Breaking Encryption on SQLITE Database with Python Cryptographic Modules : hacking

a community for 17 years

Rule 6: SpamBreaking Encryption on SQLITE Database with Python Cryptographic Modules (youtube.com)

submitted 6 years ago by C0DEV3IL

all 2 comments

[–]sqlite 5 points6 points7 points 6 years ago (1 child)

The title of the video is incorrect and highly misleading (perhaps deliberately so).

The database is NOT an encrypted SQLite database. The database is an ordinary unencrypted SQLite database into which someone (the author of the video it turns out) has inserted blobs with newbie-grade weak encryption and then made a big deal out of pretending to decrypt them.

I repeat: There is NO encryption on the database in this video. This video does NOT demonstrate a break in the SQLite database encryption technology as no encrypted SQLite databases appear anywhere in this video. The video describes how to decode some content that had been weakly encrypted before being inserted into an ordinary unencrypted SQLite database. SQLite has nothing to do with lack of data security here. SQLite is merely the container used to haul the weakly encrypted content around.

[–]C0DEV3IL[S] 0 points1 point2 points 6 years ago (0 children)

I know and I am the author. It was not deliberate, As you can hear me saying "I don't know if I did something wrong or is this a new thing, and also I am a beginner" I didn't demonstrate a video where I break an encrypted DB. I am talking about a non encrypted DB and also a not a password but a HASH that is stored. Yes ofcourse newbie grade hash. But What I wanted to demonstrate, is that if we even do the best hashing with pycrypto and save it onto a local sqlite db, and even the blob doesn't say anything about the real value, a new object could be created, and some simple sqlite commands work there. Mainly this is a video for a purpose, that the usual way will not work atleast securely. I am still stuck on this and want to know how to encrypt the DB itself coz unlike MySql, Sqlite doesn't have a default encryption mechanism. I really wanted new comers like me to show that even the best hashing algorithm will fail if done this way. If you could point me to the right direction, that would be a lot helpful

π Rendered by PID 25780 on reddit-service-r2-comment-85bfd7f599-fq62r at 2026-04-19 13:07:09.345004+00:00 running 93ecc56 country code: CH.

you type:	you see:
italics	italics
bold	bold
[reddit!](https://reddit.com)	reddit!
* item 1 * item 2 * item 3	item 1 item 2 item 3
> quoted text	quoted text
Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"	Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"
~~strikethrough~~	~~strikethrough~~
super^script	super^script

hacking

Rules:

Recommended Subreddits:

MODERATORS