Written in: 04/19/2026 Last edited: 06/14/2026
Warning: this post is made for educational purposes only. I would NOT recommend doing anything that I did in this blog post. I AM NOT RESPONSIBLE IF YOU END UP IN DETENTION, KICKED OR IN JAIL IF THESE ACTIONS ARE ILEGAL ON YOUR DISTRICT, SCHOOL OR WORKPLACE.
This is still in underconstruction!
So, I am not really known as a hacker nor a cyber-security proffesional. But when I found out that the Chromebooks had some secrets that my school forgot to disable, I decided to investigate a little bit. I was able to find the student's wifi password as it was stored on chrome://sync-internals.
Here's a small step-by-step on how you can find that:
1. Go to the search bar and type in chrome://sync-internals and hit enter.
You should see this screen:
2. Hit search:
3. On the search bar, search for the words "wifi" or "psk".
4. (this might take a while, but for me it only took 2 attempts) Select the right one. Decrypt "hex_ssid" and "passphrase" with any Base64 decoder and voila you have the password and the SSID.
Now that you have the password, you can add it on your phone or any other device. Remember that if your school has blocked VPN's, you might want to attempt and have one beforehand. For those who don't want to pay for a VPN, use Psiphon, Proton VPN or something that's free. You could also use a paid one but you won't really want to pay for a thing you only use for this one reason. Depending on the VPN you are using, log in before connecting to the school network because schools are being smarter every single day. If you can download a VPN on your computer or laptop, that's better. It will be faster than a hotspot+VPN+noideahowfaryouarefromyourphone.
Possibly, the schools teacher wifi password. I only found the students one and still trying to elevate access to the "open web". There were like 2 to I don't really know how many students had it, but my knowledge tells me atleasttwo people have it. Anyway, they had the password to the teacher's wifi and kinda reversed engineered one of them them into giving it. I also should state that all of their wifi passwords are insecure af. I also found out that, atleast on my case, they hid the online configurator behind an unskippable warning. You can't access it even with a VPN. Well, depending on what VPN you are trying to use.
I also would like to state that this investigation has been stopped to not arrouse suspision. The thing is: when my school finds out, I am insanely SCREWED.
1. Attempting to connect a hotspot while being at school
2. Cloudflare WARP (aka 1.1.1.1)
3. Network scan either though my phone with Fing or probably Termux Hacklab with tcp tunnel thing
4. Shimboot (you'll see what I'll do with it)