A new technique, called “Internal Monologue Attack”, allows and attack similar to Mimikatz without dumping memory area of LSASS process, avoiding antivirus and Windows Credential Guard.
Tag: mimikatz
Extracting credentials from Linux memory with MimiPenguin
The linux porting of Mimikatz Adapted from the idea behind the popular Windows tool mimikatz, Mimipenguin is a tool, developed by Hunter Gregal, that dumps the login password from the current linux desktop user. Takes advantage of cleartext credentials in memory by dumping the process and extracting lines that have a high probability of containing […]
mimikittenz, a PowerShell tool to extract plain-text passwords from memory
The tool utilizes the Windows function ReadProcessMemory() in order to extract plain-text passwords from various target processes mimikittenz (the younger brother of Mimikatz?) provides a user-level extraction tool for sensitive data, focusing on running process memory address space: once a process is killed it’s memory ‘should’ be cleaned up and inaccessible however there are some […]
Mimikatz: a swiss-army knife for Windows credential gathering
Really useful for penetration testing purposes! If a program has been written in order to keep in memory some credentials in clear text, this can be a security risk. When you make a security assessment, it will be useful a tool that scans processes memory searching for cleartext passwords, like Mimikatz, a tool written by […]