Cracking Visual Source Safe Passwords

Yes, VSS still exists

Several months ago I was approached by a project manager asking for help with some truly legacy code; stuff that was so old it existed only in an ancient source safe database that hadn'tseen the light of day in years. Unfortunately no one had (or remembered) credentials to get in and this project update wasn't going away any time soon. We needed a solution to crack the database and get access to our client's code. Needless to say, this was one of the last projects I wanted to work on.

You Think Your Data is Safe?

Pro-tip: It probably isn't

While working on some application security requirements for a client, I came across this little nugget about cracking pgp passwords using a cloud.