FirePassword is the tool designed to decrypt the username and password list from firefox sign-on database. Firefox stores the username and password information for various sites in its database files. FirePassword works on similar line as Firefox's built-in password manager but it can be used as offline tool to get the username/password information without running the Firefox.

Firefox has a built-in password manager tool which remembers username and passwords for all the visited websites. These credentials are stored in the encrypted from in Firefox database files mainly key3.db and signons.txt residing in user's profile directory. The key3.db file contains master password related information such as encrypted password check string, salt, algorithm and version information etc.

FirePassword is an alternative to Firefox's password manager tool. Main advantage of FirePassword is to use it as offline tool without running the Firefox. This is very useful during forensic investigation where one can copy the relevant files from the target system and view the credentials offline without affecting the environment of target system. Also pen testers can use it to view the credentials offline after retrieving sign-on files from the victim system.

Firefox stores the sign-on credentials in signons.txt file located in the user profile directory. The structure of sign-on information in the signons.txt file (signons2.txt for version 2 and signons3.txt for version 3) is as follows.  

Here each Host entry can have multiple username/password pairs. Starting from Firefox version 2.0, sub domain URL is also included along with username/password entry. If it is the password field then its name begins with '*'.Now once the username and password values (which are encrypted) are extracted, next task is to decrypt them. Information required to decrypt these values is stored in key3.db file. If the master password is set, then you must provide the master password to proceed with decryption. If you have forgotten the master password, then you can use Firemaster tool to recover the master password. If the master password is set and if you have not provided it, then FirePassword will prompt you to enter the master password.

Once you enter the password,  FirePassword uses same decryption procedure used by Firefox to decrypt the sign-on information.

Firefox_Profile_Directory is the path to the directory where the above 3 files are present. If you don't specify the master password and its set, then you will be prompted to enter the master password before decryption.

FirePassword is successfully tested with  Firefox version 1.0 to 3.0 and should work with any Firefox version 1.0 or more.

However if the FirePassword fails on your system, then please drop a mail to me mentioning your Firefox version and any other details which will help in fixing the problem.

FirePassword is designed with good intention. Like any tool its use either good or bad, depends upon the user who uses it. However author is not responsible for damage caused due to misuse of this tool.

FirePassword source code is released under GPL license. This will help you understand and enhance the features of FirePassword.