sekurlsa

This modules is probably the most used one among Mimikatz users. It retrieves clear text passwords, kerberos tickets, pin codes, etc (in other words, credentials from several Secure Service Providers) from the LSA's Subsystem Service (LSASS).
This credential dumping technique is covered in The Hacker Recipes: LSASS credential dumping.

server

backupkeys

Last modified 1yr ago