Dump User Hashes Remotely

Description

Dumps user password hashes remotely by exporting the SAM registry to a file and manually parsing.

Overview

Dump user password hashes from remote systems by exporting the SAM registry keys to a file and manually parsing and decrypting the data.

Dependencies

  • lateral

Pre-requisites

  • Administrator privileges

Operating Systems

  • Windows

Example

DomainName : DESKTOP-LMCH70V
UserName   : helpdesk
Lm         : 00000000000000000000000000000000
Ntlm       : bc007082d32777855e253fd4defe70ee
Sha1       : c44e77aa5d3caed6ca7e9e59f553fe64ce4000d2
Dpapi      : 00000000000000000000000000000000
Scroll to Top