Quantcast
Channel: Commentaires sur : mimikatz
Viewing all 501 articles
Browse latest View live

Par : Liryc

October 31, 2014, 8:45 am
$
0
0

Bonjour

Je créé un minidump via le taskmanager et voici ce que j’obtiens aprés sur la même machine …. Merci de m’éclairer ;-)

  .#####.   mimikatz 2.0 alpha (x86) release "Kiwi en C" (Oct 31 2014 13:30:06)
 .## ^ ##.
 ## / \ ##  /* * *
 ## \ / ##   Benjamin DELPY `gentilkiwi` ( benjamin@gentilkiwi.com )
 '## v ##'   http://blog.gentilkiwi.com/mimikatz             (oe.eo)
  '#####'    Microsoft BlueHat edition!       with 14 modules * * */


mimikatz # sekurlsa::minidump c:\temp\lsass.dmp
Switch to MINIDUMP : 'c:\temp\lsass.dmp'

mimikatz # sekurlsa::logonPasswords full
Opening : 'c:\temp\lsass.dmp' file for minidump...
ERROR kuhl_m_sekurlsa_acquireLSA ; Minidump pInfos->ProcessorArchitecture (9) != PROCESSOR_ARCHITECTURE_INTEL (0)
Search

Par : gentilkiwi

October 31, 2014, 12:23 pm

Par : Liryc

November 3, 2014, 10:49 am
$
0
0

Merci de ta réponse, Quoiqu’il en soit BRAVO pour ton travail, je pense que mon Pb vient du fait de la compilation sous VS 2013 qui est peut être par défaut en 32 bits….

Par : How Attackers Extract Credentials (Hashes) From LSASS » AD Security

November 6, 2014, 5:33 pm
$
0
0

[…] ProcDump // Windows Sysinternals – here Mimikatz // Blog de Gentil Kiwi – here The Volatility Foundation // Homepage – here Vmss2core // VMWare Labs – here VMware […]

Par : mimikatz | H!Ang Blog( ̄▽ ̄)~■

November 9, 2014, 6:22 am

Par : KRBTGT: Active Directory’s Domain Kerberos Account » AD Security

November 10, 2014, 6:29 pm
$
0
0

[…] in Las Vegas, NV in early August, Skip Duckwell & Benjamin Delpy spoke about a method (using mimikatz) to generate your own kerberos tickets (aka the Golden Ticket). Key to this is that you need the […]

Par : Jeff

November 11, 2014, 6:48 am
$
0
0

Fantastic tool…. How would i be able to invoke the DLL to call and return the vales from c# any ideas???

Par : Owning Networks and Evading Incident Response with PowerShell » Active Directory Security

November 15, 2014, 12:24 pm
$
0
0

[…] tools such as Metasploit (an attack toolkit that includes a backdoor named Meterpreter) and Mimikatz (a password dumper) worked well, but I was a paranoid attacker and was worried that running these […]

Search

Par : MS14-068: Vulnerability in (Active Directory) Kerberos Could Allow Elevation of Privilege » Active Directory Security

November 18, 2014, 8:28 pm
$
0
0

[…] Active Directory domain’s KRBTGT password hash (typically dumped from a Domain Controller). Mimikatz (English translated site) fully supports generating Golden […]

Par : The Evolution of Protected Processes Part 1: Pass-the-Hash Mitigations in Windows 8.1 » Active Directory Security

November 23, 2014, 9:39 am
$
0
0

[…] or secrets, as well as to create tokens based on those hashes. Additionally, researchers such as Gentil Kiwi have even discovered that LSASS contains plain-text passwords using reversible symmetric […]

Par : D

December 12, 2014, 3:46 pm
$
0
0

Hi
i have a win8 laptop and passwords is not showing no more just the ntlm hash
no plain text password

Par : Exploiting MS14-068 Vulnerable Domain Controllers Successfully with the Python Kerberos Exploitation Kit (PyKEK) » Active Directory Security

December 13, 2014, 6:20 am
$
0
0

[…] this TGT has an invalid PAC signature since the DC didn’t generate it! Benjamin Delpy’s Mimikatz presentation at Passwords 2014 describes the MS14-068 exploit (slide below extracted from his […]

Par : День взлома публичных терминалов. |Бредоблог

December 23, 2014, 1:34 pm
$
0
0

[…] )) не мог до сих пор. Сегодня наткнулся на программу mimikatz, с которой легко можно узнать пасс админа )) как-то […]

Par : 抓取windows密码的神器mimikatz | linux爱好者

December 24, 2014, 7:48 am
$
0
0

[…] 下载地址:http://blog.gentilkiwi.com/mimikatz 本站备份:mimikatz 国人编译版本:GetPassword_x64 […]

Par : 12 Days of HaXmas: MS14-068, now in Metasploit! | IT Security News

December 25, 2014, 8:50 am
Search

Par : maurice

January 16, 2015, 1:41 am
$
0
0

La commande : sekurlsa::longonpasswords a comme résultat: ERROR mimikatz_doLocal ; « logonPasswords » command of « sekurlsa » module not found!

Par : gentilkiwi

January 16, 2015, 1:40 pm

Par : Attackers Can Now Use Mimikatz to Implant Skeleton Key on Domain Controllers & BackDoor Your Active Directory Forest » Active Directory Security

January 19, 2015, 4:12 pm
$
0
0

[…] implanting the skeleton key remotely using Mimikatz the following events are logged on the Domain Controller. Event Id 4673 Sensitive Privilege […]

Par : Ian

January 20, 2015, 2:35 pm
$
0
0

When i attempt to load the CNG service on Windows 8.1, i get a nice error.

ERROR kull_m_patch_genericProcessOrServiceFromBuild ; kull_m_patch (0x00000000)

I’ve got no AV running, or anything. Any ideas?

Par : gentilkiwi

January 21, 2015, 11:54 am
$
0
0

Already patched =) (or last patch did not work :()

Viewing all 501 articles
Browse latest View live
Search