Hi ,
lets decipher the password encrypted by PSCipher in PeopleSoft !!!!
Well, we know PSCipher utility is used to encrypt the password of Peoplesoft user ID given in web server configuration.properties and in the components of Integration. There is a bat file PSCipher.bat given under web server domain which is used in the process , from cmd also we can encrypt any string with this algorithm and generate new versions of key if required. If you match a password given in configuration.properties with the one you see in PSOPRDEFN for the same user, they are different and encryption in PSOPRDEFN is one way (means passwords are never decrypted ,while authentication its encrypted with the same algorithm and matched with one stored in PSOPRDEFN).
This was hint enough for me to guess out that password in configuration.properties would have to decrypted and brought back to original string for authentication against PSOPRDEFN table.
The curiosity kept on accumulating, and one day i opened the PSCipher.bat file, it calls a java class file PSCipher.class to encrypt the plain strings and passes that string to that java code as default argument to main function.I then gave a try to de compile the class file and guess what i found --
There is a function which accepts that string as argument and uses the key stored in psvault file to encrypt the strings. There is also a decrypt function which is used to decrypt the encrypted strings.
Rest was a cake walk... opened my eclipse , wrote a java program and called the decrypt method of the class file and passed the encrypted string and yesss got the same plain string which was encrypted!!!!
I then wrote another bat file decode.bat in same way as pscipher.bat ,which now i use from cmd . Just run decode.bat from cmd with encrypted string as an argument and we get the original plain string !!! :):)
All the security freaks, give this a try it was fun .If you dont know java programming, you can use the peoplecode to instantiate the same class file and use the decrypt method .Then insert into any page and there you go ....P
lets decipher the password encrypted by PSCipher in PeopleSoft !!!!
Well, we know PSCipher utility is used to encrypt the password of Peoplesoft user ID given in web server configuration.properties and in the components of Integration. There is a bat file PSCipher.bat given under web server domain which is used in the process , from cmd also we can encrypt any string with this algorithm and generate new versions of key if required. If you match a password given in configuration.properties with the one you see in PSOPRDEFN for the same user, they are different and encryption in PSOPRDEFN is one way (means passwords are never decrypted ,while authentication its encrypted with the same algorithm and matched with one stored in PSOPRDEFN).
This was hint enough for me to guess out that password in configuration.properties would have to decrypted and brought back to original string for authentication against PSOPRDEFN table.
The curiosity kept on accumulating, and one day i opened the PSCipher.bat file, it calls a java class file PSCipher.class to encrypt the plain strings and passes that string to that java code as default argument to main function.I then gave a try to de compile the class file and guess what i found --
There is a function which accepts that string as argument and uses the key stored in psvault file to encrypt the strings. There is also a decrypt function which is used to decrypt the encrypted strings.
Rest was a cake walk... opened my eclipse , wrote a java program and called the decrypt method of the class file and passed the encrypted string and yesss got the same plain string which was encrypted!!!!
I then wrote another bat file decode.bat in same way as pscipher.bat ,which now i use from cmd . Just run decode.bat from cmd with encrypted string as an argument and we get the original plain string !!! :):)
All the security freaks, give this a try it was fun .If you dont know java programming, you can use the peoplecode to instantiate the same class file and use the decrypt method .Then insert into any page and there you go ....P
Hi,
ReplyDeleteThis is satish , can u share me the java file and decode bat file so I can use in one of my requirement , I need to decrypt a password from my SQR am able to decrypt through peplecode but I need to decrypt through SQR ,
Please can u share those files it will be really helpful for me
Email ID : erpf007@gmail.com
hi..can you send me the decrypt file as well..i need that for a requirement to encrypt and decrypt password through ksh files
ReplyDelete