto lists a lot but lacks https://alternativeto.net/software/sumo/ but does not give thorough reviews.
Has anyone experience with the free version of IObit Software Updater?
(Yes I know that IO does everything to overwhelm your PC, and Malwarebytes is still very angry/aggressive towards IO, but they have some very good (free) programs, and you can rely on that they are not one-man-projects).
I have tried it. It sneaky installs a brunch of other programs which causes an almost uncontrollable chaos. So not advisable (through the updater program itself seems to be very functional).
Sad to see this. I enjoyed using SUMO over the years! Thank you KC Softwares for all the great applications.
I prefer alert of new versions rather than manual updating so the installer/portable app can be scanned via VirusTotal before installation. SUMO gave the alert and a right-click option to open the app folder, which was all I ever used.
Wingetui is an alternative to SUMO but it is not as comprehensive.
Ketarin (https://ketarin.org/index.php) looks interesting and I just downloaded this morning to start tinkering. It takes a bit of work to configure each piece of software. When first run it downloads the software on each link. Subsequently, it downloads new versions. It is portable, so you could load it plus downloads onto a USB stick and use it to install the same apps on different (compatible) computers.
https://www.ghacks.net/2008/11/22/keep-software-installers-up-to-date/
Sorry to hear about SUMO.
Patch My PC is another alternative.
Plus winget, or WingetUI
The new version (10) of uCheck now allows mentioning custom locations.
I did a test with installer and portable version, but without success.
I asked their support if this option is reserved for the paid version.
Their answer:
“Hi,
Thanks for your message.
Yes it should be scanned in the Free version as well. However, it’s just client capability for now.
We are in the process of adding portable links in our database right now, so it’s normal if there’s very few (or not) software found in these locations.”
?
Sad, SUMP was by far the best program for finding the latest updates, even for obscure apps. Would like to see them open source their entire line up, so someone else can take up the torch! Would be sad to see it go down to no good end! Thank you SUMO for all the good work you’ve done for the public good!
Just used SUMo, Patch My PC, and winget.
SUMo found 9 major, and 16 minor updates
Patch My PC found 8 updates
winget found 11
False negatives: determines there was no update, when in fact there is an update
False positive: determines there is an update, when in fact there is no update
winget has a lot of issues.
False negative: it didn’t list updates for Chrome, and Thunderbird
Also had one false positive, i.e., there was an update when in fact it doesn’t exist.
The Microsoft C++ Redistributable updates leave old ones behind, so winget reports then out of date.
There was a false positive for Patch My PC.
SUMo is the most comprehensive and accurate of the three products tested.
I did not find any false positives or false negatives.
I originally used Secunia to check for updates until is was discontinued.
Just ran SUMo, Patch My PC, and winget.
Both SUMo and Patch My PC found an update for LibreOffice, but the winget upgrade command missed it.
The winget list command shows LibreOffice, but no update.