A new technique, called “Internal Monologue Attack”, allows and attack similar to Mimikatz without dumping memory area of LSASS process, avoiding antivirus and Windows Credential Guard.
Continue reading
Tag: mimikatz
Extracting credentials from Linux memory with MimiPenguin
The linux porting of Mimikatz Adapted from the idea behind the popular Windows tool mimikatz, Mimipenguin is a tool, developed by Hunter Gregal, that dumps the login password from the current linux desktop user. Takes …
Continue readingmimikittenz, a PowerShell tool to extract plain-text passwords from memory
The tool utilizes the Windows function ReadProcessMemory() in order to extract plain-text passwords from various target processes mimikittenz (the younger brother of Mimikatz?) provides a user-level extraction tool for sensitive data, focusing on running process …
Continue readingMimikatz: a swiss-army knife for Windows credential gathering
Really useful for penetration testing purposes! If a program has been written in order to keep in memory some credentials in clear text, this can be a security risk. When you make a security assessment, …
Continue reading