http://securityxploded.com/chromepassworddecryptor.php

Screenshot 1: ChromePasswordDecryptor showing the blacklisted websites and decrypted passwords from the Chrome store.



Screenshot 2: Exported Chrome secrets in standard HTML format by ChromePasswordDecryptor


Internals of ChromePasswordDecryptor
Chrome stores all the sign-on secrets into the internal database file called 'Web data' in the current user profile folder. This database file is in SQLite format and contains number of tables storing different kind of data such as auto complete, search keyword, ie7logins etc in addition to login secrets.

The logins table mainly contains the information about sign-on secrets such as website URL, username, password fields etc. All this information is stored in the clear text except passwords which are in encrypted format.

ChromePasswordDecryptor loads the secrets from logins table and then decrypts the password for each of the websites stored by Chrome.

For more information on decrypting the passwords from Chrome database file, read the article on 'Exposing the Secrets of Google Chrome'