To start, what is going to be stored is a copy of the generated symmetric key (a.k.a. the account encryption key), which has been encrypted using a stretched key derived from your PIN (by running it through a KDF algorithm). The master password will not be stored locally, encrypted or otherwise.
You’re looking in the wrong folder. The locally cached vault data for the Edge extension are going to be stored in the following folder:
%LocalAppData%\Microsoft\Edge\User Data\
MyProfile\Local Extension Settings\jbkfoedolllekgbhcbcoahefnbanhhlh
Note that the value of MyProfile will depend on your setup, and could be either Default
, or a numbered profile like Profile 1
, or a custom profile name.
In this folder, you should find a file named something like 000123.log
,which is where your vault data are cached. You can open this file in a text editor (e.g., notepad.exe
), and search for the string pinKeyEncryptedUserKey
. The long random-looking string (starting with 2.
) that follows contains the protected account encryption key.
Technically, yes, but in Chromium-based browsers (like Edge), there is apparently a bug that causes the *.log
file contents to persist, even after logging out. A similar bug was found in 2022 and reportedly fixed in 2023, but there appears to have been a regression in the meantime.
You could manually delete the *.log
file, but please note that this will also wipe out any customizations that you have made to the browser extension settings and options.
Alternatively, if you repeatedly log in, log out, and restart your browser, then eventually the *.log
file will get erased and replaced by a new *.log
that has a higher number as its filename. In this new *.log
file, the pinKeyEncryptedUserKey
will no longer be present (assuming that you did disable “Unlock with PIN” and re-create it keeping “Lock with master password on browser restart” enabled).