ivuorinen/cheatsheet-tldr
1
0
Fork 0
mirror of https://github.com/ivuorinen/cheatsheet-tldr.git synced 2026-03-12 12:59:00 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update cheatsheets

Browse Source
This commit is contained in:
ivuorinen
2025-03-02 00:19:35 +00:00
parent 10598cd5d4
commit 7148d01036
7 changed files with 71 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

30
tldr/secretsdump.py Normal file
View File

@@ -0,0 +1,30 @@
---
syntax: markdown
tags: [tldr, common]
source: https://github.com/tldr-pages/tldr.git
---
# secretsdump.py
> Dump NTLM hashes, plaintext passwords, and domain credentials from remote Windows systems.
> Part of the Impacket suite.
> More information: <https://github.com/fortra/impacket>.
- Dump credentials from a Windows machine using a username and password:
`secretsdump.py {{domain}}/{{username}}:{{password}}@{{target}}`
- Dump hashes from a machine using pass-the-hash authentication:
`secretsdump.py -hashes {{LM_Hash}}:{{NT_Hash}} {{domain}}/{{username}}@{{target}}`
- Dump credentials from Active Directorys NTDS.dit file:
`secretsdump.py -just-dc {{domain}}/{{username}}:{{password}}@{{target}}`
- Extract credentials from a local SAM database using registry hives:
`secretsdump.py -sam {{path/to/SAM}} -system {{path/to/SYSTEM}}`
- Dump hashes from a machine without providing a password (if a valid authentication session exists, e.g. via Kerberos or NTLM SSO):
`secretsdump.py -no-pass {{domain}}/{{username}}@{{target}}`